Information Security Analyst SME

Company Description

Since 2006, MAXISIQ has advanced the state of Cyber RDT&E by bringing together industry expertise in software, hardware, communications and security, and leveraging decades of operational experience to deliver exceptional value to communities and the critical missions they support. Join us where we innovate, develop smarter solutions, technologies, services, and actionable capabilities for our clients- right when they need it most.

Job Description

MAXISIQ is seeking an experienced Information Security Analyst SME to join our team in Lorton, United States. As a subject matter expert, you will lead the development and implementation of enterprise-wide security strategies, provide technical guidance on complex security issues, and ensure the organization maintains robust information security defenses. This is full-time position and is available upon award. 

What You'll be doing:

The SME Information Security Analyst is responsible for leading the RMF assessment, authorization, and monitoring steps for systems following NIST and ICD 503 standards and best practices.

• Lead security assessments and provide expert recommendations for enterprise-wide security improvements
• Analyze complex security incidents and develop comprehensive mitigation strategies
• Design and implement security architectures aligned with business objectives
• Provide technical leadership in incident response and threat hunting activities
• Develop and maintain security policies, procedures, and standards
• Conduct advanced security testing and vulnerability assessments
• Mentor junior security analysts and provide subject matter expertise to cross-functional teams
• Evaluate and recommend security tools and technologies
• Lead security compliance initiatives and audits
• Perform risk assessments and develop risk management strategies

Qualifications

General Requirements:

• 10+ years of proven experience performing security controls
• Must maintain ongoing knowledge of Federal policies and practices related to cyber security
• Must possess excellent verbal and written communication skills
• Must have knowledge, skills, abilities, and experience with common assessment & authorization (A&A) application platforms (e.g. eMASS, CSAM, Xacta is preferred)
• Must have strong architecture, network and infrastructure security, or next gen security expertise (agile/hybrid agile, cloud)
• Must have extensive experience working with various security methodologies and processes, compliance controls related to cloud security
• Must have experience performing assessments in cloud computing environment
• Must have extensive experience providing analysis and trending of vulnerability data form a large number of heterogeneous devices
• Must possess expert knowledge in risk and vulnerability management

Clearance:

• A minimum of a Secret security clearance
• Must be able to receive an active TS/SCI security clearance

Additional Information

All your information will be kept confidential according to EEO guidelines. #CJ

We are an Equal Opportunity Employer that considers all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or any other protected class.