Description:
As Information Assurance Analyst II, you will be the forefront of cybersecurity, ensuring that information systems maintain a robust posture and continue to meet the highest standards in national security. The Information Assurance Analyst II collaborates with senior team members to ensure systems are secure, compliant, and properly configured according to federal regulations. Additionally, in this position you will:
- Strengthen Our Defense: Perform Security Technical Implementation (STIG) review, Self-Assessment, and participate in Assessment & Authorizations testing to ensure our system stay secure and compliant.
- Shape Security Policy: use your expertise to apply a comprehensive range of cybersecurity policies, principles, and techniques to maintain the integrity of system processing classified information.
- Assist in the continuous monitoring of systems to ensure compliance with JSIG, NIST, CNSSI, RMF, and other security standards.
- Participate in incident response activities, including identifying, reporting, and helping to resolve security incidents.
- Contribute to the development and delivery of security awareness training for staff.
- Drive Risk Management: Perform risk analysis for system changes, contribute to the Risk Management Framework process and recommend security solutions to address any identify gaps.
- Maintain Security Documentation: Ensure all system documentation is up to date.
- POAMs: Manage and Maintain Plans of actions and milestones, by tracking remediation efforts, validating closure evidence, prioritizing and communicating risk, and ensuring timely.
- Oversee Configuration Management: Manage changes to security-relevant software, hardware, and firmware to maintain system security.
Basic Qualifications:
- As a requirement of this position, all candidates must be a U.S. Citizen. In accordance with 8 U.S.C. 1324b(a)(2)(C), Epsilon will not consider candidates for this position who do not meet the aforementioned conditions.
- Minimum of 3 years of experience in information assurance, cybersecurity, or a related discipline.
- Must hold a current 8570/8140 IAT Level II Certification (Security +, CC, CCND, SSCP)
- Familiarity with federal security standards, including NIST SP 800-53, RMF, and JSIG requirements.
- Exposure to scripting languages (e.g., Python, PowerShell) for automating security tasks is a plus.
- Understanding network security principles, firewall configuration, IDS/IPS, and encryption methods.
- Strong analytical skills, with the ability to assist in the identification and mitigation of security risks.
- Good communication skills with the ability to work effectively in a team environment and support senior analysts.
- Certifications such as Security+, CAP, CSSP or equivalent certification DoD 8570 IAM Level II.