IT Security Analyst - ISSO

Washington, DC

Integrated Systems Solutions, Inc. (ISS) is a service disabled, veteran-owned business (SDVOSB) that provides high-value professional services in program management, communications and outreach, IT services, requirements management, systems engineering and technical services. Bringing a fresh approach to federal requirements, our highly experienced ISS team is creating a collaborative evolution of new ideas and problem-solving methodologies for the most challenging world-wide mission requirements.  

ISS is looking for a (remote for now) IT  Security Analyst - ISSO to support the Veterans Affairs , Office of Inspector General (VA OIG) 

Responsibilities:  

  • Analyze and defines security requirements for Multilevel Security (MLS) issues 
  • Design, develop, engineer, and implement solutions to MLS requirements 
  • Guide effort to gather and organize technical information about an organization's mission goals and needs, existing security products, and ongoing programs in the MLS arena 
  • Perform risk analyses which also includes risk assessment 
  • Develop security standards

Specialized requirements/responsibilities for VA OIG

  • Set up identified COTS product for POAM management within VA OIG environment with the help of Solutions Engineer 
  • Populate existing and future POAMs in COTS product 
  • Provide recommendations on process VA OIG should use to ensure POAM implementation 
  • Implement and staff process identified to ensure POAM implementation 
  • Coordinate with system owners on analyzing data regarding findings and corrections 
  • Respond to incidents on assigned systems including but not limited to coordination with the ISO, OIG Privacy Officers, OIG Computer Investigations, and other resources 
  • Maintain risk assessments on their assigned systems 
  • Ensure documentation of OIG common controls in security and privacy plans (or equivalents) 
  • Document assessment findings in control assessment reports 
  • Ensure that System Owners document the controls for the system and environment of operation in security and privacy plans, develop and implement a system-level strategy for monitoring control effectiveness that is consistent with and supplements OIG’s continuous monitoring strategy 
  • Implement the controls in the security and privacy plans, and document changes to planned control implementations based on the “as-implemented” state of controls 
  • Work with the ISO/Security Engineer to ensure Continuous Diagnostics and Mitigation (CDM)/continuous monitoring of the controls

Required Skills and Experience:

  • B.S. degree in a relevant field or equivalent experience 
  • Five (5) plus years of IT security experience, preferably within the state or federal government
  • ISSO certification is highly desired