"Company Introduction
9th Way Insignia is a service-disabled, veteran-owned small business
bringing transformative technology to our government customers so they can
achieve their missions. Our specialties include cybersecurity, cloud
modernization, software development, data analytics, enterprise
architecture, enterprise IT, analytics and artificial intelligence. Learn
more about 9th Way Insignia at https://9thwayinsignia.com.
Team (Project) Introduction
9th Way Insignia is looking for an Information Security Analyst, to join the
Department of Veterans Affairs (VA) Information Assurance Support Services
(IASS) team to aid in the support of Assessment and Authorization
(A&A) activities to include support in all aspects of the NIST
Risk Management Framework (RMF) process.
The IASS project provides program management, administration, system
security assessment, data automation, development, and process
engineering services that support IA and its efforts to address SDLC
visibility, ATO management, and continual process improvement in advance
of system ATO expirations. Additionally, the IASS team will monitor and
assist with IA process integration of all aspects of the VA cyber security
A&A process, and applicable VA Quality, Performance, and Risk
(QPR), VA Agile Center of Excellence (ACOE), VA Zero Trust
Architecture (ZTA), and Product Line Management (PLM) processes. The
scope is focused on improving and automating the SDLC and ATO processes for
all stakeholders, not performing the individual stakeholder responsibilities.
Professional Level Information:
The Information Security Analyst aligns as an Engineer, 1 your duties may
include testing project components, identifying problems and discovering
solutions, working on ongoing projects based on specifications or
drawings, and collaborating with teams of other engineers. Typically
performs multiple engineering-related tasks in various assignments within the
project and firm. An Engineer, 1 has strong technical skills and
background, a knack for learning new technologies, and a blend of good
problem-solving and innovation needed to resolve a wide variety of technical
production challenges.
Responsibilities:
Prepare presentations and training material to assist Sr Leadership, VA
organizations, and vital stakeholders in gaining a thorough understanding of
the processes relating to IA services and support, Authorizing
OfficialSystem Briefing (AOSB) and ATO submission, IA automations, and
IA repor
Conduct training in a virtual setting regarding IA services, policy and
practices, and operational reporting requirements.
Conduct training as required by providing Briefings, Training Materials,
demonstrations, hands on lessons, and Post Training Survey Findings with
input from VA stakeholders and handling session logistics.
Provide recommendations in regard to additional, automation, and
reporting deficiencies to address areas of non-compliance with IA, OIS,
and VA6500 policy and recommend additional training, improvement,
reporting or remediation opportunities.
Conduct data collection and requirement analysis with the participants or
stakeholders to ensure operational expectations are being met.
ensure that the A&A process status for each ATO is tracked,
maintained, and reported across the Pre-Authorization, Assessment, and
Sustainment Lifecycles, utilizing all VA systems of record and maintaining
authoritative data in automated dashboards and reports provided from near
real-time automated ATO Status Reporting, defined by supporting primary
respons
Support IA and the Authorizing Official (AO) in ATO renewal/evaluation
and A&A activities by developing the AOSB, validating stakeholder
dispositions and submitted artifacts, and the associated metrics for each of
the systems, utilizing all VA systems of record and authoritative data
sources.
Provide improvement processing to manage ATOs for the AO, which includes
verify ng each ISO of the ATO and supporting the ISO by ensuring all documents
are completed in a timely manner and in accordance with the ATO SOP.
Engage and support IA by maintaining and operationally engaging and utilizing
any authorized VA, OIS, OIT, system, capability, processes, or
engagements responsible or related to discovery, scanning, or any means
where unidentified systems may possibly be discovered.
Operationally enable the Triage process, and proactively leverage VA
processes, tools, reports, and increase understanding across all
organizations to identify, register, and achieve initial operational
compliance
Work to identify process and automation capabilities with the team and
include metrics and findings in regular reporting.
engage and support IA by supporting System Security Categorization processes
within the RMF cycle.
validate data in accordance with Governance Risk Compliance (GRC),
Enterprise Mission Assurance Support Service (eMASS), VA System
Inventory (VASI), VA IT Process Request (VIPR), Monitoring Service
Registry (MSR), Service Now (SNOW), Security Configuration
Compliance Data (SCCD), and any authoritative systems required in
support of th
Other responsibilities as assigned
Benefits:
Benefit eligible employees will have access to our comprehensive benefits
package which includes Medical, Dental, Vision, Voluntary Life
Insurance, PTO, paid holidays, 401(k), FSA, HSA. Resources such
as Employee Assistance Program (EAP) and Traveling Assistance. Also
included, company paid benefits such as Telehealth, STD and LTD disability
plans and basic life A&D.
Legal
We're an equal employment opportunity/affirmative action employer that