Sr. Information Assurance Security Analyst

SMS has an immediate opening for a Senior Information Assurance Security Analyst on our Cryptologic and Cyber Division (CCSD) Security team at our Lackland Air Force Base site in San Antonio, TX. Our team supports the CCSD by ensuring communications are secure and protected against Cyber threats while provide continuous access for authorized users.  As a dynamic systems integrator, SMS offers proven solutions in engineering, operations, cybersecurity, and digital transformation. With expertise in modernizing and optimizing legacy infrastructure and systems, ensuring operational efficiency, and designing, implementing, and managing secure environments, SMS supports business and mission goals with proficiency, quality, and integrity.

As a dynamic systems integrator, SMS offers proven solutions in engineering, operations, cybersecurity, and digital transformation. With expertise in modernizing and optimizing legacy infrastructure and systems, ensuring operational efficiency, and designing, implementing, and managing secure environments, SMS supports business and mission goals with proficiency, quality, and integrity.

SMS has been serving the advanced information technology needs of the federal government since 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 45 years. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. For additional information on SMS, visit www.sms.com.

Submit your resume today!

A Subject Matter Expert that has experience in providing knowledge, techniques and/or capabilities related to system IA, certification and accreditation (C&A), documentation, security testing and vulnerability remediation. Candidate will support the Certification and accreditation process for administering DoD (Department of Defense) Risk Management Framework (RMF) program. Candidate must also have experience in managing IT or IA related projects that required extensive and simultaneous documentation and coordination across multiple customers. CISSP certification is required.

Essential Job Functions: 

• Oversee and manage the day-to-day functions of the Cybersecurity Office in accordance with DoD, Air Force, and Local Operating Policies and Instructions.
• Coordinate CCSD Cybersecurity actions with the Wing Cybersecurity Office and supporting agencies as appropriate.
• Ensure proper reporting to both the Wing Cybersecurity Office and the CCSD CSO and Government ISSM to ensure compliance of all systems maintained or supported by the contract.
• Ensure that CCSD networked systems, RDT&E, and standalone systems and programs comply with AFI 17-101 and appropriate local Operating Instructions. which provides life-cycle management for Information Assurance (IA) and other critical systems.
• Analyze complex network and IA systems in unclassified and classified environments for compliance with DoD and industry best practices security configuration requirements.
• Knowledge and experience in the certification and accreditation processes that require the knowledge of DoD Guidance (DoDD 8500.1, DoDI 8500.2, 8520, AR 25-2), DITSCAP, RMF, Air Force Best Business Practices (BBP) and information assurance and auditing.
• Performance of C&A workflow in accordance with RMF requirements, preparation of system-related RMF artifacts, system security engineering, preparation of security test plans and their execution, remediation of system vulnerabilities, and preparation of IA documentation including PPS matrix, POA&M and system security plans.
• Writing Standard Operation Procedures (SOP), COOP, Configurations, and other documentation in support of RMF as required.
• Provide technical evaluation of proposed system(s) and application approaches.
• Validation of Information Assurance (IA) Controls.

•  Five to eight years of progressively responsible IT security consulting experience including recent experience with RMF.
• Candidates should have technical experience in the following areas:
• Network infrastructure (Cisco)
• Microsoft Windows Server 2K16, 2K19 UNIX/Linux (SUN/Redhat) or database (Oracle/MS SQL 2005+).

• Individual must have high degree of skills with the MS Office toolsets.
• Knowledge of the NIST 800-53 Rev. 5 security-categorization controls
• Candidate must possess refined critical thinking skills, should be a self-starter, may direct the activities of other team members, diplomatic, multi-task capable, adaptive to a dynamic environment, dependable and reliable.
• Prior experience in a government consulting services environment.
• Strong verbal and written communication skills as well as the ability to work independently as required.
• Experience with STIG Tools.

• Must have and maintain an active DoD Top Secret SCI security clearance.
• Must have Security + CE and CISSP certifications.

SMS is a dynamic systems integrator established in 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 47 years. Our ability to hire and retain quality people in a rapidly evolving IT market is proven through our employee retention rate averaging over 3 years. At SMS, we place a high value on quality of service, customer satisfaction, and best-of-breed policies and practices, resulting in CMMI Level 3 certification and ISO registrations including 9001:2015, 20000-1:2018, and ISO/IEC 27001:2013. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. 

SMS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.