Information Assurance Analyst Job Description
Information assurance analyst
provides technical leadership to the information vulnerability management process, including developing and managing the remediation (POA&M) program.
Information Assurance Analyst Duties & Responsibilities
To write an effective information assurance analyst job description, begin by listing detailed duties, responsibilities and expectations. We have included information assurance analyst job description templates that you can modify and use.
Sample responsibilities for this position include:
Have a working knowledge of the DIACAP process, the Risk Management Framework (RMF) process, system security architectures best practices, security policies, technical security safeguards, and operational security measures
Assist management with producing formal and informal reports, briefings, and input to the customer regarding security and functionality requirements, system architecture, security designs, policies and procedures
Conduct investigations of security incidents providing protective and corrective measures in efforts to reduce incidents and risk
Support Regional Information Security Officers in producing Regional Security Performance reporting and KPIs tracking, security vulnerability reporting, tracking and closure
Works with CIO Office staff to address and resolve CIO-related tasks
Maintain knowledge on current Federal, National, HHS and NIH standards, policies, requirements and procedures
Assist team in implementation of various cyber operations systems and applications as needed
Prepare and maintain written documentation/workpapers which reflect audit objectives, audit scope, audit procedures, work performed, findings, the conclusion reached and the resolution of all exceptions
Utilize audit procedures to determine the design and operating effectiveness of controls
Determine compliance with internal controls through observations, examination of documents, records and system settings and/or through interviews with employees
Information Assurance Analyst Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Information Assurance Analyst
List any licenses or certifications required by the position: CISSP, ITIL, IA, IAM, IAT, CE, DOD, GIAC, SANS, CAP
Education for Information Assurance Analyst
Typically a job would require a certain level of education.
Employers hiring for the information assurance analyst job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Education, Technical, Information Technology, Engineering, Information Security, Science, Information Assurance, Technology, Information Systems
Skills for Information Assurance Analyst
Desired skills for information assurance analyst include:
ACAS
NESSUS
SPLUNK
SCAP
Vulnerability scanning
NIST
POA&Ms
Vulnerability management
DIACAP
Firewalls
Desired experience for information assurance analyst includes:
Bachelor's Degree in Information Technology or a related filed - OR - equivalent combination of education, professional training and/or work experience
Contingent upon final customer approval
2+years in IT Governance or Policy related work
Bachelors degree plus three (3) years experience performing Navy security assessments
DoD Top Secret clearance with SCI eligibility within the last 2 years
BA or BS degree in CS, CE, IT, or related field preferred
Information Assurance Analyst Examples
1
Information Assurance Analyst Job Description
Job Description Example
Our innovative and growing company is hiring for an information assurance analyst. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for information assurance analyst
- Planning and performing risk assessments (entity and process level)
- Documenting and performing walkthroughs of key processes
- Developing checklists, programs and/or guidelines
- Develop and write reports and corrective action plans identifying findings and providing recommendations
- Verification that corrective actions are implemented as described in the corrective action plan
- Present results to management
- Ensure that management responses to instances of non-compliance or audit exceptions include statements of corrective measures
- Serve as liaison with representatives from external audit firms
- Work with constituent federal organizations to monitor, review, analyze and maintain ongoing authorizations
- Work with engineering teams to design, develop, and implement security tools across the Federal Government
Qualifications for information assurance analyst
- Top Secret Clearance with SSBI Required, SCI Clearance must be obtainable
- Top Secret Clearance/SCI with current SSBI and Full-Scope Polygraph Required
- A minimum of a BA degree
- Must currently possess or be able to obtain a Secret level security clearance
- Prior experience in supporting Focused Operation activities or interactions with Focused Operations teams is highly desired, experience supporting Interagency and IC/LE activities
- Maintain ongoing familiarization with the Cyber Security field, best practices and methodologies
2
Information Assurance Analyst Job Description
Job Description Example
Our growing company is looking for an information assurance analyst. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for information assurance analyst
- Ensure information systems security and application security policies and procedures (Security Technical Implementation Guides [STIG], Information Assurance Vulnerability Management [IAVM], and Federal Information, Security Management Act [FISMA]) are followed
- Review and maintain Systems of Records Notices (SORNs)
- Develop and lead the software system testing process, resources, programming, projects and documentation
- Follow departmental policies and standard operating procedures, as needed, to effectively execute the principles and responsibilities of software quality assurance
- Responsible for assuring that output from the software Testing process includes adequate identification and interpretation of product requirements, such as a) traceability requirements, b) test requirements, c) usability
- Assist in generation of use cases to ensure that all functional requirements of a system are captured during the product design phase
- Define test methods and create test plans for new or updated software projects to determine if the software will perform accurately and reliably according to documented requirements established standards under both normal and abnormal conditions
- Recommend test design improvements or corrections to engineers throughout the testing process
- Maintain effective communication with the project software engineers on project limitation, capability, performance requirement
- Conduct compatibility tests with vendor
Qualifications for information assurance analyst
- Knowledge of DHS Organizations and Policies
- Background in vulnerability review and inventory management
- Secret Clearance, DHS Suitability preferred
- Bachelor’s degree in Computer Science or equivalent experience (demonstrated experience and computer systems/software certifications may substitute for a professional degree.)
- At least 3 years of current experience with computer systems architecture, networking, database management, and computer systems languages and protocols
- Certificated in encryption devices (KG 235s,KG 175s
3
Information Assurance Analyst Job Description
Job Description Example
Our growing company is looking to fill the role of information assurance analyst. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for information assurance analyst
- Adherence to and improvement of established Quality Assurance standards
- Participation in the early phases of the project lifecycle
- Provide weekly updates to the Information Assurance Manager ( IAM) via the Weekly Status Report for activities performed on site accreditation
- Review submitted project documentation for completeness and accuracy
- Develop an understanding of systems and applications which require certification
- Monitor and track A&A projects and those systems that require re-accreditation
- Maintain a document repository where A&A project documentation is stored
- Work closely with project developers and Information Assurance Managers to identify the appropriate certification/approval processes and authorities
- Record/register actions concerning project approvals to operate in the A&A database
- Coordinate A&A actions and system testing with appropriate security personnel
Qualifications for information assurance analyst
- Design, develops engineer, and implement solutions to computer security requirements
- Experience in using service ticket administration tools and personal management tools such as Service Now, Remedy, DFR
- 7 Years in Information Technology
- General knowledge of encryption devices and how they tie into a WAN
- General know of anti-virus protection procedures
- DoD Top Secret Clearance with SCI
4
Information Assurance Analyst Job Description
Job Description Example
Our company is growing rapidly and is searching for experienced candidates for the position of information assurance analyst. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for information assurance analyst
- Develop and maintain the proper certification and accreditation artifacts and documentation in accordance with Department of Defense Information Assurance Certification and Accreditation Process (DIACAP) directives and Command policies for approval by the SOCPAC lAM
- Provide services required to support program and project management
- Conduct network, endpoint, and log analysis by utilizing various consoles on a regular basis to analyze and triage cyber security events
- Responsible for accountability and reporting compliance
- Identify and report all IAVA/B/T & CTOs that affect the system
- Implements effective security monitoring protocols
- Develops procedures to maintain security and protect systems from security threats
- Develop/implement system security plans, control implementation, system requirements, test procedures
- Provide security recommendations/remedial actions to the client to ensure IS compliance is met and plan of actions and milestones are define accordingly
- Conduct ongoing and regular Information Assurance Security capability assessments and reviews including people, process and technologies
Qualifications for information assurance analyst
- 12+ years overall relevant experience
- Very good experience with SQL/Oracle queries and data analysis
- Ability to organize workload of multiple team members for effective implementation
- Ability to function as an effective team member and team leader
- A minimum of 6 years of experience in Technology/IT
- 3+ years demonstrated QA testing experience on web-based applications, in addition to experience with development & execution of test scenarios in both small scale and enterprise wide systems
5
Information Assurance Analyst Job Description
Job Description Example
Our company is growing rapidly and is looking to fill the role of information assurance analyst. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for information assurance analyst
- Install and operate approved security tools and install security-related applications, operating system patches and/or updates
- Assist in the development and implementation and review of network security policies and procedures, review IA procedures to include gathering IA metrics, tracking compliance with mandated policies, and provision of recommendations for mitigation of IA deficiencies
- Create RMF packages for Authority to Connect/Operate (ATC/ATO) Interim Authority To Test (IATT)
- It is expected that the IA Analyst will create, update, and/or submit 4 packages each year
- Research and maintain a deep understanding of current and emerging technologies and Information Assurance Security solutions
- Constant monitoring of applications and hardware to evaluate for any unusual activity
- Ability to reduce damages and patch software from cyber threats
- Create and set up systems that prevent cyber threats
- Analyze network architecture and data to determine what updates and patches are needed
- Audit the entire network to assess security and need for improvements
Qualifications for information assurance analyst
- Experience in .NET/SQL Server and/or Linux/Unix Oracle Applications environments
- Experience in use of automated test tools and test management software, preferably Test Director/Quality Center, Quick Test Professional, LoadRunner
- Experience with international or direct selling business
- Experience with certifying and accrediting DON information systems and networks, Platform IT
- Experience in Computer Network Defense (CND) technology or related field
- Contractor shall conduct security reviews