Senior Information Security Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

SOSi · 5 months ago

Senior Information Security Analyst

positionWashington, Washington, DC
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp

SOSi is seeking highly qualified Senior Information Security Analysts to support the U.S. Courts Information Security & Validation Staff (ISVS) Governance, Risk, and Compliance (GRC) program. The analysts will perform hands-on RMF support, security assessments, vulnerability management, and compliance documentation in alignment with federal cybersecurity requirements.

ConsultingGovernmentInformation Technology

Responsibilities

Perform RMF activities across all lifecycle stages: Prepare, Categorize, Select, Implement, Assess, Authorize, and Monitor
Draft, review, and update security documentation, including System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), and Continuous Monitoring Plans
Conduct system risk assessments, vulnerability analysis, and mitigation tracking
Execute Nessus-based vulnerability scanning and analysis (agent-based and network scanning)
Input, manage, and maintain security data in the Cybersecurity Assessment and Management (CSAM) system
Support control implementation activities and ensure adherence to JISF/NIST 800-53 frameworks
Prepare risk assessment reports, authorization packages, and compliance deliverables
Engage with stakeholders, technical teams, and federal representatives to align security activities with mission needs
Contribute to quality assurance processes and continuous improvement initiatives in security governance and compliance

Qualification

RMFNIST 800-53Vulnerability ManagementGRC ToolsSecurity CertificationsWritten CommunicationVerbal Communication

Required

5+ years of relevant experience in Information Security, Governance, Risk Management, and Compliance (GRC) in federal environments
Deep knowledge of RMF, NIST 800-53 Rev 5, FISMA, and federal continuous monitoring programs
Experience with vulnerability management tools (e.g., Nessus) and GRC tools (e.g., CSAM)
Proven ability to develop, manage, and maintain security artifacts and compliance reports
Strong written and verbal communication skills, with experience working in client-facing environments

Preferred

Relevant certifications preferred (e.g., CISSP, CAP, Security+, CISM)

Company

SOSi

twittertwittertwitter
Glassdoor3.0
company-logo
SOSi solves the challenges of the modern mission.
dateFounded in 1989
location
New York, New York, USA
people-size1001-5000 employees
web-link
http://www.sosi.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Jim Edwards
Chief Growth Officer
linkedin

Recent News

The Latest Tech News from Techreport
ICE Deploys AI to Watch What You Post Online
2025-11-01
EIN Presswire
NaVOBA Announces the 2025 Best Corporations for Veteran's Business Enterprises®
2025-10-06
citybiz
SOSi Appoints Andre Watson as Senior Account Executive
2025-08-21
Company data provided by crunchbase