Information Assurance - Vulnerability Analyst

The client's mission is to execute the information security officer's responsibilities for securing the confidentiality, integrity, and availability of data through people, processes, and technology. The InfoReliance contract provides the client with cyber security oversight, risk management assessment and authorization services. With the continued increase in cyber threats and the addition of more service providers using the client's security services, the need for experienced and skilled cybersecurity staff has escalated.
The scope of the position includes security engineering, security assessment and testing, and information system security oversight activities that support complex systems from the perspective of sophisticated threat actors. The primary operating location is in Arlington, VA (Ballston).
The chosen candidate will use your expertise in cybersecurity to ensure the success of this key program for InfoReliance. We are seeking an accomplished, creative and self-motivated individual who enjoys working within a dynamic growth-oriented environment.
Candidates should have no less than a current full TS clearance to be considered. Does not currently require polygraph testing.
Travel by air is required throughout the United States. Frequency is approximately once every three months for a period of one week.
Day-to-Day Responsibilities include though, not limited too:
Work as part of a diverse security consultant team advising Commercial Service Providers (CSPs); Coordinate, apply and implement hardware and software Change Management (CM) best practices in accordance with program specific security standards
Track, analyze, and respond to ongoing CM requests (e.g., software baselines, deployment sites and configurations) of CSP networks
Maintain and update status of service providers' security documentation (SECONPs, SAR/RAR, POA&Ms)
Participate and record meeting minutes during weekly working groups with service providers; provide input regarding ongoing network projects and proposed changes
Provide recommendations on implementation approaches and techniques to providers during the design phase of new countermeasures and capabilities
The qualified candidate will be required to have a minimum of 7-years of progressive experience inclusive of the following skills:
Superior knowledge of Risk Management Framework requirements and applicable information security publications and standards (NIST, FISMA, FIPS)
Utilize knowledge of NIST 800-53 Rev 3&4 and CNSSI 1253 controls in assessments of system compliance
Knowledge of applicable laws, statues, Presidential Directives and Executive Orders
Expertise in applying Information Security principles and requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
Superior understanding of technical information security related documents such as System Security Plans (SSP) and Risk Assessments
Skills in determining how a security application/system should work and how changes in conditions, operations, or the environment will affect these outcomes
Strong knowledge and experience providing accurate security evaluation of software applications, system, or network, documenting the security posture, capabilities, and vulnerabilities against relevant IA compliances
Superior interpersonal, communication, presentation, and writing skills
We would also like the qualified candidates to have skills, experience and credentials in the following areas:
Bachelor's Degree in an Information Technology related field and/or applicable equivalent work experience
Knowledge of the DHS policies, procedures, and handbooks
Direct client interaction experience; working closely with clients to elicit assessment and accreditation -related documents and implementation, and consulting on current issues; reporting on assessment and related findings
Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of Defense-in-Depth)
Knowledge of Computer Network Defense (CND) and vulnerability assessment tools and their capabilities
REQUIRED Security Clearance Level:
MUST BE of U.S. Citizenship to be a consideration to support on this U.S. Government Agency program
MUST HAVE a final and active Top Secret clearance; preferred with SCI access
MUST BE able to successfully complete the government's security process and receive government Suitability.
Our Benefits
All benefits are effective Day 1 of your employment with InfoReliance. Our reputation is built upon the talents and integrity of our employees. We value the contributions of each and every person that is a part of our organization. We offer exciting, challenging career opportunities, competitive salaries and a comprehensive benefits package to include the following:
10 Paid Company Holidays Annually
18 days a year of Paid Time Off (PTO) Annually for new employees (accrued)
Comprehensive Medical and Dental Coverage
Tuition & Professional Certification Support
401(k) plan
Flexible work arrangements, where possible
Flexible Spending Accounts for Commuter Costs, Medical and Dependent Care
All employees are eligible for our performance-based bonus program recognizing our outstanding contributors.
About InfoReliance
We invest in the pursuit of interesting and challenging work. We have built our success by seeking out and solving highly complex business problems, anticipating and delivering creative solutions to meet emerging needs, and providing our customers with optimal and sustainable business value. We set the bar high for ourselves as a business and for our employees.
We are looking for employees with ambition, who aspire to achieving big goals, who seek to make a positive and real impact on our clients' success. We are seeking those with the knowledge, the curiosity, the insight, the engagement, the humility, and the determination to succeed.
In return, we offer the opportunity to work with a group of similarly motivated individuals, who bring their unique backgrounds, achievements, work and life experience to bear on tough problems, creating an environment where great ideas are made and thrive. We support our employees with professional development opportunities, from the perspective of both training and the ability to gain hands on experience in new areas.
Most importantly, our leaders and employees understand what collaboration, dedication, and teamwork really means and demonstrates that knowledge through their actions every day. Bring your best ? there is no limit to what you can achieve here.
Accolades and Partnerships
Amazon Web Services (AWS) 2014 Invent and Simplify Partner of the Year; AWS Advanced Consulting Partner, AWS Managed Service Partner (1 of 23 in the U.S.), AWS Reseller
Microsoft Federal Solution Partner of the Year 2014 & Microsoft Public Sector Services Partner of the Year 2013 & 6 Time Microsoft Partner Awardee. Microsoft Consulting Services and Cloud Services Partner. Office 365 Reseller.
McAfee Security Innovation Alliance Elite Partner
InfoReliance does not discriminate in employment opportunities, terms and conditions of employment, or practices. All qualified applicants will receive consideration for employment without regard to race, age, gender, religious or political beliefs, national origin or heritage, disability, sexual orientation, protected veteran status, or any characteristic protected by law. InfoReliance is a VEVRAA Federal Contractor. We welcome and proactively pursue priority referrals of protected veterans.
As an Equal Employment Opportunity/Affirmative Action employer, InfoReliance is committed to providing equal employment opportunity to all job seekers. If you are an individual with a disability unable to use our online tools to search and or apply for jobs, please send an email to and indicate the specifics of the assistance needed, or contact Michael Amiri at 703-246-9360. This option is reserved only for individuals who are unable to use the online tools due to a disability or medical issue. It is not intended for other purposes or inquiries.
To view all current InfoReliance employment opportunities, please visit our careers website at

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.