Information Sec Analyst MID (TS/SCI with Poly Required)

GCI, embodies excellence, integrity and professionalism. The employees supporting our customers deliver unique, high-value mission solutions while effectively leverage the technological expertise of our valued workforce to meet critical mission requirements in the areas of Data Analytics and Software Development, Engineering, Targeting and Analysis, Operations, Training, and Cyber Operations. We maximize opportunities for success by building and maintaining trusted and reliable partnerships with our customers and industry.

At GCI, we solve the hard problems. As an Information Security Analyst, a typical day will include the following duties:

With little to no supervision, candidate should be able to:

Perform audit log analysis, report generation and brief findings to GCI Management.

Provide direct support to development of information system security policies, CONOPS, guides, etc.

Coordinates security investigations of all suspected computer security violations, incidents, and compromises in accordance with GCI’s incident response program.

Conduct security audits and ensures that audit trails are reviewed and audit records archived in accordance with GCI and Customer security requirements.

Ensure IS are operated, used, maintained and disposed of appropriately in accordance with GCI and/or Customer security procedures, directives, guidelines, regulations, and policies.

Develop and maintains system security documentation such as Security Plans, Security Operating Procedures, CONOPS, required policies and documentation to support system compliance for assigned security frameworks (ie NIST RMF/CSF, NISPOM, ICD Publications, CUI, CMMC, etc.), in coordination with the IAM (Information Assurance Manager) and Information System Security Manager (ISSM).

Conduct periodic reviews, self-inspections, and/or assessments to ensure IS(s) meet GCI and Customer security requirements as well as during A&A activities.

Conduct user training and awareness activities under the direction of the GCI IAM, ISSM, or Customer Security.

Participate in self-assessment of system safeguards and program elements and in assessment and authorization of the system.

Ensure Configuration Management (CM) documentation for IS software and hardware is maintained.

Serves as member inn full or as a stand-in for leadership when unavailable for the GCI Configuration Management Board for system(s) for which they are responsible.

Coordinate/obtain approval from GCI and/or Customer Security representatives for the procurement of software, hardware, and firmware for use on assigned IS(s).

Possess a functional working knowledge of industry best practices for Information Assurance as well as applicable information security documents such as ICD 503, Risk Management Framework (RMF), NISPOM, and NIST.

Candidate must be a self-starter that is mission focused and able to work in a dynamic work environment with a diverse set of personalities. Must be able to take specific directions and progress forward to task completion once provided with that direction, and may, at times, be expected to lead, manage others, or initiate tasks or actions on their own.

Strong documentation, analysis, and oral/written communications skills.