Information Assurance Security Analyst

Company Overview

At ValidaTek, we modernize and optimize IT services to solve some of the most critical challenges facing federal civilian and defense agencies. From customers to partners to top-talent employees, ValidaTek puts people first, empowering them to exceed expectations and transform government organizations. Our success starts and ends with our people, so we built a company where great people can do great things, with the resources and autonomy to make decisions that transform organizations. We operate as one team of diverse people, united by a passion for continuous growth and optimization. Our commitment to quality and performance optimization is the reason why our IT Service Projects and New Development Projects have been appraised at CMMI Maturity Level 5, positioning us as one of a handful of elite companies to receive the highest form of third-party validation. www.validatek.com

Summary

ValidaTek is seeking a highly motivated Information Assurance and Security Analyst with strong collaboration and communication skills to support our Cybersecurity Systems Support (CSS) contract with the Defense Information Systems Agency (DISA). This position plays a critical role in supporting all facets of information assurance, system security, and compliance across the CSS contract. The role is 100% on-site at our Pensacola, FL location. 

Responsibilities

• Maintain and execute the CSS Information Security Plan. 

• Categorize and assign security controls in Enterprise Mission Assurance Support Service (eMASS). 

• Create, update, and manage Assessment & Authorization (A&A) packages in eMASS. 

• Coordinate and track inherited security controls within eMASS. 

• Manage and update entries in the DoD Information Technology Portfolio Repository (DITPR). 

• Oversee Ports, Protocols, and Services Management (PPSM). 

• Support processes for achieving and maintaining Authority to Operate (ATO) and Interim Authority to Test (IATT). 

• Prepare and submit reports in support of the Federal Information Security Management Act (FISMA). 

• Ensure compliance with Security Technical Implementation Guides (STIGs) and Information Assurance Vulnerability Alerts (IAVAs). 

• Respond to and manage cybersecurity incidents in coordination with the Cybersecurity Service Provider (CSSP). 

• Conduct vulnerability scanning and compliance reviews using Assured Compliance Assessment Solution (ACAS). 

• Oversee compliance activities related to Continuous Monitoring (ConMon) and Risk Management Framework (RMF) scoring. 

• Develop and maintain system profiles, security plans, and artifacts within eMASS. 

Qualifications

• Active Secret clearance with ability to obtain a Top Secret clearance. 

• Bachelor’s degree in a related field or equivalent experience. 

• DoD 8570 IAT Level II certification (e.g., Security+ CE, CISSP) – required. 

• Minimum of 4 years of experience in Information Security RMF – required. 

• Experience with DoD RMF, DIACAP, or NIST RMF. 

• Background in system accreditation, security assessments, and security engineering within the System Development Life Cycle (SDLC). 

• Hands-on experience with Host-Based Security System (HBSS). 

• Strong understanding of DoD, IC, and national-level system security practices across LAN/WAN, Cross Domain Solutions (CDS), and Cloud technologies. 

• Familiarity with security tools and frameworks such as ACAS, HBSS, Nessus, Splunk, etc. 

• Knowledge of Computer Network Defense (CND) procedures and technologies. 

• Understanding of boundary protection, enclaving, and encryption techniques/tools. 

• Demonstrated ability to develop security artifacts (e.g., Security Plans, POA&Ms, CONOPS). 

• Experience supporting RMF or FedRAMP accreditation efforts. 

• Working knowledge of ITIL processes is a plus. 

Posted Min Pay Rate

USD $90,000.00/Yr.

Posted Max Pay Rate

USD $115,000.00/Yr.

Salary Disclosure

Actual salary will be based on a variety of factors including but not limited to experience, geographic location, contract affordability, internal equity, education, and certifications. The upper end of the salary range may be reserved for individuals who have demonstrated tenure with the company, seniority, and proven excellent performance. This includes factors such as education, certifications, and extensive/unique experience beyond what is required.

EEO Statement

ValidaTek is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, or disability status. Applicants who are selected for employment will be required to verify authorization to work in the United States. Offers of employment will be contingent upon passing a post-offer background check.