Senior Security Analyst(Systems Made Simple, Inc)- career in USA

Job title:Senior Security Analyst (463-684)
Company:Systems Made Simple, Inc
Location:Falling Waters, WV 25419
Industries:Computer Software
Deadline:20/08/2013
Job Type:Full Time,Employee
Years of Experience:5+​ to 7 Years
Education Level:Bachelor's Degree
Career Level:Experienced (Non-Manager)
Job Reference Code:463
About the Job:
Systems Made Simple, Inc.​ (SMS) is a leading healthcare IT service provider specializing in systems and software engineering, program management and general IT services.​ SMS is currently engaged with the US Department of Veterans Affairs, the Environmental Protection Agency, the Social Security Administration, the Food and Drug Administration, the General Services Administration providing IT services across a portfolio of over 30 ongoing programs.​ SMS is a Service-Disabled Veteran Owned Small Business (SDVOSB) Prime Contractor under the VA’s T4 IDIQ contract and NIH’s CIO-SP3 GWAC Contract.​ SMS has been pivotal in the development, integration and implementation of numerous solutions for our customers including serving as the Program Management Office prime contractor for VA’s Virtual Lifetime Electronic Record (VLER) contract, leading the development efforts for VBA’s VETSNET program, and improving our Veteran’s claims processing experience through our HCPS (Healthcare Claims Processing System) development and integration contract.​ Additionally, in February 2012, SMS was awarded a $715m, 5-year contract to manage and operate the VA’s Austin IT Center.​

Specialties:
System and Software Engineering, Program Management, COTS Integration, IT Services, Infrastructure Services

Responsible for the governance, risk and compliance for the related contract/​program and client data center.​

Role and Responsibilities include the following.​ Other duties may be assigned.​
    Maintain the CDCO Security Risk Management Program which includes the CRDC Web Operations (WO) Certification Support and the Risk Assessment Document (RAD)/​WAIVER process per standard operating procedures/​protocol.​
    Develop and manage the contract/​program’s security documentation such as System Security Plans (SSP), Security Risk Assessment Reports (SAR), test and evaluation reports, security policies, contingency plans, Plan of Action and Milestones (POAM), and incident response plans.​
    Record status findings using the CDCO Governance, Risk and Compliance (GRC) application and the Security Management and Reporting Tool (SMART).​
    Perform analysis to identify security gaps and deficiencies trends and report compliance risk/​deficiencies to management.​
    Maintain the contract/​program’s Security Management and Reporting Tool (SMART) process and coordinate with the SMART working group to add, modify and/​or remove existing applications.​
    Review authorizations to Transfer Sensitive Data (ATSD) and ensure they are process per standard operating procedure.​
    Maintain appropriate client and contract/​program guidelines including required federal guidance/​information within the application.​
    Develop and maintain standard operating procedures (SOP) for the contract/​program’s application suite.​
    Administer all modifications for projects/​publishing templates including the performance of all Xacta development and continuous monitoring software maintenance functions and monitor application health and security.​
    Provide user support which includes GRC training, Tier-2 application support, user account management, and recertification of user access entitlements.​
    Generate and maintain standard reports to the related contract/​program systems and activities.​
    Coordinate and participate in regular internal/​external audits including third party off site assessments.​

Required Skills:
    Ability to develop project plans and lead assessment teams.​
    Ability to work well on a team and to communicate effectively.​

Experience Required:
    Bachelor's degree (B.​ A.​) from four-year College or university and five to seven years related experience and/​or training; or equivalent combination of education and experience.​
    Proficient in current IT security processes, procedures, guidelines, technologies, requirements configuration, customization, error handling, interpretation of results, and false-positive identification.​
    Through understanding and experience with IT security and assessing security and issuing guidance, and security control assessment.​
    Understanding of how data security is driven by business processes and regulatory compliance requirements.​
    Xacta Programming & Application Administration.​
    Java, XML, Silverlight and Velocity script.​
    Solid technical writing skill set and experience with writing Information Assurance Security artifacts.​
    Prior experience supporting a Government contract (VA /​ CDCO) is a plus.​
    Certification Authorization Professional (CAP) certification is a plus.​

Equal Opportunity Employer M/​F/​D/​V
Please apply directly Here