Security Analyst

Madison, WI, USA - 1001

​As IT Security Analyst you’ll leverage your prior experience translating NIST guidelines and helping clients meet FISMA / FedRAMP requirements. With 3-6 years of experience in the IT security related systems controls and applying various testing methods to determine the effectiveness of controls for commercial and federal clients. Ability to closely examine your clients' security policies and take measures to test and execute procedure. ​

This candidate must have experience with the following:

  • Interviewing subject matter experts and using knowledge to develop, edit, and revise documentation including standard operating procedures, system security plans, and policies and procedures.
  • Understanding of Cloud platforms (PaaS, SaaS, IaaS) and protections as described in FedRAMP.
  • Writing Technical documentation and knowledge of Cloud and Security concepts
  • NIST SP 800 Series, FedRAMP and FISMA
  • Writing, editing, and/or managing a wide variety of IT security documentation and familiarity with federal IT standards such as Federal Information Security Management Act (FISMA)
  • Experience with technical documentation related to FIPS 199, NIST SP 800-37, NIST SP 800-53 REV 4, FISMA A&A, and continuous monitoring, and POA&M management.
  • Understanding of Third-party Assessment Organizations (3PAO)
Coming Soon
Coming Soon
  • Validate client’s security plans to ensure that NIST control requirements are implemented.

  • Prepare System Security Plans, plan of actions and milestones (POA&M), and other written documentation with recommendations of your findings. 

  • Responsible for the development of security artifacts and/or standards and policies
  • Conduct certification tests that include verification of features and security controls required for FedRAMP Moderate level systems and maintain a repository for all objective evidence (collective Body of Evidence (BoE)) for certification/accreditation documentation. 

  • Possesses an understanding of capabilities associated with security monitoring products across all IT platforms.
  • Ensures that all policies reflect current standards in place including FedRAMP, FISMA and other industry standards.
Apply Now