Logo
CGI

CGI is hiring: Information Assurance Analyst (Cyber) in Newport News

CGI, Newport News, VA, United States, 23600

Save Job

Position Description :

At CGI Federal, we are dedicated to innovation and excellence. We are a dynamic team of professionals committed to creating cutting-edge solutions that drive the future of technology. Join us and be part of a company that values creativity, collaboration, and continuous learning.

We are seeking a highly organized and detail-oriented Information Assurance (IA) Analyst to join our team in Newport News, VA. The ideal candidate will have a broad knowledge of current security practices as well as the ability to identify and apply regulatory and industry-specific security solutions. In this role, you will define and deploy effective methods and strategies to provide security operations and compliance services.

This position is located in Newport News, VA.

Your future duties and responsibilities :

  1. Conduct risk assessments and vulnerability analyses to identify potential threats.
  2. Develop and maintain System Security Plans (SSPs) and Plans of Action and Milestones (POA&Ms).
  3. Monitor and enforce compliance with security policies, procedures, and standards.
  4. Provide continuous monitoring and event-driven monitoring, including ad-hoc or on-demand scanning, of project environments.
  5. Collaborate with cross-functional teams to implement security solutions.
  6. Investigate and resolve security incidents, providing detailed reports and status briefings.
  7. Stay updated on emerging threats and recommend proactive measures.
  8. Ensure compliance with DoD standards, including DoD directives, Risk Management Framework (RMF), and NIST 800-53 controls.
  9. Maintain and validate security certifications required for DoD systems and personnel.
  10. Integrate security procedures and requirements into Configuration Management (CM) processes, including maintaining accurate records of system configurations, changes, and baselines.
  11. Conduct regular audits to validate security compliance aligned with RMF and continuous monitoring (ConMon) practices.
  12. Align security audits and data with configuration management databases (CMDB) and tools to validate and maintain the integrity of CIs.
  13. Maintain and validate security training records.

Required qualifications to be successful in this role :

  • US Citizenship and an active Secret Clearance required.
  • Bachelor's degree in Computer Science, Engineering, Information Security, or a related field.
  • 5+ years of proven experience as an Information Assurance Analyst, Cybersecurity specialist, or related role.
  • Strong understanding of Risk Management Framework (RMF), DISA STIGs, and NIST standards.
  • Proficiency in tools like Xacta, eMASS, or similar platforms.
  • Knowledge of Configuration Management principles and tools (e.g., Ansible, Puppet, SCCM).
  • Working knowledge of cybersecurity principles, technologies, and best practices.
  • Experience with security frameworks and standards such as NIST, ISO, and CIS Controls.
  • Working knowledge of security tools and technologies, including SIEM, IDS/IPS, firewalls, and endpoint protection.
  • Strong understanding of network protocols, operating systems, and secure coding practices.
  • Excellent analytical, problem-solving, and decision-making skills.
  • Strong communication and interpersonal skills, with the ability to effectively interact with technical and non-technical stakeholders.
  • IAT level II certification (e.g., Cloud+, Sec+).

Desired qualifications / non-essential skills required :

  • Working knowledge of cloud platforms (e.g., Azure, AWS).
  • Relevant certifications such as IAT / IAM III certification - CISSP, CISM, or equivalent.
  • Proficiency in configuration management and requirements management tools (e.g., JIRA, DOORS, ServiceNow).
  • Experience working with software development tools such as Azure DevOps and Git.
  • Working knowledge of CI/CD pipelines, containerization, and orchestration tools (e.g., Docker, Kubernetes).
  • Experience with DevSecOps principles and DoD policies related to the topic.
  • ITIL v3 or v4 Foundations Certifications.

CGI is required by law in some jurisdictions to include a reasonable estimate of the compensation range for this role. The determination of this range includes various factors such as skill set, level, experience, relevant training, licensure, and certifications. To support merit-based performance, CGI typically does not hire individuals at or near the top of the range for their role. The estimated current range for this role in the U.S. is $88,000 - $XXX.XX.

CGI Federal's benefits include:

  • Competitive compensation
  • Comprehensive insurance options
  • Matching contributions through the (k) plan and share purchase plan
  • Paid time off for vacation, holidays, and sick leave
  • Paid parental leave
  • Learning opportunities and tuition assistance
  • Wellness and Well-being programs

CGIFederalJob

LI-PC1

Skills :

  • CompTIA Security+
  • DIACAP
  • English
  • Information Assurance
  • CompTIA Cloud+
#J-18808-Ljbffr