×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Security Analyst; Infosec - Level Iv

Job in Virginia Beach, Virginia, 23450, USA
Listing for: Navy Exchange
Full Time position
Listed on 2025-12-19
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Position: SECURITY ANALYST (INFOSEC - LEVEL IV)

Job Summary

Serve as a Senior Information Security Analyst Alternate ISSM with responsibility of developing, maintaining and supporting NEXCOM's Information Assurance program and associated security controls within the NEXCOM Enterprise environment. Perform security assessments and associated reports. Maintain the NEXCOM IAVM program. Maintain compliance with current DoD DON cybersecurity policy. Processes and reviews of System Security Reviews (SSR). Maintain DIACAP/RMF accreditations for existing and future NEXCOM systems.

Includes working with stakeholders both leadership and subject matter experts to build a holistic view of NEXCOM's strategy, processes, information and security posture.

Duties and Responsibilities

Incumbents must be U.S. Citizens.

  • Serves as mentor providing instruction and guidance to lower level Info Sec Analysts.
  • Excellent analytical and problem solving skills.
  • Maintaining and tracking IAVM program compliance.
  • Review and document security assessments of computing environments through the SSR process to identify points of vulnerability and non‑compliance with established Information Assurance (IA) standards and regulations.
  • Track FISMA Contingency Plan testing compliance.
  • Assist CSWF‑PM with maintaining and tracking CSWF program compliance.
  • Perform quarterly audit reviews and reporting.
  • Expert with compliance and regulatory requirements such as DIACAP, RMF, PCI, PII, SOX.
  • Complete weekly metric reports for Code IS.
  • Analyze STIG and ACAS reports and advise system administrators on acceptable mitigation measures.
  • Compile all required artifacts for DIACAP and RMF Authorization packages and work through obtaining an Authorization to Operate.
  • Ensure security deficiencies identified during security/certification testing have been mitigated, corrected, or a risk acceptance has been obtained by the appropriate authorized representative.
  • Perform data security assessments including applications, servers, databases, and other network components and associated processes against the PCI DSS standards to identify areas of non‑compliance.
  • Process and authorize NEXCOM system access through SAAR and PAA agreements.
  • Provide system related input on IA security requirements to be included in statements of work and other appropriate procurement documents.

Performs other related duties as assigned.

Department of the Navy (DON) Cyber Information Technology / Cybersecurity Workforce positions (Cyber IT/CSWF)

This position has been designated as a Cyber IT/Cybersecurity Workforce position in specialty area 72 and as a condition of employment incumbents of this position are required to comply with the DON Cyber IT/CSWF Program requirements of SECNAV M‑5239.2, which include:

  • Earn and maintain appropriate credentials from the Cyber IT/CSWF Qualification Matrix (described in SECNAV M‑5239.2) associated with the specialty area and level commensurate with the scope of major assigned duties for the position to which you are assigned.
  • Per SECNAVINST 1543.2, Cyber IT/CSWF individuals shall participate annually in 40 hours of continuous learning (CL) activities to be documented in a current individual development plan (IDP) signed by both the employee and supervisor.
  • Required minimum Cybersecurity Credentials for this position are:
    • Education (at least one of the following):
      • Graduate Degree from accredited University
      • CNSSI 4012 Senior Systems Manager
    • Certification (at least one of the following):
      • Certified Authorization Professional (CAP)
      • Certified Information Security Manager (CISM)
      • Certified Information Systems Security Professional (CISSP)
      • CompTIA Advanced Security Practitioner (CASP) ce
      • GIAC Security Leadership Certification (GSLC)

    • Candidates without the required credentials may be placed into this position, but must obtain the required credentials within 6 months of appointment; failure to obtain this requirement will result in termination of employment.

    This position is designated IT‑1 (Critical ‑ Sensitive) in accordance with SECNAV M‑5510.30 and will require a favorable Single Scope Background Investigation (SSBI).

    Candidates must be eligible for and obtain a Top Secret Clearance, within 6 months of appointment. Failure to…

    To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
    (If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search