Welcome page Returning Candidate? Log back in! Senior Program Analyst Job ID 2024-5444 Job Locations US-Remote-United States Overview

Are you a Senior Program Analyst who would like to have a positive impact for millions of people? If so, we may have an opportunity for you!

 

TISTA associates enjoy above Industry Healthcare Benefits, Remote Working Options, Paid Time Off, Training/Certification opportunities, Healthcare Savings Account & Flexible Savings Account, Paid Life Insurance, Short-term & Long-term Disability, 401K Match, Tuition Reimbursement, Employee Assistance Program, Paid Holidays, Military Leave, and much more!

 

Stay Connected:

Follow us on LinkedIn for updates on this job and other exciting opportunities.

Responsibilities Work as part of cross-functional Agile and SDLC project teams or support individual productConduct security authorization and assessment activities and tasks and obtain an Authorization to Operate (ATO) in line with NIST and client guidance and directivesDetermine the baseline IT Security requirements for IT Systems, diagram system authorization boundaries, determine system categorization based on FIPS-199Manage vulnerabilitiesConduct technology evaluation and system design review to assess the effectiveness of existing controls and provide meaningful recommendationsMonitor progress, manage risk, and ensure key stakeholders are kept informed about progress and expected outcomes, and propose and take corrective action as appropriateAssist in Federal Information Processing Standard (FIPS) categorization of applications/systemsParticipate in risk assessments, vulnerability scans and penetration testing of new and existing systems to identify, investigate and document security weaknessesDocument and implement security controls using NIST standardsReview and generate authorization and assessment system documentation as needed: Security Assessment Reports (SARs), Privacy Threshold Assessments (PTA), Privacy Impact Analysis (PIA), Disaster Recovery Plans (DRP), Information System Contingency Plans (ISCP), Incident Response Plans (IRP), Risk Assessment Reports (RARs), Standard Operating Procedures (SOPs) and Plans of Action and Milestones (POAMS)Create and maintain project content in the Governance, Risk, and Compliance (GRC) tool per client’s guidance.Identify and report detailed Plan of Action and Milestone (POAMs); manage and monitor for corrective actionsReview and analyze system scan reportsProvide guidance on security requirements for systems hosted in cloud (including FedRAMP) versus on-premiseResearch and stay up-to-date on industry standards and any new vulnerabilities and risksAssess systems to analyze risk and report weaknesses findingsWork with developers and DBAs in addressing findingsAssess and review current technology infrastructure to identify key risk areas, and ensure adequate levels of controls are in place to address those risksParticipate in and support internal and external compliance initiatives including audit requests, tabletop exercises, security training, and other tasks associated with improving the company’s security posture Qualifications 5+ years of demonstrated experience in the Information Security (Cybersecurity or Information Assurance) fieldRecognized IT security certification, such as Security+ or Certified Information Systems Security Professional (CISSP)  Demonstrates a proficiency with developing, maintaining and managing security authorization and assessment packagesExperience with developing and managing POA&MsDisplays technical experience with conducting research and providing review recommendations on software and technologies for vulnerabilitiesTechnical experience with reviewing vulnerability scans and providing mitigation techniquesPossess experience in participating in SCA’sExperienced writing security related policies and procedures and conducting audit log reviewKnowledge of and experience with Federal security regulations, standards, and processes including FISMA and NISTExperience with NIST Special Publications and guidanceStrong problem solving and analysis skills, self-motivated, and able to work and communicate in a team environmentExperience with maintaining security packages in a Governance, Risk, and Compliance toolStrong written and oral communication skillsDevSecOps experience a plusEnterprise Mission Assurance Support Service (eMASS) experience a plus

 

 

Education:

Bachelor's Degree in a Business dicipline PLUS 10 Years of experienceEight (8) years of additional relevant experience may be substituted for education

 

Clearance: 

The ability to pass a Tier 4/HIGH Background Investigation

 

Location:

Remote, USAMonday - Friday (8:00 AM - 4:30 PM CST)

 

Pay Range:

The pay for this position ranges from $52,730 to $68,500The actual salary offer will carefully consider a wide range of factors, including your skills, qualifications, experience, and locationAlso, certain positions are eligible for additional forms of compensation, such as bonusesTISTA associates are eligible to participate in our comprehensive benefits plan! More information can be found here: https://tistatech.com/working-at-tista/

TISTA Science and Technology Corporation, a CMMI Maturity Level 3 company, focuses on delivering information technology and professional services to Federal and State agencies. TISTA is recognized in 2019 by Inc. 5000 as one of the fastest-growing private companies in the US. TISTA is also a recipient of 2019 Top Veteran-Owned Companies by the Washington Business Journal. TISTA also received a 2018 Moxie Award in the GovCon category.

Here at TISTA Science and Technology, we value Veterans and encourage all to apply!
#thinktista #tistacares #tistavaluesvets

Employment Transparency:
TISTA is an Equal Opportunity/Affirmative Action Employer and embraces diversity in our employee population. It is the policy of TISTA to provide equal opportunity to all qualified applicants and employees without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or genetic information. TISTA will refrain from discharging, or otherwise discriminating against, employees or applicants who inquire about, discuss, or disclose their compensation or the compensation of other employees or applicants.

The EEO is the Law poster is available here, and the poster supplement is available here.
The Pay Transparency Policy is available here.

Tista is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation due to a disability for any part of the employment process, please send an e-mail to recruiting@tistatech.com or call (301) 968-3420 and let us know the nature of your request and your contact information.

TISTA is a federal contractor and is subject to the federal contractor COVID requirements under the new FAR/DFARS clauses and must comply with the incorporated Guidance.

If the candidate is hired to perform work on or in connection with one of TISTA’s federal contracts, TISTA is contractually obligated to ask the candidate to verify and show proof of vaccination status and the candidate will be required to comply with mask and social distancing requirements imposed by the FAR/DFARS as well as any additional requirements imposed by TISTA’s customers for any required onsite work.