Information Security Analyst
NCI Information Systems, Inc. - Reston, VA

This job posting is no longer available on NCI Information Systems, Inc.. Find similar jobs:Information Security Analyst jobs - NCI Information Systems jobs

NCI: As the Information Security Analyst ( Information Security Analyst II ) for AdvanceMed, a premier provider of healthcare program integrity services, is responsible for assuring compliance with applicable information systems security requirements, to include implementing and maintaining Information Security initiatives in line with AdvanceMed business objectives and industry trends. Provides necessary expertise in government regulations such as FISMA, NIST, and HIPAA, to include experience with information security requirements specifically related to the Centers for Medicare and Medicaid Services (CMS).

Highlights of Responsibilities:
  • Assist the AdvanceMed Systems Security Officer (SSO) with ongoing updates to security artifacts such as Systems Security Plan (SSP), Risk Assessment (RA), Contingency Plan (CP), and Plan of Action and Milestone (POA&M) deliverables for all task orders, to include collaboration with Security and IT personnel as necessary from all sites.
  • Assist the SSO with ongoing updates to the CMS FISMA Controls Tracking System (CFACTS) to update documentation for system assets and security controls across all AdvanceMed sites and task orders. Attend CFACTS training sessions and collaborate with support personnel as necessary to keep AdvanceMed security documentation compliant with all contractual requirements.
  • Serve as the primary POC for ongoing POA&M remediation activities, to include responding to emails from government personnel, as well as coordinating with members of the AdvanceMed Network, Application Development, and Security teams as necessary. Participate in ongoing security team meetings to ensure required updates are performed and satisfactory remediation documentation is completed.
  • Coordinate with the SSO for required Risk Assessment updates based on remediation results.
  • Assist the SSO with onsite Security Control Assessments (SCA) and audit support, to include responding to requests for documentation, providing remediation evidence, updating relevant security artifacts, and coordinating with members of all teams to ensure the successful completion of all audits and assessments.
  • Participate in ongoing in-person security audits of all AdvanceMed facilities, to include annual audits of primary offices and home office audits as necessary.
  • Collaborate with management, employees, and other security team members to ensure audits are completed in a timely fashion.
  • Complete post-audit reports to document audit results and interface with management and employees to perform required remediation activities.
  • Perform ongoing research to keep abreast of new/advanced system security technologies, and satisfy continuing education requirements for established certifications via regular attendance to security and other information technology conferences.
  • Contribute to the ongoing Security Awareness Training program, to include assisting the SSO in annual updates to content, and in the organization and technical assistance for training sessions delivered annually for all AdvanceMed offices.

  • Bachelor's degree in Engineering, Computer Science, or a related field.
  • Knowledge and understanding of technology-related state and federal regulations, including FISMA, NIST, HIPAA, ISO, and other guidelines.
  • Knowledge and understanding of the Direct experience with government security initiatives and systems, such as the NIST Risk Management Framework.
  • Knowledge of security hardware and software products that comply with current healthcare industry standards.
  • Excellent verbal and written communication skills, with the ability to communicate effectively to varying levels of technical expertise.
  • Ability to work and effectively prioritize in a highly dynamic work environment.
  • Must be customer focused and demonstrate a high level of integrity and trust.
  • 4-9 years experience in a position directly related to Information Technology and/or Information Security.
  • Expected travel is less than 15% per year.

Preferred Education and Experience:
  • One or more IT or Security certifications.
  • Knowledge of security hardware and software products that comply with current healthcare industry standards.
  • Knowledge of Windows 7 and Windows Server 2003/2008 configurations, to include system installation and patching.
  • Experience with one or more log management, data loss prevention, and vulnerability/patch management tools.
  • Direct experience with government security initiatives and systems, such as the NIST Risk Management Framework.

facebook | Twitter | LinkedIn

At NCI, we’re more than just a paycheck…

We offer significant opportunity for growth at NCI – Adding more and more employees and company locations nationwide, we continue to seek top talent to ensure our path of innovation, growth and unmatched customer experience. We reward our employees with competitive compensation, flexible time off, retirement plan with company match and much more…

MEDICAL/DENTAL/VISION PROGRAMS - NCI offers four medical plan options to meet the personal health needs and budgets of our full-time employees and their families. All plans provide our employees and their eligible dependents with major medical and prescription drug coverage. The two dental plan offerings provide coverage options so as to ensure our full-time employees and their eligible dependents are able to follow a regularly scheduled program of dental care with their providers of choice. A vision maintenance plan offers a cost-savings option for our full-time employees and their families in need of comprehensive annual eye exams, prescription glasses, and contact lenses.

STOCK & WEALTH - NCI’s 401(k) Profit Sharing Plan is eligible to all full-time and regular part-time employees. Employees may elect to have contributions invested in any of the 15 different investment funds, target-date funds, or self-directed brokerage. A per pay company matching contribution is equal to 50% of employee elected pre-tax or Roth contributions up to 6% of eligible pay, subject to the IRS maximum.

LIFE INSURANCE - NCI provides company paid Basic Life/ AD&D Insurance Coverage. The basic coverage benefit is equal to one times (1X) an employee's annual base salary. Employees may also opt for a generous flat rate insurance coverage. For coverage above the company-provided limits, employees may purchase supplemental insurance coverage for themselves and their family members.

WORK/LIFE BALANCE - Employees are eligible for additional programs including Paid Time Off (PTO).

  • Flexible Spending Account (FSA) Programs
  • Employee Assistance Program (EAP) for employees and their immediate family members
  • Health Advocacy Benefit
  • NCI’s Wellness Program offering Health Club reimbursement options
  • NCI Perks Employee Discount Program
It is your turn… Choose your career path and become part of the NCI team where you will be valued for your unique skills and capabilities and where you will be rewarded for key contributions to NCI and our customers.

Make the commitment and take the next step towards joining the NCI Team. Our application process will take approximately 5-10 minutes to complete.

If you do not meet the minimum qualifications for this position, please review our current openings now and in the future. Thank you for your interest in NCI!

It is the policy of NCI to provide equal opportunity in recruiting, hiring, training, and promoting individuals in all job categories without regard to race, color, religion, national origin, gender, age, sexual orientation, genetic characteristics, disability, veteran status or any other category afforded protection under applicable state or local law.

The information above has been designed to indicate the general nature and level of work performed by employees within the classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this position.

About this company
134 reviews
NCI isn't the newest hit show on CBS, but an IT services provider primarily for US federal government agencies. Among its services are...