Senior Security Specialist - HVA Analyst

Planned Systems International, Inc. (PSI) is seeking a Senior Security Specialist – HVA Analyst to join our team in the D.C. Metro area to support our government clients. The Senior Security Specialist – HVA Analyst is a multifaceted role that collaborates with other teams across the business. A successful candidate will be a part of the professional services team regarding federal information and cybersecurity doctrine, including FISMA, and the NIST issuances with a focus on High-Value Assets (HVA) and Cybersecurity Framework (CSF) in support of cybersecurity operations for the Department of the Treasury. In addition, you will be providing onsite support to conduct all-source analysis, and targeting to identify, monitor, assess, and counter the threat posed by foreign cyber actors against the U.S. Department of the Treasury’s Departmental Offices (DO), critical infrastructure, and cyber-related interests. The primary purpose of this effort is to assist the Department of the Treasury in strengthening its overall cybersecurity posture and improving the maturity of agency cybersecurity programs.

• Develop procedures and templates associated with the Security Assessment and Authorization (SA&A) process and activities to ensure compliance with federal guidelines and policies.
• Provide support for the annual process for identifying, categorizing, and prioritizing HVAs. This process was developed for identifying which of Treasury’s nearly 368 systems qualify as HVAs by using sensitivity criteria that have been previously defined by Office of Management and Budget (OMB) Memorandum M-17-09. Typical activities include data collection, data analysis, and preparation of documentation, coordination, and collaboration across Treasury Bureaus.
• Support the continued development and maintenance of the HVA identification, categorization, and prioritization process as required.
• Identify additional approaches to maintain and improve requirements.
• Identify and integrate data from multiple organizations and business functions ensuring all Treasury Cyber Critical Infrastructure are properly identified.
• Coordinate the extension of ACIO/CS risk governance to bureau-wide risk governance.
• Review and revise existing processes and policies for maintenance and continuous program improvement.
• Research, develop, maintain, and update HVA documents, artifacts, and reports as required.
• Capture, maintain, and submit all required Plans of Actions & Milestones (POA&M) and Remediation Plans per BOD 18-02 and OMB M 19-03.
• Identify vulnerabilities and assist the HVA program office to implement timely remediation.
• Recommend an approach for prioritizing HVAs based on criticality and importance.
• Provide input to HVA Strategy, Implementation Plan, Timeline, and Treasury HVA policy.

Minimum Qualifications :​

• Bachelor's degree in Information Technology, Computer Science, Information Systems, or related field.
• At least 10 years of federal information security experience with a minimum of 3 years of relevant experience involving HVA and CSF support with demonstrated leadership roles.
• Professional certification related to computer science or information assurance. 
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM), Certified
  • Information Systems Auditor (CISA), and/or CompTIA Security+.

Required Skills & Experience: 

• Experience working for the Big Four, Previous experience at the Pentagon and/or Joint Level assignments. Prior experience with HVAs and/or IC experience. Project/Program management experience. 

Required Technical/Business Tools Experience:

• Ability to be adjudicated for access to Sensitive but Unclassified (SBU) / Controlled Unclassified Information (CUI) following background suitability and records check.
• Mastery of, and fluency in, the NIST SP 800-3X series and SP 800-18, and a solid understanding of all other NIST FISMA issuances, as well as federal statutes, security-relevant OMB circulars and memoranda, federal information processing standards, and other federal security doctrines.
• Ability to participate as a senior member of a technical team that is performing audit support, and SSP process and artifact design and development.
• Ability to tailor information security processes and tools, based on changing landscapes, doctrine, and risk scenarios.
• Proficiency in performing work in a federal agency that has FISMA, OMB Cybersecurity & Privacy, and NIST SP/FIPS compliance requirements.
• Fluency in both spoken and written US English, including the ability to work with highly technical and specialized content. Must be able both prepare and deliver such content, verbally and in writing, but also comprehend such content from others, in both spoken and written form.
• Previous Department of Treasury experience highly desirable.

PSI offers full-time, benefits eligible employees a competitive total compensation package that includes paid leave, and options for employer sponsored group medical, dental, vision, short-term and long-term disability, life insurance, AD&D coverage, legal services, identity theft, and accident insurance. Flexible spending account and health saving account options offer pre-tax savings for qualified medical, dental, and vision expenses. The company sponsored 401(k) retirement plan has an employer contribution match that is immediately vested. We invest in the professional growth of our employees through professional courses, certifications, and tuition reimbursement programs.

It is company policy to promote equal employment opportunities. All personnel decisions, including, but not limited to, recruiting, hiring, training, promotion, compensation, benefits, and termination, are made without regard to race, color, religion, age, sex, sexual orientation, pregnancy, gender identity, genetic information, national origin, citizenship status, veteran status, protected veteran status, disability, or any other characteristic protected by applicable federal, state, or local law.

Reasonable accommodations for applicants and employees with disabilities will be provided. If a reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact Human Resources by emailing HRDepartment@plan-sys.com, or by dialing 703-575-8400.