Information Security Analyst

Job Description

**This opportunity is contingent upon award**

Company Summary

Arlo Solutions (Arlo) is an information technology consulting services company that specializes in delivering technology solutions. Our reputation reflects the high quality of the talented Arlo Solutions team and the consultants working in partnership with our customers. Our mission is to understand and meet the needs of both our customers and consultants by delivering quality, value-added solutions. Our solutions are designed and managed to not only reduce costs, but to improve business processes, accelerate response time, improve services to end-users, and give our customers a competitive edge, now and into the future.

Position Overview

Arlo is in search of an Information Security Analyst to support the IRS Office of Safeguards in conducting computer security reviews and evaluating agency submissions.

Work Location

Washington, DC 20224

Job Responsibilities and/or Success Factors

• Use the Safeguards Computer Security Evaluation Matrices (SCSEMs) checklist as a guide to perform Computer Security Reviews on local, state or federal agencies, and their authorized contractors, that receive FTI under IRC Section 6103.
• Work with agency stakeholders to execute system configuration checks, interview system users, and to examine system artifacts against management, operational and technical requirements, CIS Benchmarks, NIST requirements and current IRS standards (IRS Publication 1075, IRC 6103).
• Document results of system configuration checks, system user interviews, and examination of system artifacts against management, operational and technical requirements, CIS Benchmarks, NIST requirements and current IRS standards (IRS Publication 1075, IRC 6103). The method of execution includes automated compliance scans and manual testing. Conclusive test results for each in-scope platform and technology are documented within SCSEMs and uploaded to the IRS case management system.
• Document all computer security findings identified during the On-Site Assessment
• Review various agency submissions, conduct analysis, and draft responses.

Education and Minimum Qualifications

• Must be a US Citizen
• High School Diploma or higher
• A minimum of 2 years of relevant experience in capturing information security operation or security requirements, and ensuring the requirements are properly addressees through development implementation, and configuration.
• Experience in implementing security controls, configuration changes, and software/hardware updates, vulnerability, and securing configurations within Government organizations, including their infrastructure, responsibilities, programs, and initiatives is preferred.
• A minimum of one of the following certifications:
  1. CCNA Security, CySA+/CSA+, GICSP, GSEC, Security+ CE, CND, SSCP, CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP, CAP, CASP+ CE, CISM, GSLC, CCISO, HCISPP, CEH, CySA+/CSA+, GSNA, CFR, PenTest+. In lieu of a certification, graduation from minimum of a 2 year IT/Cybersecurity program at an accredited college or university may be substituted.

AAP Statement

We are proud to be an Affirmative Action and Equal Opportunity Employer and as such, we evaluate qualified candidates in full consideration without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, and any other protected status.