196638 - Analyst II
Remote Work
12 months

Chipton-Ross is seeking an Analyst II for an opening in Remote, US

30% - Oversee, support, and perform security audits, assessments, validation, and continuous monitoring
20% - Prepare, maintain, and consult regarding Information Technology Governance, Risk, and Compliance (IT GRC) documentation, including
Policy, Directives, Procedures, and Training System security plans (SSPs) Information System Security Inventory Reports Interconnection Security Agreements
15% - Improve maturity, efficiency, and effectiveness of IT GRC processes
10% - Provide subject matter expertise to business and IT regarding IT GRC topics, including
Compliance with and implementation of internal security policies and requirements, cybersecurity-related DFARS and NASA FAR regulations, NIST SP 800-171 controls, and cybersecurity-related Legal guidance Secure and compliant collaboration and communication tools Advice on responses to cybersecurity terms in customer contract proposals
5% - Oversee, drive, and perform security control remediation and risk mitigation
5% - Develop, report, and present key metrics and initiative summaries
5% - Develop and maintain acumen regarding business, IT, and network architecture, tools, and processes which impact information security posture
5% - Other tasks as needed to strengthen AR's information security posture and maintain information security regulatory and policy compliance
5% - Personal growth and ongoing education: Demonstrate commitment to continuous process improvement and learning.

At least 13 years of IT business/industry work experience.
At least 10 years of information-security-related experience At least 4 years of IT regulatory compliance experience.
Experience with:
NIST SP 800-171 and/or NIST SP 800-53 controls DFARS or NASA FAR information security compliance Information security audits (government, external, and/or internal)
CISA, CISM or CISSP certification.
Experience with:
Service Organizational Controls (SOC) reports Assessing risk and maturity of IT processes NIST Risk Management Framework (RMF) LEAN, Six Sigma, LSS, other process improvement methologies
Ability to successfully liaise with a wide variety of stakeholders, including
o Government, external, and internal auditors
o Executive, senior, middle, and front-line business management
o IT subject matter experts
o Legal, contract, program management, business development, and supply chain personnel
o Customers, including contract administration and cybersecurity management personnel
o Other compliance and security organizations within the company
Operational execution excellence
Strong organizational skills
Ability to adjust communication style to others Drive toward closure with attention to quality and efficiency Intellectual curiosity and the ability to question thought partners across functional areas Team and collaboration orientation Complex problem solving Gains excellent results through others, strong leader to achieve goals Performance driven Change agent/leader of change Learning orientation

Bachelor's degree or equivalent experience.


Employment will be contingent on clearing a drug screen and background check. Both must clear prior to start date.

Taj Johnson
420 Culver Boulevard
Playa Del Rey, CA 90293

Phone: (310) 414-7800 x283 or (800) 927-9318 x283

Candidates responding to this posting must currently possess the eligibility to work in the United States. No third parties please.

Employment will be contingent on candidate clearing pre-employment drug screen and background check.

Chipton-Ross provides equal employment opportunities to all employees and applicants for employment without regard to race, color, creed, religion, national origin, sex (including pregnancy), age, disability, sexual orientation, gender identity and/or expression, protected veteran status, genetic information, or any other characteristic protected by Federal, State or local law. This policy governs all areas of employment at Chipton-Ross, including recruiting, hiring, training, assignment, promotions, compensation, benefits, discipline, and terminations.