ISS Analyst

Planate Management Group (PMG) is a Service-Disabled Veteran-Owned Small Business (SDVOSB) headquartered in Alexandria, Virginia, and Orlando, Florida USA with technical support centers in South East Asia and East Africa, that provide program management and facilities engineering services worldwide. Planate is a small business provider of planning, design, infrastructure management, technical consulting, engineering, and construction management services in support of the US Department of Defense (DOD) and its Service (Army, Air Force, Navy, Marine Corps) missions, along with other US federal agencies, all over the world.

We are seeking an ISS Analyst (Information System Security Analyst) to manage security efforts under the Risk Management Framework (RMF) and ensure compliance with regulations like NIST, CNSSI, CMMC, and NISPOM for classified information systems in Florida. The role involves overseeing security controls, advising developers, and ensuring continuous monitoring throughout the program lifecycle. Occasional local and domestic travel may be required (less than 10% of workload).

Responsibilities:

• Create and maintain comprehensive documentation related to information security policies, procedures, and controls.
• Implement, monitor, and maintain security controls across all systems to protect sensitive information.
• Advise and guide developers on integrating security requirements into system design and development.
• Manage relationships with hardware and software vendors to ensure security standards are met.
• Achieve and maintain Authorization to Operate (ATO) for classified information systems, ensuring compliance with applicable regulations.
• Coordinate with the sponsor and corporate security organizations to align security efforts and compliance.
• Oversee the Continuous Monitoring program to ensure ongoing compliance and security of systems.
• Provide security-related training and guidance to program management and staff, promoting awareness of security best practices.
• Maintain eligibility for personal security clearance to access classified information.
• Perform other responsibilities as necessary to support the program’s security objectives.

Qualifications:

• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field; Master’s degree preferred.
• Minimum of 3 years of experience in cybersecurity, with at least one year in a supervisory role (preferred).
• Active Secret clearance is a plus.
• IAM Level III certification in accordance with DoD 8570.01M, CompTIA Security+.
• High-level security or IT certification with practical experience in security management.
• In-depth knowledge of NIST 700/800 series, CNSSI 1253, NISPOM Chapter 8, CMMC, and related security standards.
• Familiarity with the RMF process and experience in drafting RMF documentation.
• Ability to perform risk assessments and manage risk for all information systems, including cloud, subscription-based, or on-premise environments.
• Proven experience in implementing and monitoring technical, administrative, and operational security controls.
• Experience managing classified information systems within established security frameworks.
• Strong organizational skills with the ability to prioritize tasks and meet deadlines.
• Familiarity with CMMC 2.0, STIGs, NIST CVEs, DOD IAVAs, Compliance Checker (SCC), and Cloud Security concepts.
• Excellent collaborative skills for working in team environments.
• Strong writing skills for creating clear, comprehensive reports and documentation.
• U.S. citizenship or lawful residency, with eligibility to work in the United States (Planate does not sponsor visas or work permits).