Talent.com
Information Assurance Systems Officer, Information Services
Information Assurance Systems Officer, Information ServicesRAND Corporation • Pittsburgh, PA, United States
Information Assurance Systems Officer, Information Services

Information Assurance Systems Officer, Information Services

RAND Corporation • Pittsburgh, PA, United States
[job_card.variable_days_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Job Type : Regular

Information Assurance Systems Officer, Information Services

The Information Assurance Systems Officer (IASO), Information Services (IS) supports cybersecurity and risk management initiatives across enterprise unclassified systems. The IASO plays a central role in protecting information assets, ensuring compliance with federal, state and local cybersecurity requirements (e.g., NIST 800-171, CMMC), and maintaining a strong security posture through effective use of Governance, Risk, and Compliance (GRC) tools. This includes conducting audits, analyzing sensitive data, and collaborating with various teams to implement and maintain security measures. The IASO identifies vulnerabilities, recommends improvements, and provides expert guidance on cybersecurity matters while staying informed about emerging threats and trends. This IASO role is responsible for CMMC practices (Cybersecurity Maturity Model Certification) as a member of the Information Services (IS) Information Security Cybersecurity Team.

Responsibilities

Cybersecurity System Security and Compliance across the enterprise unclassified systems :

  • Develop and maintain System Security Plans (SSPs) and supporting documentation aligned with NIST 800-171 and CMMC practices.
  • Conduct regular security control assessments, perform gap analyses, and update Plans of Action and Milestones (POA&Ms).
  • Coordinate security authorization and compliance activities across IT systems and applications.

Cybersecurity and Security Reviews & Continuous Improvement :

  • Perform ongoing security reviews of applications, infrastructure, and business processes to verify compliance and identify improvements.
  • Recommend remediation strategy, track remediation efforts, and collaborate closely with IT, DevOps, and business teams
  • Conduct comprehensive cybersecurity audits to ensure compliance with CMMC, DFARS 7012, NIST 800-171, and other relevant regulations.
  • Analyze and assess various data types, including Controlled Unclassified Information (CUI), Controlled Technical Information (CTI), Federal Contract Information (FCI), International Traffic in Arms Regulations (ITAR), and Export Administration Regulation (EAR99).
  • Collaborate with system and network administrators to ensure audit features are configured and enabled correctly.

    • Third-Party IT Security Oversight :

  • Conduct third-party / vendor security assessments as part of the procurement and onboarding process.
  • Review supplier security documentation and manage risks associated with external data sharing and service providers.

    • Incident Support :

  • Participate in incident response activities, including documentation, coordination, and lessons learned reviews.
  • Help improve incident detection, containment, and prevention through policy, training, and technical improvements.

    • GRC & Risk Management Support :

  • Utilize GRC tools to document and track risk assessments, policy compliance, and mitigation efforts.
  • Identify and evaluate risks to information assets; assist in the development of risk treatment and remediation plans.
  • Review policy exceptions to assess impact and risk, track approvals, and monitor mitigation within target remediation timeline
  • Collaborate with internal stakeholders to ensure alignment of technical and administrative controls with risk management strategies.

    • IT Security Awareness & Training :

  • Support the development and rollout of security awareness training to ensure users understand responsibilities and best practices.
  • Ensure training completion and maintain accurate compliance records; other duties as assigned.

    • Qualifications

    Required :

  • Minimum 8 years of experience with a BS / BA degree in an IT information security or compliance role in a corporate or government contractor setting. (Minimum 12 years' experience without a BA / BS degree.)
  • Strong understanding of NIST SP 800-171, CMMC Level 2, and basic DFARS cybersecurity clauses.
  • Extensive knowledge of multiple federal government network security processes and procedures
  • Technical background with understanding or hands-on experience in Information Technology environments and web technologies
  • Excellent oral and written communications skills required for correspondence, reports, briefings, and procedures
  • U.S. Citizenship (required for defense contractor compliance).
  • Must have the ability to obtain and maintain a security clearance
  • Cybersecurity Risk Management or Information Assurance related certifications.
  • Proficient in MS Office Applications.
  • Excellent written / verbal communication skills and judgement.

    • Preferred :

  • Professional certifications such as Security+, CISSP, CISA, or CRISC.
  • Familiarity with audit processes, internal controls, and security risk assessments.
  • Knowledge of Microsoft office applications
  • Working knowledge of Confluence and Jira for task management

    • Experience

    With a BS / BA degree, at least 8 years' experience in cybersecurity required. Without a BS / BA degree, at least 12 years' experience in cybersecurity security required.

    Education

    High school diploma or GED is required. BS / BA degree is preferred.

    Security Clearance

    Must meet eligibility requirements for access to U.S.government classified information.

    Location

  • Santa Monica, CAor
  • Washington D.C., or Pittsburgh. PA

    • This position is mainly onsite at a RAND U.S. location.

    Positions Open

    One

    Salary Range : $120,900 - $180,300

    RAND considers a variety of factors when formulating an offer, including but not limited to, the specific role and associated responsibilities; a candidate's work experience, education / training, skills, expertise; and internal equity.The salary range includes base pay plus RAND's sabbatic pay (which provides additional compensation above base pay when vacation is taken). In addition, RAND provides strong benefits including health insurance coverage, life and disability insurance, savings plan, paid time-off and more.

    Equal Opportunity Employer

    [job_alerts.create_a_job]

    Information Officer • Pittsburgh, PA, United States

    [internal_linking.similar_jobs]
    Restaurant Manager

    Restaurant Manager

    LongHorn Steakhouse • Cranberry Township, PA, US
    [job_card.full_time]
    For this position pay will be variable by location - See additional job details and benefits below.Legendary leadership certifies that our food, service, people and atmosphere are the best.Our Rest...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Manager of Business Systems Analysis

    Manager of Business Systems Analysis

    First National Bank of Pennsylvania • Pittsburgh, PA, United States
    [job_card.full_time]
    Make a difference - for us and for your future.Please note : this on-site position is based at our Financial Center in Pittsburgh, PA. Candidates must be local, or willing to relocate to area.FNB wil...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior IT Auditor

    Senior IT Auditor

    Northwest Bank • Bellevue, PA, United States
    [job_card.full_time]
    The Senior IT Auditor performs specialized auditing tasks related to the bank's IT function.This includes thorough and efficient planning, testing, reporting, and follow up on audit results.The rol...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Director of Information Technology

    Director of Information Technology

    Allegheny Conference on Community Development • Pittsburgh, PA, US
    [job_card.full_time]
    The Director of Information Technology provides strategic leadership and oversight of IT operations and infrastructure for a mission-driven nonprofit organization. This role aligns technology strate...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Research Lead - AI Cyber Testing & Evaluation

    Research Lead - AI Cyber Testing & Evaluation

    RAND Corporation • Pittsburgh, PA, United States
    [job_card.temporary]
    Global and Emerging Risks (GER) division.As Research Lead - AI Cyber Testing & Evaluation, you'll direct a comprehensive research portfolio focused on assessing the offensive cyber capabilities of ...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Systems Administrator, IT

    Senior Systems Administrator, IT

    Agility Robotics • Pittsburgh, PA, US
    [job_card.full_time]
    Our robot, Digit, is the first to be sold into workplaces across the globe.Our team is differentiated by its expertise in imagining, engineering, and delivering robots with advanced mobility, dexte...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Health Information Manager

    Health Information Manager

    One Senior Care, LLC. • Pittsburgh, PA, US
    [job_card.full_time]
    Do you enjoy creating order, supporting others behind the scenes, and helping teams work smoothly and confidently?.Are you someone who thrives in a steady, detail-focused, and collaborative environ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Information Security Specialist II

    Information Security Specialist II

    Federal Home Loan Bank Pittsburgh • Pittsburgh, PA, United States
    [job_card.full_time]
    The Information Security Specialist plays a vital role in protecting the Bank's information assets by ensuring the integrity, confidentiality, and availability of systems across the enterprise.This...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Systems Analyst

    Senior Systems Analyst

    Federal Home Loan Bank Pittsburgh • Pittsburgh, PA, United States
    [job_card.full_time]
    The Senior Systems Analyst will be a lead technical resource and work independently to understand and document business requirements, design technical solutions, and implement applications.The cand...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Cerner RCM Analyst / Developer

    Cerner RCM Analyst / Developer

    ClinDCast LLC • Pricedale, PA, US
    [job_card.full_time]
    Hands-on with Cerner RCM (Patient Accounting, Billing, Claims, Cash Posting, etc.Proficiency in Cerner Command Language (CCL). Knowledge of Cerner DAAC schema & RCM tables (ENCTR, FIN, CHG, PAY,...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Manager, Regulatory Affairs (Biosimilars)

    Senior Manager, Regulatory Affairs (Biosimilars)

    Fresenius Kabi USA, LLC • Warrendale, PA, United States
    [job_card.full_time]
    The Senior Manager, Regulatory Affairs delivers Regulatory Affairs and compliance guidance and strategic input as a subject matter expert in Biosimilar Development and Life Cycle Management to find...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Corrections Food Service Instructor - SCI Fayette

    Corrections Food Service Instructor - SCI Fayette

    Commonwealth Of Pennsylvania • La Belle, PA, United States
    [job_card.full_time]
    Share your food service knowledge with a diverse population! The Pennsylvania Department of Corrections is seeking an energetic and motivated individual to join our team as a Corrections Food Servi...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Operations Director

    Operations Director

    Urban Strategies, Inc. • Pittsburgh, PA, US
    [job_card.full_time]
    USI is a national nonprofit with extensive experience in the design and implementation of place-based human capital development strategies in. Founded in 1978, USI is a leader in community developme...[show_more]
    [last_updated.last_updated_30] • [promoted]
    IT Director of Digital Channels and Payments

    IT Director of Digital Channels and Payments

    First National Bank of Pennsylvania • Pittsburgh, PA, United States
    [job_card.full_time]
    Make a difference - for us and for your future.Please note : This on-site position is based at the FNB Financial Center in Pittsburgh, PA. Candidates must be local or willing to relocate to Western P...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Corrections Officer Trainee - State Correctional Institution at Fayette

    Corrections Officer Trainee - State Correctional Institution at Fayette

    Commonwealth Of Pennsylvania • La Belle, PA, United States
    [job_card.full_time]
    Are you looking for more than just a job, but the start of a successful career? If you have a strong dedication to public service and want to help keep the public safe, we encourage you to submit a...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Regional Account Manager (Biosimilars) - Northeast Region

    Regional Account Manager (Biosimilars) - Northeast Region

    Fresenius Kabi USA, LLC • Warrendale, PA, United States
    [job_card.full_time]
    The Regional Account Manager (Biopharma) is accountable for implementing commercial strategies through the promotion of the biosimilar portfolio. Primary focus is to grow sales by developing a solid...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Application Systems Senior Analyst

    Application Systems Senior Analyst

    Northwest Bank • Bellevue, PA, United States
    [job_card.full_time]
    Senior Application Systems Analyst provides analytical, tier 2 / 3 technical support for business applications, mentors and coaches junior team members. creates and maintains documentation relative t...[show_more]
    [last_updated.last_updated_30] • [promoted]
    IT Systems Administrator

    IT Systems Administrator

    Pantherx Specialty LLC • Pittsburgh, PA, US
    [job_card.full_time] +1
    Diseases - 500 Treatments - 1 Rare Pharmacy.PANTHERx is the nation’s largest rare disease pharmacy, and we put the patient experience at the top of everything that we do.If you are looking fo...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]