Senior Information Security Specialist

If you're seeking a sense of community and the ability for growth, look no further. Since 1982, we have been 100% dedicated to our people. Our approach permits greater ownership for individuals and welcomes input into decisions for a thriving workplace and happy employees. Our people are the core reason for AIS' success. As an employee owned company, we are looking for individuals that are passionate about finding innovative solutions, and excited about emerging technologies and capabilities.

Introduction:

We are seeking a highly experienced Senior Information Security Specialist to lead and support the security assessment and compliance of enterprise information systems. This role involves evaluating technical, operational, and personnel controls throughout the system lifecycle, identifying risks and vulnerabilities, and ensuring alignment with federal standards and industry best practices.

This is a proposal-based position; employment is contingent upon contract award and funding availability.

What You'll Be Doing:

• Conduct comprehensive reviews of information systems to ensure effective implementation of management, operational, personnel, and technical controls across all lifecycle phases.
• Identify and evaluate security risks, threats, weaknesses, and vulnerabilities associated with enterprise systems.
• Ensure compliance with government and industry standards, including NIST, OWASP, Common Criteria, DISA STIGs, and SANS Institute guidelines.
• Collaborate with Agile development teams to integrate security into iterative development processes.
• Apply hands-on technical expertise in networking, system administration, and software development to support security assessments.
• Utilize Splunk for audit log review, system alerting, and incident detection.
• Provide recommendations for remediation and continuous improvement of security posture.
• Develop and maintain documentation such as System Security Plans (SSPs), Risk Assessment Reports, and Security Control Assessments (SCAs).
• Communicate findings and recommendations to technical and non-technical stakeholders.

Location:
This position will be based in Clarksburg, WV. This is a hybrid position, so you must be within commuting distance of Clarksburg, WV.

Required Qualifications:

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• 6+ years of experience in information security, risk management, or system assessment.
• Strong understanding of federal and/or state government cybersecurity practices.
• Experience working in Agile development environments.
• Proficiency in using Splunk for security monitoring and analysis.
• Solid technical foundation in networking, system administration, and application development.
• Top Secret clearance is required to be considered for this position

Preferred Qualifications:

• CompTIA Security+ or equivalent certification.
• Experience with security tools such as Nessus, Wireshark, and endpoint protection platforms.
• Familiarity with Risk Management Framework (RMF) and FISMA compliance.
• Excellent communication, analytical, and documentation skills.

Applied Information Sciences does not discriminate on the basis of race, national origin, religion, color, gender, sexual orientation, age, disability, protected veteran status, or any other basis. Employment decisions are based solely on qualifications, merit, and business needs.