Careers
Live, Virtual, Constructive & Gaming
We engineer, operate, protect, maintain and defend simulation systems
Training & Simulation
Future Force Requirements Planning and Global Force Management
Force analysis and management for the Joint Staff
Mission Support
Software Development Lifecycle
Experimentation & Analysis Support to the Sustainment Battle Lab
Digital Solutions
IT Service Management
Experimentation & Analysis Support to the Sustainment Battle Lab
Enterprise IT
Verification, Validation, Accreditation
We work closely with our clients to ensure that their systems are secure, reliable, and fully compliant
Cybersecurity
Communications and Networking Systems Development and Integration
Our end-to-end solutions, from system design to implementation and maintenance
C5ISR
CIO-SP3
The Combined Arms Support Command (CASCOM) Sustainment Battle Lab (SusBL) contract provides experimentation and analysis support to the SusBL.
Government-Wide Contracts
GSA IT 70
Information Technology (IT) General Services Administration (GSA) Federal Supply Schedule (FSS)
GSA Schedules
Small Business partnering opportunities
We strive to advance the economic opportunity in the communities we serve through teaming partnerships and subcontracting opportunities.
Small Businesses Partnerships
Joint Multinational Exercises
Mission training complex capabilities support
Training & Simulation
Information and Knowledge Management
Mission training complex capabilities support
Digital Solutions
Financial Management and Business Operations Support
Program management, budget and finance support for the Joint Staff and Navy
Mission Support
Data Integration and Visualization
Mission training complex capabilities support
Enterprise IT
Identity and Access Management
Our teams helps clients manage the security of their systems and data by implementing robust identity and access control policies and procedures.
Cybersecurity
Command and Control Systems Development and Integration
CSA provides expertise in designing and implementing advanced systems that enable military commanders to plan, direct, and control operations in real-time.
C5ISR
MTCCS
MTCCS is an IDIQ MAC structured for maximum flexibility in providing for an expedited ordering process
Agency-Specific IDIQs
Army RS3
U.S. Army’s Responsive Strategic Sourcing for Services (RS3) Program Office ensures warfighters’ readiness
Government-Wide Contracts
Exercise Planning & Execution
We plan, execute and assess training events
Training & Simulation
Policy, Doctrine and Campaign Plan Development
Policy, planning and analytical support across the Services and Joint Staff
Mission Support
Software Applications Implementation and Integration
Program Management Support for Commander
Digital Solutions
IT Modernization
Program Management Support for Commander
Enterprise IT
Risk Management Framework
Our experts are well-versed in the latest RMF requirements and procedures
Cybersecurity
Electronic Warfare Strategy, Planning and Implementation
We provide expertise in developing and implementing comprehensive electronic warfare solutions to support military operations.
C5ISR
CNIC Program Management Oversight Support For Commander
Navy Installations Command Headquarters (HQ)CNIC PMOS procures professional services in the areas of program management, engineering, logistics, financial management and administrative support for CNIC Headquarters.
Agency-Specific IDIQs
OASIS+
GSA's One Acquisition Solution government-wide IDIQ MAC for integrated, service-based solutions
Government-Wide Contracts
C4I Integration
Technical Support Services for the MPTE Enterprise
Training & Simulation
Foreign Military Sales
Technical support services and Integrated logistics support
Mission Support
Robotic Process Automation
Technical Support Services for the MPTE Enterprise
Digital Solutions
Database Management
Technical Support Services for the MPTE Enterprise
Enterprise IT
Multi-Factor Authentication
MFA is essential to protecting sensitive military data and systems from unauthorized access.
Cybersecurity
Data Analytics and Fusion for Situational Awareness
Our experts collect, process, and analyze large amounts of data from various sources to create a comprehensive understanding of the operational environment.
C5ISR
Technical Services Support (TSS) 2 for MyNavyHR Enterprise
The Navy's IDIQ MAC provides information technology technical support services to The Chief Information Officer (CIO) for the MyNavyHR enterprise (OPNAV N16) in support of The Office of the Deputy Chief of Naval Operations (OPNAV) MyNavyHR (N1) Division
Agency-Specific IDIQs
Individual & Collective Training
We provide leader, individual, collective and mission command training
Training & Simulation
Concept Development and Experimentation
Develop and test new concepts, technologies and strategies that support mission objectives
Mission Support
Software Applications Modernization and Migration
DIA Solutions for the Information Technology Enterprise
Digital Solutions
Network Engineering
DIA Solutions for the Information Technology Enterprise
Enterprise IT
Cybersecurity Policy and Compliance
Our trusted experts provide comprehensive cybersecurity policy and compliance support
Cybersecurity
Cybersecurity and Information Assurance
Our experts ensure the protection and resilience of military systems and information
C5ISR
Synthetic Environment Integration
Develop complex training scenarios for real-world situations
Training & Simulation
Integrated Logistics Support
Provide support of installed equipment and systems aboard ships
Mission Support
Data Engineering
The Navy’s new platform for acquiring Support Services in 23 functional areas
Digital Solutions
Information and Knowledge Management
The Navy’s new platform for acquiring Support Services in 23 functional areas
Enterprise IT
Information System Security Implementation
Our team of security experts provides customized security solutions that protect sensitive military data and systems from cyber threats.
Cybersecurity
Seaport-NxG
SeaPort-NxG is an IDIQ MAC contract vehicle to provide the Navy with engineering, technical and programmatic support services in 23 functional areas
Agency-Specific IDIQs
Courseware & Curriculum Development & Delivery
Preparing today's military personnel for diverse scenarios they may face
Training & Simulation
Command and Control Operations 24/7/365
24/7 support DoD and DHS operations centers
Mission Support
Software Engineering for Platforms and Systems
Contractor support for Joint Chiefs of Staff
Digital Solutions
Supply Chain Management
From procurement and transportation to inventory management and distribution
Mission Support
Data Analytics and Business Intelligence
Support Services in Engineering, Financial & Program Management
Digital Solutions
Operational Plans Development
Subject matter expertise in Joint strategy and plan development
Mission Support
Data Integration and Visualization
Support Services in Engineering, Financial & Program Management
Digital Solutions
Strategic Communication
Expert strategic planning, program management, and comprehensive communication execution
Mission Support
Data Science Support for AI and Machine Learning
Support Services in Engineering, Financial & Program Management
Digital Solutions
Acquisition, Program Management and Contracts Management
Support program offices in acquisition, cost reduction, budgeting and risk reduction
Mission Support
Database Management
Support Services in Engineering, Financial & Program Management
Digital Solutions

IT Compliance Analyst

Apply for this job
world-globe-glyph
Pensacola, FL
/
Full-time

Client Solution Architects (CSA) is seeking an IT Compliance Analyst to join our growing company in support of our Navy client onsite at our Pensacola, FL location.  We are looking for someone to Provide Support utilizing the RMF Process Guide (Security Plan Approval, Security Assessment Plan (SAP) Approval, System Assessment Report (SAR) Approval, Security Assessment Package Approval, and Continuous Monitoring) for several ATO packages.


For nearly 50 years, CSA has delivered integrated technology and operational support services to meet the defense and federal sector's most complex enterprise needs. Working from operations centers and shipyards to training sites and program offices, CSA deploys experienced teams, innovative tools and proven processes to advance federal missions.  


Onsite/Hybrid/Remote work schedules subject to change based on contract requirements.

  

How Role will make an impact:

  • This person will provide package support per Naval Education and Training Commands continuous monitoring guidance. 
  • Establish periodic meetings/Meet with NETC Cyber RMF Team to discuss RMF timelines, tasks, and deliverables
  • Maintain eMASS Record 
  • Maintain Key artifacts (Package hardware/software lists, diagrams, etc).
  • Maintain other artifacts required by RMF/eMASS( Categorization Form, Contingency Plan (CP), Disaster Recovery Plan (DRP),Incident Response Plan (IRP), Vulnerability and Patch Management Plan, Privacy Impact Assessment (PIA), System Level Continuous Monitoring (SLCM) Strategy)
  • Ensure MONTHLY Scans are conducted per SCA Testing Guidance
  • Ensure all assets in Hardware are scanned, and credentialed
  • Process scans utilizing the eMASSter tool 
  • Ensure all applicable STIGS are conducted for all assets in the Hardware List
  • Ensure all QUARTERLY updated applicable STIGs from DISA website are implemented
  • Review findings and associate each with applicable affected security control;
  • Update POAM items (See POAM Section) Web Risk Assessment (WRA) Scan (if applicable) ATO Modifications (Use Case)

What you’ll need to have to join our award-winning team:

  • Clearance: Must possess and maintain an active Secret Clearance. Must be able to meet security investigation and meet eligibility requirements for access to classified information.
  • Minimum Education: High School Diploma or equivalent.
  • Three (3) or more years of experience executing the NIST Risk Management Framework (RMF) and/or the DoD Information 
  • Navy Cyber Security Workforce (CSWF) baseline certification at IAM Level I or a higher-level certification is required. Acceptable certifications include Security+ CE, CAP, CND, GSLC, Cloud+, and HCISPP.
  • IA Contractor Training and Certification and Computing Environment (CE) certification may be required at the task order level.
  • Assurance Certification and Accreditation Program (DIACAP).
  • Supporting the security Assessment and Authorization/ATO process.
  • Experience with reviewing, comprehending and documenting findings from ACAS (Assured Compliance Assessment Solution) Reports.
  • Experience with SCAP (Security Content Automation Protocol).
  • Experience with DoD Architecture Framework (DoDAF) standards and assessments of enterprise information security architecture, processes, procedures, activities, and operations.
  • Experience with performing cyber security risk assessments and identifying, verifying, and consolidating specific vulnerabilities, causes, analysis of alternatives and identification of appropriate corrective actions from each risk assessment conducted.
  • Experience with evaluation of Security Technical Implementation Guides (STIGs) to determine applicability to systems and assets.
  • Functional expertise with Microsoft Office suite of products, including Word, Excel, PowerPoint, Visio, and Project.

  

What Sets you apart:

  • BA or BS degree from an accredited institution in related field (e.g., Management Information Systems, Information Technology, Computer Science, Math, Business, Engineering, or Physical Science, etc.)
  • Prior experience with DoD Information Assurance Certification and Accreditation Program (DIACAP).
  • IT project management experience supporting Navy or DoD network systems.
  • Excellent oral and written communication skills, including drafting, reviewing, and editing technical graphs, briefs, or documents.
  • Evidence of being detail oriented with strong critical thinking in areas of IT process analysis / process improvement.
  • Possesses Good Team Skills having the ability to coordinate and work well with others.
  • Working knowledge of Microsoft Visio, including the ability to create and maintain detailed diagrams and workflow visualizations in support of operational and technical requirements.

  

Physical Requirements:

While performing the duties of this job, the employee is regularly required to:

  • Sit for extended periods of time and work at a computer workstation
  • Use hands and fingers to operate keyboards, mice, and other input devices
  • Communicate effectively, both verbally and in writing
  • Specific vision abilities required may include close vision, distance vision, depth perception, and the ability to adjust
  • Stand, walk, bend, or reach; Access equipment located in data centers, offices, or under desks
  • Lift and/or move equipment weighing up to 25 pounds

Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions, in accordance with the Americans with Disabilities Act (ADA).

 

The annual base salary range for this position is $85,000. Please note that the salary information is a general guideline only. CSA considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/ training, key skills as well as market and business considerations when extending an offer. Actual compensation within that range will be dependent upon the individual's location, skills, experience and qualifications.

This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee. Duties, responsibilities and activities may change or new ones may be assigned at any time with or without notice.

Applicants may need to meet eligibility requirements for access to classified information; an active United States Department of Defense security clearance or the ability to obtain one may be required for this role.

As a federal contractor, CSA will abide by the client’s infectious disease protocols.

WE BELIEVE great companies know who they are and what they stand for. CSA’s common purpose and core values were purposefully developed to create a culture focused on unlocking the full potential of our people—so they are inspired to solve our clients’ toughest challenges. It’s no secret, we owe the past 18 years of our success to our outstanding and ambitious team members. To support our hard working team, we offer an environment focused on learning and growth, an awesome benefits package, and opportunities to build a long and successful career.

We are constantly on the hunt for talented, forward-thinking problem solvers with an energetic attitude and a strong work ethic to join our elite team of CSAers.  

Be a part of CSA … do  great  things!

CSA is a Federal Contractor and an Equal Opportunity/Affirmative Action Employer.

If you are an individual with a disability and would like to request a reasonable workplace accommodation for any part of our employment process, please send an email to  hr@csaassociates.com. Please indicate the specifics of the assistance needed. Assistance is reserved for individuals who are requesting a reasonable workplace accommodation. It is not intended for other purposes or inquiries. We’re an equal opportunity employer that empowers our people no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status or other protected characteristic.

Federal Equal Opportunity is the Law
Federal Employee Rights under FMLA
Federal Employee Polygraph Protection Act
E-Verify Participation Poster (uscis.gov)
If you are a California resident applying for a job, you consent to our  California Job Applicant Privacy Notice .

Notification for current or previously cleared professionals:

Official U.S. Government information appearing in the public domain shall not automatically be considered UNCLASSIFIED or approved for public release. CSA recognizes that information contained in resumes of current or previously cleared professionals may be sensitive, contain potentially proprietary and/or protected information. Protected Information is considered classified, in the process of a classification determination, or unclassified, but protected by statute. Therefore, all resumes should be approved for public release by a U.S. Government Official with Original Classification Authority, prior to posting the resume to CSA’s applicant tracking system.
By submitting my resume, I understand that I am NOT authorized to upload content with Official U.S. Government information that is considered, sensitive, proprietary, or protected.

Apply for this Job