Information Assurance Specialist

Vast is looking for an Information Assurance Specialist, reporting to the Information Security Manager, to assist in the deployment and maintenance of the organization's growing information security compliance program. The Information Assurance Specialist supports the development of security policies and procedures, ensuring compliance with pertinent regulations and security standards (i.e. NIST SP 800-171 Rev 2). 

This will be a full-time, exempt position located in our Long Beach location.

Responsibilities: 

• Research, select/build, and implement a compliance platform to accurately report on the company’s compliance posture
• Evaluate and recommend security technologies, tools, and best practices
• Implement/maintain compliance documentation for multiple standards/requirements such as NIST 800-171, NIST CSF, CMMC 2.0, and ITAR/EAR
• Implement/maintain threat modeling frameworks (i.e. SPARTA, MITRE D3FEND, etc.)
• Spearhead change management and risk assessment efforts
• Support all internal and external security assessments
• Continuously monitor security systems, networks, and applications for compliance drift
• Provide Information Security related training as required
• Provide technical support to the Information Security Engineering function when appropriate

Minimum Qualifications:

• Bachelor of Science degree in Computer Science, Engineering, Information Security or related discipline or equivalent skills and experience
• 2+ years of relevant experience
• Previous experience implementing and documenting NIST standards (i.e. 800-53, 800-171, CSF)
• Experience in continuously monitoring controls and conducting remediations
• Experience in supporting certification assessments, gap assessments, self-assessments, and/or compliance audits.
• Experience in conducting training exercises 
• Proficient understanding of cloud systems such as AWS, Google, and Azure

Preferred Skills & Experience:

• Professional certifications such as CISSP, CISM, CISA, or GIAC
• Deep understanding of compliance requirements and certifications to include NIST 800-171, CMMC 2.0, DFARS 252.204-7012, and ITAR/EAR 
• Proficiency in security tools such as SIEM, IDS/IPS, antivirus, and vulnerability scanning
• Knowledge of network protocols, firewalls, and intrusion detection/prevention systems
• Experience conducting social engineering campaigns
• Prior experience working in the aerospace and/or defense industry
• Familiarity with security SaaS solutions and relevant integrations
• Prior experience working in a fast-paced startup environment

Additional Requirements:

• Ability to travel up to 10% of the time
• Willingness to work evenings and/or weekends to support critical mission milestones

Pay Range:

• Information Assurance Specialist II: $130,000 - $165,000