Senior Information Assurance Analyst

About SERVISS

At SERVISS, we deliver cutting-edge cybersecurity and IT solutions to government and commercial clients, with a mission to secure systems, data, and critical infrastructure through innovation and expertise. As we expand our capabilities, we're seeking a highly skilled and talented Information Assurance Professional.

Position Summary

We are seeking a dynamic and versatile Information Assurance Professional to support a high-impact U.S. Government program. The ideal candidate brings a rare balance of hands-on technical acumen and governance expertise—able to move seamlessly between engineering, architecture, and GRC functions. This role is pivotal in ensuring that systems are not only compliant but also resilient, secure, and aligned with federal risk management frameworks.

Key Responsibilities

· Serve as a trusted IA advisor, bridging technical engineering efforts with cybersecurity policy, governance, and risk management.

· Collaborate with system architects and engineers to design secure solutions that meet compliance and mission requirements.

· Support the development, review, and maintenance of key authorization documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms).

· Guide system owners and developers through the Risk Management Framework (RMF) process and associated controls (e.g., NIST 800-53, 800-171, CMMC, FedRAMP).

· Translate complex technical risks and mitigation strategies into actionable GRC documentation and executive communications.

· Conduct system security assessments, gap analyses, and continuous monitoring activities.

· Coordinate with cybersecurity operations, incident response, and engineering teams to align IA strategy with operational realities.

· Recommend and help implement security architecture improvements based on evolving threat and compliance landscapes.

· Track and report on IA posture, risk status, and compliance progress across multiple systems or program areas.

Required Qualifications

· 10+ years of experience in information assurance, cybersecurity engineering, or GRC.

· In-depth knowledge of federal compliance frameworks (e.g., NIST, FISMA, FedRAMP).

· Strong technical foundation with the ability to understand complex systems, architectures, and security configurations.

· Excellent verbal and written communication skills, including experience preparing formal security documentation and reports.

· Demonstrated ability to work cross-functionally with engineering, architecture, operations, and policy teams.

· Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or a related field; or Associate’s degree with 2+ years of additional relevant experience.

Preferred Qualifications

· Prior experience supporting U.S. federal agencies or DoD environments.

· Professional certifications such as CISSP, CISM, CAP, CCSP, or Security+.

· Experience with security automation tools and continuous compliance approaches.

· Understanding of Zero Trust principles, DevSecOps environments, and modern system architecture.

Why Join SERVISS

Our goal as an employer is simple yet profound: to create an environment where you can be your best self, pursue your passions, and enjoy the freedom to thrive both personally and professionally. Your success is our success, and we're committed to supporting you every step of the way.

Freedom to Thrive.

· Be part of an exciting company with ground floor opportunities to include equity

· Highly competitive compensation and best in class benefits

· Opportunities for annual performance bonuses, growth incentives, and profit-sharing

· 100% of medical, vision, dental, and life insurance premiums covered by SERVISS

· 401(k) retirement plan with company match for the first 6%

Note: This position is contingent upon contract renewal and funding from the sponsoring federal agency, anticipated end of May 2025.