Information Assurance Analyst (TS/SCI)
Tampa, Florida
Job Id:
167573
Job Category:
Job Location:
Tampa, Florida
Security Clearance:
TS/SCI
Business Unit:
Zachary Piper
Division:
Zachary Piper Solutions
Position Owner:
Michaela Kreiter
Zachary Piper Solutions is seeking an Information Assurance Analyst to support Special Operations Command (USSOCOM) in Tampa, FL. We are seeking an individual with expertise across security compliance and risk management to conduct compliance assessments and maintain security policy for a Data Stewardship program.
Clearance: TS/SCI
Location: MacDill AFB, Tampa, FL (100% onsite)
This job opens for applications on 6/10/2026. Applications for this job will be accepted for at least 30 days from the posting date
Responsibilities:
- Maintain and enforce all Information Security policies, standards, and guidelines across the organization by staying current with evolving requirements, performing regular policy reviews, and fostering a strong culture of compliance.
- Conduct vulnerability scans and analyze the results to ensure adherence to applicable regulations, security standards, and organizational requirements.
- Identify security gaps, evaluate risks, and recommend remediation strategies to address vulnerabilities.
- The analyst will be responsible for updating, monitoring, and maintaining the POA&M to track identified vulnerabilities, planned remediation efforts, and progress toward resolving security issues.
- Prepare detailed audit reports that document technical and procedural information security findings, along with associated risks and recommendations for remediation.
- Recommend remediation strategies and solutions to address identified issues and enhance the organizations security posture.
- Play a crucial role in preparing and reviewing key documentation, such as System Security Plans (SSPs), Risk Assessment Reports, and Certification and Accreditation (C&A) packages.
- Ensure compliance with the Risk Management Framework (RMF) and support the organization's Authorization to Operate (ATO) process.
Qualifications:
- Bachelors degree and 5+ years of experience developing policy and supporting special operations
- Active TS/SCI clearance required
- Certifications: IAT II (Security+CE, CySA+, SSCP, etc.) and IAT III highly preferred (CASP+, CISA, CISSP, GCIH, CISM)
- Experience utilizing ACAS and eMASS for vulnerability scanning and security monitoring
- Experience updating security documentation including POA&Ms, SSPs, C&A packages, etc.
- Experience interfacing with DoD customers and stakeholders, SOCOM experience preferred
- Experience updating and enforcing Information Security policies
Compensation:
- Total compensation based on experience level - $105,000-$120,000+
- Full Benefits: PTO, Holidays, 401K, Medical Dental Vision coverage, Certification Reimbursement
- Contract stability and mobility through Zachary Piper Solutions
#LI-MK1 #LI-Onsite
Keywords: Information System Security Officer (ISSO), Information Assurance Analyst, Risk Management Framework (RMF), cybersecurity compliance, NIST 800-53, vulnerability management, security controls assessment, POA&M management, incident response, DoD, SOCOM, Army, Marine Corp, Air Force, security audits, continuous monitoring, information assurance, Emass, ACAS, xacta, TS/SCI, Top secret/sci, polygraph, security clearance, W2, opentowork, hiring, Tampa, Florida, cybersecurity governance, security policy enforcement, authorization to operate (ATO), compliance monitoring, vulnerability scanning, security analysis, system accreditation, risk assessments, access control, configuration management, cybersecurity awareness, threat mitigation, security documentation, audit readiness, FISMA compliance, privacy controls, security frameworks, remediation tracking, enterprise security, FedRAMP, STIG compliance, eMASS, security operations, data protection, contingency planning, identity and access management (IAM), technical security reviews, governance risk and compliance (GRC), cybersecurity regulations, penetration testing, safeguarding sensitive information, system security plans (SSP), controls validation, compliance reporting, cyber risk management, security posture assessment, defensive security, policy development, and regulatory compliance.