IT Security Operations Analyst - Senior

Overview

The Government Publishing Office (GPO) SecDevOps program provides advanced security, development, and operations support to safeguard federal information systems and infrastructure. This initiative integrates cybersecurity best practices with agile development and IT operations to ensure continuous security, compliance, and resilience across GPO’s enterprise IT services. The mission is to protect and enable GPO’s digital transformation by delivering secure, scalable, and reliable IT services in alignment with federal cybersecurity mandates and operational excellence standards. 

DecisionPoint Corporation is seeking a Senior IT Security Operations Analyst to provide expert-level support to the GPO IT Security Division, leading the development and operations of the Technical Reference Model (TRM) toolset, and supporting the full lifecycle of Risk Management Framework (RMF) artifacts. This position plays a critical role in securing GPO’s enterprise systems by ensuring consistent development, implementation, and operation of IT security controls across IT/Operations (ITOps) and enterprise service environments. The role demands close coordination with program managers, system owners, and security stakeholders to maintain the integrity and compliance of the GPO's security posture. This position is remote with some local travel to GPO headquarters.

Location: Remote – candidates located in the Washington, DC metropolitan area (DMV) are highly preferred. 

Clearance Requirement: Must be able to obtain and maintain a Public Trust clearance.   

Note: By applying to this position, you acknowledge and consent to having your resume included in an active competitive government contract bid. 

*Please Note: This requisition is contingent upon contract award.*

Duties & Responsibilities

The Senior IT Security Operations Analyst will: 

• Lead the development and enhancement of the GPO Technical Reference Model (TRM) tools to support agency-wide architecture, IT capabilities, and security control integration. 

• Create supporting documentation including project plans, risk analyses, test plans, deployment guides, and supply chain risk management artifacts.  

• Collaborate with ITOps divisions (Customer Support, Infrastructure, Enterprise Services, and Network Messaging) to design and deploy IT security technologies and processes. 

• Ensure security controls are embedded in infrastructure projects and day-to-day operations. 

• Perform ongoing testing, implementation, and support of operational security tools across the enterprise. 

• Maintain and update SOPs, white papers, configuration change documents, patch/upgrade schedules, and artifact repositories in accordance with compliance requirements. 

• Assist in the assessment, implementation, and maintenance of security measures for GPO systems in alignment with NIST SP 800-37 and SP 800-53. 

• Develop, update, and maintain RMF documentation such as security control assessments, POA&Ms, and boundary diagrams. 

• Support security incident response and vulnerability mitigation based on RMF analysis and operational findings. 

Qualifications

• Minimum Experience: 8 years of experience in Federal cybersecurity operations or IT security analysis 

• Minimum Education: Bachelor’s degree in Computer Science, Information Systems, other related disciplines (or equivalent experience) 

• Technical Knowledge: Hands-on experience with RMF processes, security documentation, and artifact generation. Familiarity with TRM tools, NIST standards (800-37, 800-53, 800-171), and FISMA compliance. Proficiency in using security tools (e.g. Tenable, Trellix, RSA NetWitness, Microsoft Sentinel, or Xacta). 

• Federal experience (preferred) 

• Certifications (preferred): CompTIA Security+ or CISSP 

Our Equal Employment Opportunity Policy

• EEO and Affirmative Action Policy: DecisionPoint Corporation is an Equal Employment Opportunity and Affirmative Action employer. It is the policy of DecisionPoint Corporation to provide equal employment opportunity in accordance with all applicable Equal Employment Opportunity/Affirmative Action laws, directives and regulations to all employees and qualified applicants without regard to race, ethnicity, color, religion, national origin, sex, age, disability status, pregnancy, sexual orientation, gender identity, genetic information, protected veteran status, or any other protected status under Federal, State or Local laws.
• Pay Transparency Policy: In accordance with Presidential Executive Order 13665, DecisionPoint Corporation will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.
• Authorization to Share Resume and Personal Information: By expressing your interest and submitting your resume for this position, you authorize DecisionPoint Corporation to share your resume, as well as personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should DecisionPoint Corporation. or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.

Responsibilities

The Senior IT Security Operations Analyst will: 
- Lead the development and enhancement of the GPO Technical Reference Model (TRM) tools to support agency-wide architecture, IT capabilities, and security control integration. 
- Create supporting documentation including project plans, risk analyses, test plans, deployment guides, and supply chain risk management artifacts.  
- Collaborate with ITOps divisions (Customer Support, Infrastructure, Enterprise Services, and Network Messaging) to design and deploy IT security technologies and processes. 
- Ensure security controls are embedded in infrastructure projects and day-to-dayoperations. 
- Perform ongoing testing, implementation, and support of operational security tools across the enterprise. 
- Maintain and update SOPs, white papers, configuration change documents, patch/upgrade schedules, and artifact repositories in accordance with compliancerequirements. 
- Assist in the assessment, implementation, and maintenance of security measures for GPO systems in alignment with NIST SP 800-37 and SP 800-53. 
- Develop, update, and maintain RMF documentation such as security control assessments, POA&Ms, and boundary diagrams. 
- Support security incident response and vulnerability mitigation based on RMF analysis and operational findings.