Security Analyst / FSO

Full Time Technical



Job Summary:

The Security Analyst & Facility Security Officer (FSO) will be responsible for managing, administering, and coordinating security protocols for both IT infrastructure and physical facility premises. This role includes managing security systems, verifying regular audits, investigating security incidents on site and generated by IT security suite, and enacting compliance with all applicable defense security regulations. This position will process and review personnel security clearances and maintain all security documentation, files, and clearance and suitability rosters in accordance with government requirements. The Security Analyst will have an understanding and experience of the NISPOM and NIST requirements for DOD and other Federal agencies.   

Duties/Responsibilities:

• Manage and monitor the operation of organization IT security software and hardware. 


• Regularly verify and manage the action of regular IT audits, self-inspections for security program, Insider Threat Program and CUI auditing as required.


• Assist the Information Systems Manager in verifying compliance with DFAR IT and Security requirements.


• Recommend security and vulnerability remediation changes to IT management.


• Serve as the point of contact for incident response for the organization.


• Administrate personnel security clearance processes to include coordinating initial clearance submissions and periodic reinvestigations, providing guidance and instruction to ensure completion of security paperwork, collection of electronic fingerprinting, and providing follow-up clearance report status on processed clearances to program managers for specific contracts.


• Maintain all PCL security documentation and files in accordance with DCSA requirements.


• Maintain FCL documentation and submission in accordance with DCSA requirements in NISS. 


• Provide and document employee security briefings, debriefings, as well as investigate and report security violations and incidents.


• Maintain classified holdings and prepare classified transmittals in accordance with NISPOM CFR Part 117 guidelines and requirements.


• Manage annual security refresher training to include preparing necessary documentation in support of DCSA audits.


• Provide security support to Human Resources, Information Technology, Contracts, and Business Development teams.


• Advise personnel of their reporting requirements, both personal/administrative and compliance/incident-related reports per SEAD 3 and SEAD 4.


• Interpret government policies for the development and implementation of facility security program, procedures, and internal company policies.


• Maintain a working relationship with DCSA or other Federal Agencies and each contract’s security office for processing and maintaining employee clearances or suitability determinations.


• Develop and maintain effective “Document Inventory and Control Program” for management of classified systems, media, and documents.


• Manage visit authorization requests, visit authorization letters and formal visit requests in DISS for all incoming and outgoing visitors.


• Assist with CAC or ECA token applications.


• Collaborate with HR to ensure citizenship verification for all new hires (security clearances required).


• Ensure all applicable FCL information is routinely updated in NISS database.


• Complete annual PSI data collection information and log findings in NISS. 


• Draft DD254s for classified subcontractors.


• Supervise daily security activities and enforce government and company security policies on site.


• Assist with CUI program, and CUI self-inspection while acting as an alternate CUI manager.


• Assist in coordinating annual Insider Threat working group meetings and retain notes for DCSA.  

Supervisory Responsibilities:

• Ensure site IT support performs required actions to maintain compliance and secure posture.

Note:  The duties and responsibilities described on this document are not necessarily a comprehensive list and additional tasks may be assigned to the employee from time to time; and the scope of the job may change as necessitated by business demands.

Required Experience/Abilities:  

• 5+ Years of experience in a security role in defense or other highly regulated industry.


• Strong understanding of IT security and facility security principals.


• Familiarity with DFARs and NIST security regulations, including NISPOM Rule CFR Part 117.


• Familiar with COMSEC account establishment and management.  


• Working knowledge of ITAR export control compliance requirements.  

Education and Certifications Required:

• Bachelor’s degree in security related field requirement may be waived for professional cybersecurity certifications (such as CASP+, CC, CSM, CISSP or similar) and equivalent experience.


• Must possess the Facility Security Officer Program Management for Possessing Facilities Curriculum Certificate (or be able to obtain within 6 months of appointment). 


• An active TS clearance is required for this position (or ability to obtain within 6 months of appointment).  

Physical Requirements: 

• Prolonged periods sitting at a desk and working on a computer.


• While primarily an office job, may require time at a manufacturing facility or other location.


• Must be able to lift up to 15 pounds at times.


• CONUS travel may be required from time to time.