Pearl Interactive Network is sourcing Information Assurance Officers (IAOs) to Join Our Talent Community to support future programs.The I nformation Assurance Officer (IAO) oversees the daily operations of the Contractor's information systems and IT resources, ensuring seamless support for contract requirements. This role focuses on maintaining compliance with GSA IT Security policies, monitoring system performance, responding to security incidents, and driving continuous improvement initiatives. Collaborating closely with leadership, the IAO ensures that evolving program needs are addressed while upholding top-tier cybersecurity standards and regulatory compliance.Essential Duties and Responsibilities:Security & Compliance Management:
Ensure information systems security compliance in accordance with Federal Information Publication Standards (FIPS) 200 and NIST SP 800-53.
Oversee and prepare security documentation, including security plans, risk assessments, configuration management plans, and system test and evaluation reports.
Ensure IT security controls are integrated early in the development and transition of new projects, in compliance with OMB, NIST, and GSA policies.
Prepare and respond to Federal Information Security Management Act (FISMA) reporting, including quarterly Plan of Action and Milestone (POA&Ms), vulnerability scans, and annual security assessments.
Incident Management & Risk Mitigation:
Immediately report all security incidents in accordance with GSA policy.
Conduct vulnerability scans at the operating system, application, and database levels, performing code reviews and compliance assessments against CIS benchmarks.
Develop and implement a performance improvement plan to address and prevent recurring IT security issues.
Technology & System Oversight:
Monitor and manage IT security infrastructure, ensuring ongoing system performance, availability, and integrity.
Work closely with the Program Director/Manager (PD/PM) to align IT systems with evolving program requirements.
Oversee multiple teams responsible for Certification & Accreditation (C&A) processes for Federal IT systems.
Provide technical guidance on IT security architectures and strategies for compliance with HSPD-12 and privacy requirements.
Regulatory Reporting & Continuous Monitoring:
Coordinate responses to security-related reports, data calls, and audit requests throughout the year.
Ensure timely submission of monthly vulnerability analysis reports, quarterly POA&Ms, and annual FISMA assessments.
Track and evaluate compliance with IT security policies while recommending security enhancements.
Education and/or Work Experience Requirements:
Strong familiarity with NIST IT security publications including NIST SP 800-37, 800-53, and related federal cybersecurity policies.
Experience supporting Certification & Accreditation (C&A) processes for Federal IT systems, ensuring implementation of moderate-level security controls.
Expertise in conducting security vulnerability scans, code reviews, and evaluating compliance with CIS benchmarks.
Experience in completing POA&Ms, FISMA assessments, and responding to federal IT security data calls.
Proven ability to oversee multiple teams managing C&A processes and IT security operations.
Broad knowledge of IT security tools, compliance strategies, and risk management frameworks for Federal IT programs.
Strong understanding of HSPD-12 and privacy requirements for federal security compliance.
Physical Requirements:While performing the duties of this job, the employee is regularly required to stand; walk; sit; use hands to finger, handle, or feel objects, tools, or controls; reach with hands and arms; talk or hear. The employee is regularly required to sit for prolonged periods of time. The employee must occasionally lift and/or move up to 10 pounds. Specific vision abilities required by the job include close vision, distance vision, depth perception, and the ability to adjust focus.The above statements are intended to describe the general nature and level of the work being performed by people assigned to this work. This is not an exhaustive list of all duties and responsibilities. Pearl management reserves the right to amend and change responsibilities to meet business and organizational needs as necessary.Background Investigation, Security/EQIP Clearance, Drug Screen and Skills Assessments May Be RequiredPearl Interactive Network, LLC is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.