Cyber Information Assurance Analyst III

Chickasaw Nation Industries, Inc.•Fort Meade, MD

2d•Onsite

About The Position

The Cyber Information Assurance Analyst supports the customer by performing analyses to validate security requirements and assessing the systems and networks within the networking environment. Work is performed under some direction and exercises a limited degree of latitude in determining technical objectives of assignment. Chickasaw Nation Industries, Inc. serves as a holding company with multiple subsidiaries engaged in several lines of business (Technology, Infrastructure & Engineering, Health, Manufacturing, Public Safety, Consulting, and Transportation) for the federal government and commercial enterprises. A portion of our profits is used to support Chickasaw citizens. We are proud to support the economic development and long-term viability of the Chickasaw Nation and its people. CNI offers premium benefits eligible on the first day of hire to full time employees; (Medical - Dental – Vision), Company Life Insurance, Short-Term and Long-Term Disability Insurance, 401(K) Immediate Vesting, Professional Development Assistance, Legal Aid Assistance Program, Family Planning / Fertility Assistance, Personal Time Off, and Observance of Federal Holidays. As a federal contractor, CNI is a drug-free workplace and adheres to the Federal Controlled Substance Act.

Requirements

This position requires travel ~85% CONUS & OCONUS
The ability to obtain, maintain and access classified information at the TS/SCI level.
DoD 8570 IAM/IA Technical (IAT) Level II certification.
Familiarity with STIGs (Security Technical Implementation Guides), Security Requirement Guides (SRGs), Plan of Action and Milestones (POA&Ms) and cybersecurity best practices.
Understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53, CNSSI 1253.
Familiarity with relevant tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS.
Demonstratable understanding of key technologies areas/domain such as: Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, Host Based Security System (HBSS)/Endpoint Security Solutions (ESS), Databases, Applications
Strong written and verbal communication skills for reporting assessment findings
Bachelor's Degree and a minimum of four to seven (4-7) years of experience in systems security, or equivalent combination of education/experience.

Responsibilities

Conducts cybersecurity assessments, audits, and inspections for DoD organizations and partners handling DoD information or connecting to the DoDIN.
Evaluates systems and Defensive Cyberspace Operations using cyber threat emulation and performance-based testing.
Adheres to policies and processes for each assessment type.
Supports assessment development and execution to ensure security expertise is properly applied.
Coordinates logistics, test plans, and scope with the SCA Team Lead.
Performs vulnerability assessments, capture results using STIG Viewer or designated tools, and document findings in eMASS.
Analyzes security gaps and provide mitigation recommendations.
Validates cybersecurity controls, TTPs, STIGs, RMF controls, and compliance with DoD policies and guidelines.
Provides risk analysis and assessment results for authorization recommendations.
Participates in daily assessment reviews, in-briefs, and out-briefs, sharing findings with the SCA-R.