Cyber Security Analyst 3

About The Position

Requirements

• Bachelor's degree in computer science or related technical discipline. [Relevant experience may substitute for a bachelor's degree]
• DoD 8570/8140: IAT II
• Eight (8) years of cybersecurity experience, with a strong background in information assurance and system security.
• Five (5) years of RMF experience.
• Hands-on experience with DoD Authorization to Operate (ATO) compliance and certification processes.
• Proficiency in creating and modifying RMF packages and artifacts throughout the acquisition lifecycle.
• Ability to review and generate security documentation such as System Security Plans, POA&Ms, and Security CONOPs.
• Experience preparing and implementing accreditation and certification requirements, including FISMA and COOP documentation.
• Experience assisting Information System Owners (ISOs) with system registration, FISMA data calls, RMF documentation, and coordination with Certifying and Designated Approval Authorities.
• Experience with cybersecurity tools and platforms such as SIEM, ACAS, Trellix (ESS), eMASS, and STIGs.
• Ability to review threat and vulnerability assessments and analyze risks to information systems and networks.
• In-depth knowledge of current Government Information Assurance and Cybersecurity policies, regulations, and standards.
• Strong understanding of NIST SP 800-53 security and privacy controls and their application within RMF processes.
• Must be a U.S. Citizen
• Secret security clearance is required. (Applicants selected either must currently possess a Secret clearance or will be subject to a government security investigation and must meet eligibility requirements to obtain clearance prior to commencement of employment and maintain a security clearance for access to classified information or Closed/Restricted Areas throughout duration of employment.)

Responsibilities

• Execute the DoDI 8510.01 Risk Management Framework (RMF) for DoD Information Systems and assist in implementing DoD Assessment and Authorization (A&A) procedures.
• Manage and respond to security events and incidents, including triage, remediation, documentation, escalation, and after-action reporting.
• Participate in cybersecurity-related meetings such as Cyber Security Working Groups, system ATO discussions, and IT/Cyber status updates.
• Assist in the development and maintenance of comprehensive cybersecurity programs to protect organizational data, systems, and networks.
• Perform activities related to NIST RMF A&A processes and ensure compliance with policies governing classified and unclassified information systems.
• Ensure adherence to 32 CFR Part 117 (NISPOM), NIST SP 800-37, and DoDI 8510.01 standards.
• Provide mentorship and training to employees on cybersecurity concepts, policies, and best practices.
• Serve as a liaison with government points of contact (POCs) in a mid-level ISSO capacity.
• Perform other duties and responsibilities as assigned.

Benefits

• Employees enjoy competitive salaries; a 401K plan with company match; medical, dental, disability, and life insurance coverage; tuition reimbursement; paid time off; and 11 paid holidays.