Cyber Security Analyst

About The Position

Requirements

• Be a U.S. Citizen
• Ability to obtain and maintain a DoD Secret Clearance
• Ability to do local travel and out-of-town travel (including air travel) up to 20% of the time with notice
• Bachelor’s degree from an accredited institution in Computer Science, Information Technology or a related discipline preferred
• Minimum five to eight (5-8) year’s equivalent information security experience or equivalent experience/specialized training that is commensurate with the assignment.
• Security+ or equivalent certification required. (DOD 8570 IAT/IAM lv. 2 qualifying)
• Ability to multi-task in a fast-paced, diverse environment, while maintaining attention to detail and exhibiting strong leadership
• Ability to problem solve, prioritize duties and assignments, and monitor all aspects of an information security program
• Experience in working directly with external customers on contractual requirements, program security reviews, and remediation activities when required
• Broad knowledge and experience with the various DoD security directives and regulations to include DoD 5200-1R, and other federal regulations pertaining to information security
• Experience with RMF, CNSSI 1253, NIST SP 800-53 & 800-171, and National Industrial Security Program
• Experience with Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker (SCC)
• Applicants selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Some program travel may be required

Nice To Haves

• Certified Information Systems Security Professionals (CISSP) certification preferred
• GSEC – GIAC Security Essentials preferred
• CEH – Certified Ethical Hacker preferred

Responsibilities

• Monitor the overall analysis of information technology and cyber defense tools, such as endpoint protection, intrusion detection, security event monitors and direct incident reporting to identify potential threats and defend Vigor against all forms of cyber deception and attack.
• Key member of incident response team, responding to emerging situations and often working inter-departmentally with IT.
• Leads efforts to identify vulnerabilities in conjunction with IT to enact a plan of remediation.
• Delivers risk-prioritized solutions to pressing cybersecurity problems through analysis and advisory.
• Monitors and responds to reporting tools used to defend endpoints against cyberattack.
• Takes a lead role in the development of plans and techniques to mitigate vulnerabilities and improve defenses. Leads the development of goals, strategy and methodologies of Vigor’s cyber defense in alignment with the overall Information Security program strategy.
• Engage and assist with the execution of program protection, Supply Chain Risk Management (SCRM), System Security Engineering (SSE), and acquisition and industrial security programs throughout the acquisition life cycle to aid in the systems analysis, development, fielding, and deployment of operational and test assets.
• Takes a lead role in program protection and supply chain risk management working groups, prepare documents, coordinate actions, engage in reviews, and secure approvals.
• Support the development of program deliverables by providing detailed research, analysis, and production of program protection and other security products.
• Support Vigor’s Corporate Security program to ensure protection of sensitive and proprietary information, assets and employees
• Performs other duties as required or assigned.

Benefits

• MHI Ship Repair & Services offers competitive wages and an excellent benefit package.