Cybersecurity Analyst - Journeyman

About The Position

Requirements

• A bachelor’s degree or equivalent in Computer Science or related field and a minimum of 3 years of relevant work experience.
• Information Assurance (IA) experience including Requirements, Cyber Risk Assessment, Risk Management Framework (RMF), DIACAP, STIG application, ST&E, IAVM, POAM, IATT and IATO
• NIST 800-53 and CNSSI 1253 RMF Analysis and Accreditation expert
• 2 or more years of DoD and related space operations experience, specifically acquisition program and cybersecurity management and/or operational experience
• Excellent problem-solving and analytical skills
• Demonstrated competency in technical writing
• Familiarity operating under agile conditions as a member of a Scrum team
• Superior written and oral communication skills, including interpersonal and negotiation skills
• Familiar with MS Office products
• Experience in working with multi-disciplinary teams of Military and technical managers
• IAT II or higher required (8570 compliant)
• Active Top Secret clearance with SCI eligibility

Nice To Haves

• Familiarity working with or at the Combined Space Operations Center (CSpOC), US Space Command (USSPACECOM), and/or Space Force Field Commands
• Familiarity with eMASS, XACTA, or ITIPs

Responsibilities

• Provide analysis and advise on Tyto’s cybersecurity STS302 program, in support of SSC MilComm and PNT Directorates in Colorado Springs, CO
• Serve as technical advisor of space mission Information Systems (IS), certify policies, programs, procedures, and reports for current, new, and evolving cybersecurity system requirements
• Develop and implement cybersecurity policies, procedures, and standards in alignment with cybersecurity best practices and regulatory requirements and mission objectives
• Collaborate with key stakeholders to assess and prioritize cybersecurity risks and develop risk mitigation strategies to protect mission assets, and ensure successful implementation of cybersecurity projects
• Coordinate with other cybersecurity analysts, assist in managing the planning, execution, and delivery of cybersecurity projects, ensuring on time completion, within scope and budget
• Supports as cyber analyst for GPS RMF A&A activities including creating new and managing existing authorization packages via eMASS and performing all tasks necessary to obtain and maintain an Authority-to-Operate (ATO), such as system categorization, system security plan, controls selection, and implementation, control assessment, Plan of Action and Milestone (POAM) items, and continuous monitoring activities
• Conducted risk assessments and vulnerability assessments to identify potential threats and weaknesses within the MilComm and PNT enterprise
• Conduct risk analysis of system design requirements and provide recommendations for the development and implementation of security controls for Information Systems (IS) within the enterprise
• Materially contribute and participate in Cyber Integrated Project Team (IPT) for technical discussions, risk identification / mitigations, develop and provide guidance for integrated cybersecurity practices and solutions to individual programs and projects across the GP Enterprise
• Develop and document cybersecurity framework processes to improve the GPS Enterprise Cybersecurity program
• Develops short and long term goals, key activities, and metrics to improve leadership communication and awareness of Cybersecurity activities for the enterprise
• Works with the System Engineering & Integration (SE&I) contractor to manage the GP Enterprise Cybersecurity Roadmap and Work Plan, Cyber Integrated Master Schedule (IMS), GPS Cyber Risk Management Plan, Cyber Risk Assessment Schedule, and relevant Cyber Metrics
• Support the implementation and execution of the DoD's Risk Management Framework (RMF) across various systems and networks.
• Assist in the preparation, review, and submission of RMF documentation, including System Security Plans (SSPs), Risk Assessments, and Authorization Packages.
• Coordinate with system owners, engineers, and security teams to ensure compliance with RMF requirements.
• Perform security controls assessments (SCAs) and support continuous monitoring activities, as required.
• Identify, evaluate, and document cybersecurity risks, and propose mitigation strategies in alignment with RMF guidelines.
• Provide cybersecurity support and guidance throughout the defense acquisition lifecycle.
• Assist in the development of cybersecurity requirements and risk management strategies for acquisition programs.
• Participate in program reviews, technical exchange meetings, and working groups to ensure cybersecurity considerations are integrated into system designs and acquisitions.
• Evaluate contractor cybersecurity deliverables to ensure compliance with DoD policies and RMF requirements.
• Collaborate with acquisition program managers to align cybersecurity efforts with program schedules and milestones.
• Support the development of cybersecurity policies, procedures, and standards in accordance with DoD directives.
• Ensure compliance with DoD 8500 series, NIST Special Publications, and other relevant cybersecurity frameworks.
• Prepare reports and briefings on cybersecurity status, risks, and issues for leadership and stakeholders.
• Assist in preparing for and responding to cybersecurity audits, inspections, and assessments.
• Work closely with interdisciplinary teams including system administrators, network engineers, and software developers to integrate cybersecurity best practices.
• Act as a liaison between the cybersecurity team and other departments to ensure a unified approach to risk management.
• Provide cybersecurity training and awareness to staff involved in the RMF process and defense acquisition.

Benefits

• Health/Dental/Vision
• 401(k) match
• Flexible Time Off
• STD/LTD/Life Insurance
• Referral Bonuses
• professional development reimbursement
• maternity/paternity leave