Cybersecurity Information Assurance Analyst, Mid

About The Position

Requirements

• 4+ years of experience supporting the Information Technology (IT) systems for DoD or a government agency
• 4+ years of experience with the Navy Risk Management Framework (RMF), including Assessment and Authorization (A&A) activities, RMF artifacts including System Security Plans (SSP), Security Assessment Plans (SAP), and Plans of Action and Milestones (POA&M), and deliverables across all steps
• Experience performing vulnerability analysis of networks, systems, and communications protocols
• Experience with operating systems, platforms, and technologies, including Windows, Linux, cloud, or virtualization
• Experience with eMASS, including Security Plan development and hands-on processing of packages through workflows, analyzing security policies, evaluating assessment documentation, and developing written security risks, mitigations, and recommendations
• Knowledge of cybersecurity compliance testing using industry standard tools, including Assured Compliance Assessment Solution (ACAS), DoD Security Technical Implementation Guides (STIG), and Evaluate-STIG
• Ability to devise and execute client deliverables, work independently, identify problems, devise analysis and solutions, communicate results, and lead the accomplishments of client tasks from inception to completion
• Secret clearance
• Bachelor’s degree in Engineering, Computer Science, Mathematics, Cybersecurity, or Physical Science
• DoD 8140 Certification

Nice To Haves

• Experience as a Navy Qualified Validator (NQV)
• Experience with Navy acquisition and engineering processes
• Experience with Tactical Networks
• Experience with DevSecOps and Application Integration (AI)
• Experience with deploying, implementing, maintaining, and integrating cybersecurity tools and applications
• Experience with network engineering functions, including Windows, Linux, and virtual operating systems, security tools, platforms, and technologies, including network and web application firewalls, web proxy, intrusion prevention systems, vulnerability scanners, and penetration tools
• Ability to meet cyber schedule, performance, and quality metrics within the systems development lifecycle and acquisition lifecycle
• Ability to identify and analyze risk and opportunities at both tactical and strategic levels
• Top Secret clearance
• Master’s degree

Responsibilities

• Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management.
• Implement infrastructure and cyber security controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises.
• Perform risk and vulnerability assessments in network, system, and application areas; leverage big data analytics and traditional security event types to identify advanced threats or indicators of compromise.

Benefits

• health
• life
• disability
• financial
• retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program