Cybersecurity/Information Assurance Analyst

About The Position

Requirements

• Citizenship: Must be a US citizen
• Clearance: Must possess and maintain a Top Secret/SCI clearance
• Certification:
• Certified Information Systems Security Professional (CISSP) or equivalent
• DoD 8570 IAM Level II or III certification
• Education: Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, or related field
• Years of Experience: 5 years of cybersecurity experience within DoD
• Additional Experience:
• In-depth knowledge of DoD RMF and NIST Cybersecurity Framework
• Experience with DoDI 8510.01, DoDI 8500.01, and related policies
• Knowledge of GPS/GNSS systems and embedded systems security
• Experience with ATO processes and security certification
• Strong analytical and technical writing skills

Nice To Haves

• Education: Master's or Doctorate Degree in a related field
• Years of Experience: 12 years of cybersecurity experience
• Experience with navigation warfare and PNT security preferred

Responsibilities

• Cybersecurity Risk Management Framework (RMF):
• Support integration of Cybersecurity RMF into system acquisition lifecycle per DoDI 8510.01
• Integrate cybersecurity activities into existing acquisition processes
• Support system security architecture development and data flow analysis
• Ensure alignment of cybersecurity across technical baselines and design
• Support Authority to Operate (ATO) packages and security certification activities
• System Security Analysis:
• Analyze JSSMO systems to find opportunities for increased cybersecurity capabilities
• Support protect, detect, react, and restore capabilities from adversary attacks
• Conduct threat analysis and vulnerability assessments
• Support cybersecurity testing and evaluation activities
• Evaluate security impacts of system changes and upgrades
• Policy Compliance:
• Ensure compliance with DoDI 8510.01, DoDI 8500.01, and DoDI 5000.02
• Support development of System Security Plans (SSPs) • Conduct security control assessments
• Support continuous monitoring activities
• Ensure compliance with NIST and DoD cybersecurity standards
• EZA/CROWS Support:
• Identify disconnects in Assured PNT acquisition processes
• Support cyber resiliency development for fielded systems
• Participate in development of material and non-material solutions for cyber gaps
• Support tactical data link systems cybersecurity
• Coordinate with AF Cyber Resiliency Office for Weapon Systems (CROWS)
• Documentation & Reporting:
• Prepare cybersecurity assessments and technical reports
• Support senior leadership briefings on cybersecurity status
• Document findings and recommendations
• Participate in Configuration Control Board for security impacts