Amentum - Tampa, FL

posted 7 days ago

Full-time - Mid Level
Remote - Tampa, FL
Professional, Scientific, and Technical Services

About the position

The Cybersecurity Systems Analyst performs assessment and authorization coordination, advising and assisting the customer with Risk Management Framework (RMF) and developing a Plan of Action and Milestones for resolving network deficiencies in accordance with DODI 8510.01 and ICD 503. The role includes assessing network compliance against controls listed in NIST 800-53 and creating A&A packages. The analyst will execute a comprehensive assessment, compliance, and validation of customer networks to ensure compliance with regulations and security standards, aiming to ensure the integrity of customer systems by identifying and mitigating potential shortcomings and vulnerabilities. The position also involves advising USSOCOM and its Component Commands on network and system risks and risk mitigation courses of action. Additionally, the Cybersecurity Systems Analyst should be able to perform security evaluations and vulnerability assessments using tools such as DOD Assured Compliance Assessment Solution (ACAS), Nessus, and Security Content Automation Protocol. The analyst will liaise with network and system administrators to correct identified deficiencies and will scan for new systems and applications being introduced into the SOF environment, drafting certification letters for the government. The role requires knowledge of cyber network defense tools and involves tracking A&A status, maintaining documentation, and providing subject matter expertise in RMF processes.

Responsibilities

  • Tracks A&A status of SIE governed ISs and ensures documentation is available in the USSOCOM-chosen automated tool.
  • Provides DoD & IC RMF subject matter expertise to USSOCOM and assists with the development and execution of the RMF program.
  • Maintains, tracks, and validates DISN, cloud, and DIA connection approval packages.
  • Develops and maintains supporting documentation for new and existing networks and information systems.
  • Develops and reviews the A&A of SIE networks and systems to obtain necessary authorities.
  • Performs risk and vulnerability assessments of IT and IS for authorization and prepares risk assessment reports.
  • Assists with the enforcement of A&A and connection standards for networks and systems.
  • Tracks and maintains A&A databases and tools for cybersecurity documentation.
  • Reports compliance with applicable Cybersecurity regulations to higher headquarters organizations.
  • Develops and maintains an Information Security Continuous Monitoring (ISCM) Plan.
  • Coordinates with various organizations to resolve issues with security and A&A.
  • Performs security authorization and assessments of networks, systems, and devices.
  • Validates patching of systems and develops Plans of Action & Milestones (POA&Ms).
  • Provides subject matter expertise for COA development and Cybersecurity mitigation strategies.
  • Identifies and implements processes to mitigate vulnerabilities for software and hardware deployment.
  • Performs analytics on cybersecurity posture and provides reports to stakeholders.

Requirements

  • 5+ years of experience in cybersecurity or related field.
  • BA/BS degree.
  • Current DoD 8570.01-M certification, DoD IAT Level II.
  • Experience with US Combatant Commands (USCENTCOM/USSOCOM) is desired.
  • Technical background in system administration, architecture, and engineering.
  • Knowledge of the RMF and DoD IA processes and policies.
  • Active TS/SCI clearance required.
  • Excellent written and oral communication skills.

Nice-to-haves

  • Knowledge of the Telos Xacta or Enterprise Mission Assurance Support Services (eMASS) system.
  • Technical background in networking, identity management, Microsoft and Linux operating systems, and databases.

Benefits

  • Partial telework flexibility.
  • Professional development opportunities.
Job Description Matching

Match and compare your resume to any job description

Start Matching
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service