Sorry, this job is no longer available.
loading...

(Loading More Opportunities)

Cybersecurity Analyst

Job Description

Summary
• The ideal candidate is very detail oriented with strong written and oral communication skills. A strong understanding of standards and requirements outlined by National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) and other federal guidelines required. Will be actively engaged in identifying unique system characteristics, interviewing key organizational personnel, and working with the team to develop and manage security documentation. This includes, but is not limited to; security categorizations, system security plans, privacy impact assessments, contingency plans, configuration management plans, incident response plans, POA&Ms, vulnerability assessment reports, and a strong understand of RMF.
• Duties will consist of, but are not limited to, the following:
Participate in/facilitate meetings as required in support of third party assessment and authorization (A&A) related engagements.
• Track artifact and meeting requests; provide status reports on outstanding items to government staff.
• Coordinate with contractor and government staff to provide requested artifacts for A&A-related engagements in a timely manner.
• Review artifacts provided by contractor staff to ensure requested information have been properly provided and meet appropriate security/privacy requirements.
• Coordinate vulnerability remediation efforts with contractor and government staff in order to remediate findings within specified deadlines.
• Review policies and procedures for compliance with applicable standards; and to identify areas of improvement for finding remediation.
• Identify key stakeholders in A&A efforts and ensure system documentation reflects current system security configurations to include hardware and software components; data flow; interconnections and ports; protocols; services and etc.
• Identify potential risks associated with system configurations and advise on mitigation strategies.
• Participate in A&A status meetings and facilitate moving systems toward a successful A&A effort.
• ssist customer program offices in interpreting and applying mitigation strategies.
• Review documentation to ensure compliance with Federal cybersecurity requirements.
• Conduct thorough reviews of all vulnerabilities, architecture, and defense in depth strategies; report findings in POA&Ms document to Information System Security Officer (ISSO).
• Maintain cybersecurity procedures and processes as assigned.
• ble to analyze, interpret, and apply Federal cybersecurity guidance to customer need(s).
• Position will also provide logistical documentation support to the team (as needed).
• Required Skills:
• 2 or more years of IT experience
• Experience developing A&A documentation from scratch and performing assessments.
• Experience supporting ISSOs or acting as one.
• Familiar with NIST publications, specifically RMF and NIST controls.
• Familiar with dealing with defense-in-depth and other information security and assurance principles and associated supporting technologies.
• Excellent customer service and organization skills.
• Excellent oral and written communication skills.
• Must be able to review artifact and meeting requests and determine correct contractor personnel based on requested information.
• Must be highly organized and detail oriented.
• Must be able to take initiative and work independently.
• Must demonstrate proficiency in the following areas: multi-tasking, critical thinking; and the ability to work quickly, efficiently, and accurately in a dynamic and fluid environment.
• Must have an active Secret Clearance
• DoD 8570 IAM Level I Security+ CE certification.

Experience performing on-site cybersecurity assessments using standards such as CIS Benchmarks, DISA STIGS, etc
Posted
06/21/2022
Salary Range
$66,000.00 - $84,000.00
per Year
Salary range estimated by
salary estimation provided by zippia
Location
Fort Bragg, NC, US