Senior Cybersecurity Analyst with Security Clearance

---

Job description

Job Summary:
We are seeking a highly skilled Cybersecurity Analyst to join our team. The ideal candidate will be responsible for managing and maintaining the Risk Management Framework (RMF) Assessment and Authorization (A&A) packages for five enclaves administered by AFOSI. You will develop and complete System Security Documents according to the DoD Information Assurance Certification and Accreditation Process (DIACAP) and ensure compliance with various security requirements and standards. Qualifications: 10 years' experience in Cybersecurity and Information Assurance with at least 1 year of experience in systems administration in a Windows based environment.
• 5 years of experience with RMF, GRC, STIGs, Ports, Protocols, and Services Management (PPSM), and Security Controls.
• 5 years of experience performing vulnerability and risk assessment using DISA's Assured Compliance Assessment Solution (ACAS) suite or Nessus Security Scanner. Use this
information to develop and implement plans to address vulnerabilities or risks that are detected. • 3 years of experience working with Enterprise Mission Assurance Support Service (eMASS).
• Experience performing IAVA compliance audits using DISA tools such as ACAS.
• Working knowledge of the RMF to include categorization, security control selection, implementation plan development, assessment, and continuous monitoring.
• Must have extensive experience with STIGs, GRC, PPSM, Audit logging, SCAP and Security Controls.
• Working knowledge of analyzing the result of a security risk assessment.
• Working knowledge of IT Systems Maintenance Compliance processes to include information assurance vulnerability management (IAVM).
• Experience creating, reviewing, and revising security documentation and artifacts.
• Experience with Vulnerability Management tools, such as Nessus and ACAS, including the ability to read and write automated reports, and interpret the results.
• Experience with Fortify Static Code analyzer, or another code scanner. Includes writing POA&Ms for open findings.
• Experience with security information and event management (SIEM) software, such as Splunk or ArcSight. Includes ability to read results and write automated reports.
• Experience with McAfee HBSS (Host-Based Security System), or ESS (Endpoint Security System) to include ePO (E-Policy Orchestrator) administration and searching for rogue systems.
• Strong desktop application administration experience to include Microsoft Office, web browsers, and anti-virus applications.
• Must be certified at IAT Level III (CISSP, CASP+ CE, CISA, GCED, GCIH, or CCNP Security).
• Must have a TS/SCI clearance or be SCI eligible.
• Bachelor's degree in a related field desired.
• Must be a US citizen.
• Excellent communication skills, both oral and written, analytical skills to troubleshoot cybersecurity issues, and an ability to conceptualize server infrastructures and configurations.
• Must be able to apply intensive and diverse knowledge to problems and make independent decisions.
• Must be a team player able to work professionally and collaboratively with the government customer and other contract members of the project team.

<!– job description page –>