• PMW-205 Cybersecurity Analyst

    Job Locations US-VA-Norfolk
    ID
    2019-1047
    Category
    Cyber Security
    Type
    Regular Full-Time
  • Overview

    We have an immediate opening for a Cyber Security Analyst to provide cyber security support to the Naval Enterprise Netowrks (NEN) Cybersecurity (A&A) Team at PMW-205. Duty Location is Falconwood Norfolk Corporate Office.

    Responsibilities

    The Cyber Security Analyst:

    • Provide Cyber Security guidance and documentation throughout the system development life-cycle
    • Support the PM, SCA, ISSM, and ISSE throughout all phases of the security authorization process
    • Ensure the completion of cyber related programs, projects, or tasks within estimated timeframes and budget constraints
    • Provide Cyber Security guidance at meetings, briefings and design reviews, and during system development in accordance with prevailing Cyber regulations and policies
    • Ensure Cyber Security system designs that properly mitigate identified threats and vulnerabilities
    • Review and approves test and evaluation activities to validate those threats and vulnerabilities are mitigated
    • Perform system security reviews and Certification & Accreditation (C&A)/ Assessment and Authorization (A&A)
    • Conduct A&A process for IT systems and networks in accordance with the DoD Risk Management Framework process
    • Analyze and reviews the results of network and system vulnerability scans and be able to validate the implementation of IA Controls in accordance with DoD 8500.2
    • Assist with development and tracking of the POA&M in eMASS · Supports RMF Checkpoint meetings
    • Assist with the System Categorization and Risk Assessment Report, and consults on the SLCM Strategy
    • Develop the Security Plan, Security Assessment Plan, Security Assessment Report, and Executive Summaries
    • Assess C&A impact based on ACAS and STIG results, and identified the strength of the mitigation or remediation
    • Report package status and risks weekly to senior level government leadership

    Qualifications

    Required Qualifications:

    • Minimum SECRET clearance.
    • 5+ years of experience in cyber security.
    • BS Degree in Cyber Security/Engineering field (e.g. Computer, Electrical, Mechanical, Systems, Security).
    • Experience with independently performing validator activities defined in the Navy RMF process guide and applying RMF guidance to Navy or DoD A&A efforts
    • Experience with test and evaluation for allocating assigned security controls into assessment objectives and procedures, developing and executing Security Assessment Plans (SAP)
    • Experience with using the DoD Assured Compliance Assessment Solution (ACAS) suite of tools and the Enterprise Mission Assurance Support Service (eMASS)
    • Experience with vulnerability assessment scanning tools and reporting, intrusion detection technologies, intrusion prevention technologies, and host-based security system (HBSS)
    • Knowledge of DoD published Security Technical Information Guidance (STIG) requirements and implementation or compliance process
    • Firm understanding of DISA CAL boundaries and experience coordinating with the PPSM team to register ports not registered within the latest DISA’s CAL boundary list
    • Firm understanding of sensitive data types and cybersecurity protections associated with that data (e.g. PII, PHI, etc.)
    • Working knowledge of eMASS at the ISSE/NQV level
    • Possess knowledge of current security threats, techniques, and landscape (threat vectors)
    • Experience with information systems security requirements to be implemented during system design
    • Experience with business/operations solution architectures (i.e. portals, service management, networks, inventory).
    • Skilled in project management and engineering technical management techniques, principles, and practices.
    • Proficiency in Microsoft Office applications, particularly Visio, Word, Excel and PowerPoint.
    • Ability to think independently with minimal oversight, as well as demonstrate exceptional written and oral communications skills.
    • Exemplary customer/client management skills and techniques. 

    Desired:

    • MS Degree in Cyber Security/Engineering field (e.g. Computer, Electrical, Mechanical, Systems, Security).
    • 10+ years of cyber security experience.
    • IAM/IAT III - Certified Information Systems Security Professional (CISSP) Certification or equivalent
    • Navy Qualified Validator (NQV) Level II Certification
    • Experience with contingency planning, firewall policy, and ports and protocols, and service management
    • Experience with Microsoft Public Azure, Azure Pack and Azure Stack and related Microsoft technologies (HyperV, ADR, SCCM, SCOM).
    • Familiarity with DON Fleet command structure
    • Familiarity with DON network architecture

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed