Yesterday
Top Secret/SCI
Mid Level Career (5+ yrs experience)
$135,000
IT - Security
HON, HI (On-Site/Office)
Certs Needed: CISSP or CISM
Desired Qualifications and Skills: It is desirable that the candidate have the following qualifications:
• Capable of conducting technical research on cybersecurity issues and products and producing a whitepaper for leadership review.
• Experience working with USARPAC and INDOPACOM AOR and familiar with the command structures.
• Knowledgeable working with the Mission Partner Environment (MPE).
• Experience in briefing senior executive leaders and General Officers.
• A relevant educational degree in one of the following fields: Computer Science, Information Systems, Information Technology, Cyber Security, Statistics, Business Administration, Systems Engineering, Computation Science, Computer Engineering, Electrical Engineering, Data Analytics, Information Technology, Information Security and Assurance, Mathematics, Software Engineering, Systems Engineering, or Telecommunications.
• Experience with Cloud Cyber Security.
Essential Duties and Responsibilities: This position will include, but is not limited to, the following tasks:
• Oversight and accountability of day-to-day security operations of cybersecurity tasks.
• Validate compliant security architecture through understanding and application of current policies, procedures, and standards to provide a layered approach to cybersecurity.
• Evaluate policies against applicable standards for regulatory compliance.
• Cross-reference and validate physical, personnel, facility, and information systems, through policies and controls IAW Army Regulations, Department of Defense (DoD) Directives and Instructions.
• Manage information security risks and report findings to the Government.
• Work with system owners to maintain current Authorities to Operate (ATO) in a manner compliant with the Federal Information Security Management Act (FISMA), DoD Risk Management Framework (RMF), and National Institute of Standards and Technology (NIST) guidance.
• Support cybersecurity requirements during Army and Joint exercises.
• Represent the customer and CG in briefings and meetings regarding the cybersecurity posture of the AOR.
The Cyber Security Analyst will:
• Attend technical meetings as requested by the Govt. Cybersecurity Program Manager, providing comments and recommendations where required.
• Assist in the review and drafting of policy, SOPs, and directives as required.
• Ensure appropriate Secure Technical Implementation Guidelines (STIG) are maintained through monthly POAM review.
• Review Plans of Action & Milestones (POA&M) for currency and mitigations to identify vulnerabilities.
• Provide recommendations on Cybersecurity perspectives for proposed changes, initiatives, and projects.
• Review change requests, system connection requests, and requests for exceptions to policy to the DODIN-A network. Determine associated risk and draft Memorandums for Record for all requests with recommendation to the Authorizing Official (AO).
• Review all change requests for completeness, accuracy, and residual risk prior to providing approval Memorandum for Request to the AO.
The Cyber Security Analyst will support A&A activities including:
• Ensure all external connections comply with Department of Defense, Department of Army, and United States Army Pacific (USARPAC) policy in support of their Authority to Connect (ATC).
• Utilize eMASS to validate that networks, systems, and programs adhere to Army RMF 2.0 standards.
• Validate circuit, VPN, commercial connections, etc. for the customer within the DISA Systems Network Approval Process website.
The Cyber Security Analyst will support the CORA and OIP processes including:
• Provide support to the CORA assessment team during scheduled and unscheduled inspections.
• Ensure Network Enterprise Commands (NECs) and Regional Cyber Centers (RCCs) comply with all applicable CORA requirements (e.g., Technical, CND Directives, Contributing Factors, etc.),
• Serve as a command team member for the Site Assist Visit (pre-CORA inspection) and report status, findings, and results.
• Support post-CORA finding remediation. Assist with the planning, execution, and documentation of CORA finding remediation activities.
• Provide support to the Organizational Inspection Program (OIP) prior to, during, and following all OIP inspections.
• Evaluate Command personnel during all OIP inspections. Document all findings; teach and train personnel on how to correct findings and provide recommendations to preclude the recurrence of findings.
Cybersecurity support for Exercises:
• Review, analyze, and recommend connections for Authorizing Official (AO) approval.
• Work with exercise participants to develop proper documentation for presenting to the AO.
• Participating in pre-exercise meetings as directed by the government.
Desired Qualifications and Skills: It is desirable that the candidate have the following qualifications:
• Capable of conducting technical research on cybersecurity issues and products and producing a whitepaper for leadership review.
• Experience working with USARPAC and INDOPACOM AOR and familiar with the command structures.
• Knowledgeable working with the Mission Partner Environment (MPE).
• Experience in briefing senior executive leaders and General Officers.
• A relevant educational degree in one of the following fields: Computer Science, Information Systems, Information Technology, Cyber Security, Statistics, Business Administration, Systems Engineering, Computation Science, Computer Engineering, Electrical Engineering, Data Analytics, Information Technology, Information Security and Assurance, Mathematics, Software Engineering, Systems Engineering, or Telecommunications.
• Experience with Cloud Cyber Security.
Essential Duties and Responsibilities: This position will include, but is not limited to, the following tasks:
• Oversight and accountability of day-to-day security operations of cybersecurity tasks.
• Validate compliant security architecture through understanding and application of current policies, procedures, and standards to provide a layered approach to cybersecurity.
• Evaluate policies against applicable standards for regulatory compliance.
• Cross-reference and validate physical, personnel, facility, and information systems, through policies and controls IAW Army Regulations, Department of Defense (DoD) Directives and Instructions.
• Manage information security risks and report findings to the Government.
• Work with system owners to maintain current Authorities to Operate (ATO) in a manner compliant with the Federal Information Security Management Act (FISMA), DoD Risk Management Framework (RMF), and National Institute of Standards and Technology (NIST) guidance.
• Support cybersecurity requirements during Army and Joint exercises.
• Represent the customer and CG in briefings and meetings regarding the cybersecurity posture of the AOR.
The Cyber Security Analyst will:
• Attend technical meetings as requested by the Govt. Cybersecurity Program Manager, providing comments and recommendations where required.
• Assist in the review and drafting of policy, SOPs, and directives as required.
• Ensure appropriate Secure Technical Implementation Guidelines (STIG) are maintained through monthly POAM review.
• Review Plans of Action & Milestones (POA&M) for currency and mitigations to identify vulnerabilities.
• Provide recommendations on Cybersecurity perspectives for proposed changes, initiatives, and projects.
• Review change requests, system connection requests, and requests for exceptions to policy to the DODIN-A network. Determine associated risk and draft Memorandums for Record for all requests with recommendation to the Authorizing Official (AO).
• Review all change requests for completeness, accuracy, and residual risk prior to providing approval Memorandum for Request to the AO.
The Cyber Security Analyst will support A&A activities including:
• Ensure all external connections comply with Department of Defense, Department of Army, and United States Army Pacific (USARPAC) policy in support of their Authority to Connect (ATC).
• Utilize eMASS to validate that networks, systems, and programs adhere to Army RMF 2.0 standards.
• Validate circuit, VPN, commercial connections, etc. for the customer within the DISA Systems Network Approval Process website.
The Cyber Security Analyst will support the CORA and OIP processes including:
• Provide support to the CORA assessment team during scheduled and unscheduled inspections.
• Ensure Network Enterprise Commands (NECs) and Regional Cyber Centers (RCCs) comply with all applicable CORA requirements (e.g., Technical, CND Directives, Contributing Factors, etc.),
• Serve as a command team member for the Site Assist Visit (pre-CORA inspection) and report status, findings, and results.
• Support post-CORA finding remediation. Assist with the planning, execution, and documentation of CORA finding remediation activities.
• Provide support to the Organizational Inspection Program (OIP) prior to, during, and following all OIP inspections.
• Evaluate Command personnel during all OIP inspections. Document all findings; teach and train personnel on how to correct findings and provide recommendations to preclude the recurrence of findings.
Cybersecurity support for Exercises:
• Review, analyze, and recommend connections for Authorizing Official (AO) approval.
• Work with exercise participants to develop proper documentation for presenting to the AO.
• Participating in pre-exercise meetings as directed by the government.
group id: 10105424
Accelerating IT transformation in the public sector