10067 - Cyber Information Assurance Analyst 2 (JD)

ISYS Technologies - Rome, NY (30+ days ago)


Functional Responsibilities:

ISYS Technologies is seeking a Cyber Information Assurance Analyst. The successful candidate must be willing to travel up to 10% of the time.

Job Duties:

  • Performs assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits and active evaluations such as vulnerability assessments
  • Establishes strict program control processes to ensure mitigation of risks and support obtaining certification and accreditation of systems
  • Supporting process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits
  • Assists in the implementation of the required government policy (i.e., NISPOM, NIST 800-37), make recommendations on process tailoring, participate in and document process activities
  • Performs analyses to validate established security requirements and to recommend additional security requirements and safeguards
  • Supports the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports
  • Documents the results of Certification and Accreditation activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones POA&M
  • Periodically conduct a complete review of each system's audits and monitor corrective actions until all actions are closed

Experience Requirements:

  • Bachelor’s degree plus 2 years of related experience, or 6 years of experience in lieu of a degree
  • 1+ years of experience with information assurance (Xacta, eMASS), RMF, A&A and cyber security experience with documenting IT systems’ vulnerabilities and mitigation strategies
  • Knowledge of certification and accreditation artifacts and supporting documents (BOE)
  • 1+ years of experience with DoD 8500 series documents, including implementing and assessing security controls from CNSSI 1253, DoDI 8500.2 and the NIST 800 series
  • CompTIA Security+ certified

Desired Experience:

  • 1+ years of experience with providing technical support for the deployment of cross domain solutions (Windows, Linux, Xen Hypervisors, Multi-NIC, Shared/Dedicated Graphics Cards, KVM Extenders, VPN Tunneling)
  • 1+ years of experience with automated testing tools and frameworks

Clearance:

  • TS/SCI

Job Type: Full-time

Experience:

  • monitoring corrective actions until all actions are closed: 1 year
  • conducting a complete review of each system's audits: 1 year
  • implementation of the required government policy (e.g. NIST): 1 year
  • information assurance (Xacta, eMASS): 1 year
  • certification. accreditation artifacts, supporting doc (BOE): 1 year
  • technical support for deployment of cross domain solutions: 1 year
  • preparing system Security Plans and updating the POA&M: 1 year
  • ST&E: 1 year
  • RMF, A&A and cyber security: 1 year
  • implementing and assessing security controls: 1 year
  • documenting systems’ vulnerabilities & mitigation stratigies: 1 year
  • automated testing tools and frameworks: 1 year
  • DoD 8500 series documents: 1 year
  • CNSSI 1253, DoDI 8500.2 and the NIST 800 series: 1 year
  • assessment of systems and networks: 1 year
  • Documenting results of Certification/Accreditation activity: 1 year

Education:

  • Bachelor's

License:

  • Active TS/SCI
  • Security+ (8570.01 compliance)
  • US Citizen