Under close supervision, a Cybersecurity Analyst I performs a variety of fundamental cybersecurity tasks in securing information systems and maintaining the Information Technology (IT) infrastructure operational environment to include developing and updating system security plans (SSPs), developing plans of action and milestones (POA&Ms), managing and controlling changes to the systems, conducting audits, providing incident response, vulnerability assessments, and assessing the security impact of security and non-security-relevant changes.
Work is at an entry level, involves deadlines, and generally supports members of a development, sustainment, or operations and maintenance team.
Employee will be responsible to perform the following functions/duties:
Conduct research and reference reading to assist higher-level Cybersecurity Analysts in obtaining technical information
Keep informed of the current approved standards, codes, and procedures as they apply to the cybersecurity specialty
Perform systems engineering activities in the areas of cybersecurity / Information Assurance (IA) / System Security Engineering (SSE) and security assessment and authorization (A&A) in accordance with NIST SP 800-53 RMF
Apply manager-approved risk management concepts to mitigate vulnerabilities in system security architectures
Interface with the Information System Security Manager (ISSM), program managers, system stakeholders, and external contractors to coordinate cybersecurity requirements and architecture flow down from the system level to individual elements of the system
Assist in preparation of reports, correspondence, or technical studies
Perform other job-related duties, as required
Due to customer requirements, U.S Citizenship is required.
Must be able to obtain and maintain a DoW Security Clearance for duration of employment.
B.S. in Computer / Information Technology / Information Assurance, or equivalent academic/technical training/certification;
2 to 3 years of experience in computer systems security, and/or related area of expertise;
compliance or ability to become compliant to DoD 8570.01-M levels; possession of Security+ certification, or completion of Security+ within a designated timeframe; and a minimum of one of the following certifications: A+CE, CCNA-Security, CND, Network+CE, or SSCP are required for this position.
Additional desired qualification: CEH
In addition, a Cybersecurity Analyst I must possess the following qualifications:
Conceptual knowledge of Risk Management Framework (RMF) process, eMASS, ACAS, SCAP, STIG, Cyber Risk Assessment (CRA), and Cyber Table Top (CTT) or related process
Robust conceptual and practical understanding of IT Infrastructure designs, technologies, products, and services
Experience supporting various system configurations such as standalone, local area networks (LANs), and wide area networks (WANs)
Demonstrated strong communication skills, analytical ability, good judgment, and the ability to work effectively with the customer and Cybersecurity Engineering Support Team
Demonstrated experience in planning, designing, executing, and assessing discussion-based exercises
Ability to plan, organize, and work under strict deadlines
Salary: the expected pay range for this position is $72,800 to $99,840 but is subject to change.