Cyber Sec Analyst II (ISSO)

About The Position

Requirements

• Must possess an active Top Secret/SCI clearance
• A minimum of five years of cybersecurity experience
• Must currently hold a DoD 8140-compliant IAT II certification (SSCP or Security+CE with appropriate CE/OS certificate), and IAM II certification (CAP or CASP CE) or be able to obtain within six months
• CE/OS certificate may include Windows or Linux
• Experience with Xacta, SSPs, POA&Ms, ACAS/Nessus, SCAP, SCC Tool, Benchmarks, and STIG Viewer
• Experience with Risk Management Framework processes
• Have developed communication skills and the ability to express thoughts and ideas clearly and concisely
• Must be a team player, dedicated to program support, capable of multitasking and working several complex and diverse tasks with simultaneous or near simultaneous deadlines
• Be a self-starter who is accountable and requires minimal direction and supervision
• Be open to new and innovative ideas

Nice To Haves

• Experience in a Linux environment is preferred
• Experience with Networking Devices
• Experience with NSA Enterprise Services: Continuous Monitoring

Responsibilities

• Performing monthly compliance assessments using tools, such as Assured Compliance Assessment Solution (ACAS), Collaborative Computing Security Services (CS2) audit files, Secure Content Automation Protocol (SCAP), and McAfee Virus Scan Enterprise while reviewing, documenting, and maintaining all results
• Verifying patches and virus definitions to the systems using existing automated tools
• Adhering to pre-defined configuration management and change management policies and procedures for authorizing software prior to its implementation on systems
• Ensuring that audit trails (system logs) are reviewed as required and maintaining them for future reference
• Assessing STEI Family of Systems in accordance with NIST and NSA guidance
• Recommending authorization of systems to the Designated Authorizing Official (DAO) as a certified Trusted Agent
• Reporting security incidents in accordance with the Command Incident Response Plan (CIRP)
• Ensuring systems are operated, used, maintained, and disposed of in accordance with all applicable security policies and practices

Benefits

• SRC offers a generous benefit package, including medical, dental, and vision plans, 401(k) with a company match, life insurance, vacation and sick paid time off accruals starting at 10 days of vacation and 5 days of sick leave annually, 11 paid holidays, tuition reimbursement, and a work environment that encourages excellence and more.