Principal/Senior Principal Cybersecurity Analyst

Principal/Senior Principal Cybersecurity Analyst

Requirements

• Bachelor’s degree with 5 years of experience, or Master’s degree with 3 years of experience, or PhD degree with 1 years of experience; 4 additional years of experience may be considered in lieu of a completed degree for Principal level
• Bachelor’s degree with 8 years of experience, or Master’s degree with 6 years of experience, or PhD degree with 4 years of experience; 4 additional years of experience may be considered in lieu of a completed degree for Sr. Principal level
• Must be a US Citizen and have the ability to obtain and maintain a U.S. Government DoD security clearance
• Current DoD 8570 IAM Level II Certification (Examples: CAP, CISSP) is required on Day 1, and maintaining the required certification will be a condition of continued employment
• Must be able to prioritize and execute tasks in a collaborative team environment within schedules and timelines

Responsibilities

• Perform assessments of weapon system components and networks to identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy; this is achieved through passive evaluations such as compliance audits and active evaluations such as vulnerability assessments
• Establish strict program control processes to ensure mitigation of risks and support obtaining certification and accreditation of systems; this includes support of process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections, and periodic audits
• Document the results of Assessment and Authorization activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones POA&M
• Periodically conduct a complete review of each system’s audits and monitor corrective actions until all actions are closed
• Provide analysis, design, development, implementation, and security assessments to ensure compliance with National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53, CNSSI 1253, and DoD RMF Knowledge Service guidance
• Apply analytical and evaluative methods and techniques to issues or studies concerning the efficiency and effectiveness of Cyber Security implementation
• Develop system and policy documentation required for certification evaluation
• Perform other ISSM duties as necessary
• Applies scientific, engineering, and information assurance principles to deliver trustworthy systems that satisfy stakeholder requirements within their established risk tolerance

Preferred Qualifications

• 3 years of Information Systems Security Officer/Manager experience
• Current DOD 8570 IAM Level III Certification (Examples: CISSP, GSLC, CISM)
• Working knowledge and understanding of auditing, vulnerability scanning/remediation, DISA STIGs, configuration/change control, and implementation of Risk Management Framework
• Excellent verbal and written communication skills to produce coherent and concise documentation required for certification evaluation
• ICBM Experience
• Current DoD Top Secret security clearance