Cyber Analyst Principal - TS/SCI with Polygraph
About the role
The Cyber Analyst Principal supports a commercial cloud service provider's mission-critical systems. Reporting full-time on-site in McLean, VA, this role requires extensive experience in navigating the IC Risk Management Framework (RMF) for classified commercial cloud services and cross-domain solutions.
Responsibilities
- Support Assessment & Authorization (A&A) execution for classified commercial cloud service offerings and CDS throughout the respective IC RMF lifecycles to obtain and maintain the applicable authorizations.
- Maintain a comprehensive body of evidence for A&A packages.
- Support the monthly and overall IC Continuous Monitoring requirements.
- Proactively identify and assess vulnerabilities related to scans, STIGs, security controls, etc.
- Coordinate and/or participate in security testing and penetration testing activities to validate the system's security posture.
Requirements
- Security clearance level: Must possess a current and active TS/SCI with Polygraph.
- Certifications: Must be DoW 8140 / 8570.01-M compliant.
- Education: BA/BS Degree or equivalent experience in lieu of degree.
- Experience: 5+ years of related experience.
- Technical skills: Expert-level knowledge of the complete NIST SP 800 series (especially 800-37, 800-53, 800-30) and risk management principles.
- Progressive experience in information assurance and cybersecurity roles.
- Direct, hands-on experience as an ISSO or ISSM, with a proven track record of successfully supporting ATO for classified systems under ICD 503 policies.
- Extensive, hands-on experience navigating the IC Risk Management Framework (RMF) requirements for classified commercial cloud services and cross domain solutions.
Qualifications
- Bring your cyber expertise and drive for innovation to GDIT. The Cyber Analyst Principal must have:
- Security clearance level: Must possess a current and active TS/SCI with Polygraph.
- Certifications: Must be DoW 8140 / 8570.01-M compliant.
- Education: BA/BS Degree or equivalent experience in lieu of degree.
- Experience: 5+ years of related experience.
- Technical skills: Expert-level knowledge of the complete NIST SP 800 series (especially 800-37, 800-53, 800-30) and risk management principles.
- Progressive experience in information assurance and cybersecurity roles.
- Direct, hands-on experience as an ISSO or ISSM, with a proven track record of successfully supporting ATO for classified systems under ICD 503 policies.
- Extensive, hands-on experience navigating the IC Risk Management Framework (RMF) requirements for classified commercial cloud services and cross domain solutions.
Skills
- Expert-level knowledge of the complete NIST SP 800 series (especially 800-37, 800-53, 800-30) and risk management principles.
- Progressive experience in information assurance and cybersecurity roles.
- Direct, hands-on experience as an ISSO or ISSM, with a proven track record of successfully supporting ATO for classified systems under ICD 503 policies.
- Extensive, hands-on experience navigating the IC Risk Management Framework (RMF) requirements for classified commercial cloud services and cross domain solutions.
Benefits
GDIT offers a comprehensive benefits and wellness package, including a 401(k) plan with company match, competitive pay and paid time off, and a variety of short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness, and business travel and accident insurance. GDIT also provides a military-friendly workplace and a supportive culture of innovation.
Pay
The likely salary range for this position is $124,093 - $166,750. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Schedule
Scheduled Weekly Hours: 40
Location
Onsite in McLean, VA