Cybersecurity Specialist
Amyx, Inc. · Sacramento, CA · 1 wk ago
EngineeringFull-time
About the role
Amyx is seeking a Cyber Security Analyst Level 2 located in McClellan, CA. This position supports the DMEA information systems division at the Defense Microelectronics Activity (DMEA).
Responsibilities
- Guide efforts certifying customer information systems are compliant with NIST standards and guidelines.
- Maintain assigned customer IT Systems RMF authorizations accurately and on schedule.
- Sustain, maintain or generate customer vulnerability management, asset management, and risk management tools and processes.
- Participate in risk assessment during the Certification and Accreditation (C&A) process.
- Design, develop, implement, and integrate information assurance architectures, systems, or system components for use within data center, network, and enclave environments.
- Maintain a comprehensive list of STIGs applicable to client information systems based on RMF control selection, system owner/administrator interviews, and detailed analysis of Host Based Security System (HBSS) data (where available), ACAS scans, and reports.
- Participate in information systems risk assessments and design security countermeasures to mitigate identified risks.
- Verify architecture and design of DoD information systems (ISs) are functional and secure.
- Assess threats to the environment; provide input on the adequacy of security designs and architectures.
- Report to senior IA architect, IA manager, or AO for general IA operations, and to senior management regarding network operational requirements.
- Provide technical research, analysis, and reports interpreting client's vulnerabilities, delivering technical expertise for risk management decisions and documentation requirements for DoD ISs.
- Analyze trends, emerging technologies, and threats for potential impact on the security architect and posture.
- Develop POA&Ms and RMF Control artifacts as required.
- Collect and address IAVM of IAVA through guidance set forth by USCYBERCOM, DISA, NIST, NSA, and client for Vulnerability and Penetration Testing.
Requirements
- BA/BS in a technical discipline.
- Secret Clearance.
- 5+ years of cybersecurity experience in system(s) functions, security policies, technical security safeguards, and operational security measures.
- In-depth knowledge in providing continuous analysis, mitigation strategies, and administrative and technical implementation support for all activities associated with compliance with RMF on information systems.
- Thorough understanding of Operating Systems, networking (TCP/IP, Ports, Active Directory, DNS, and DHCP), Switch / Router configuration, and Security.
- CSSP-A or CSSP-AU.
- Current ACAS console training.
- Current HBSS courses/cert. in 201 & 301.
Qualifications
- Ability to communicate accurate information.
Skills
- Supported Technologies: ACASHBSSMicrosoft Office ProductsCisco Network EquipmentWindows Servers 2012/2016Windows DesktopRed Hat Enterprise Linux,eMASS (Future)EiQ SecureVue operator.
Benefits
- Medical, Dental, and Vision Plans (PPO & HSA options available)
- Flexible Spending Accounts (Health Care & Dependent Care FSA)
- Health Savings Account (HSA)
- 401(k) with matching contributions
- Roth Qualified Transportation Expense with matching contributions
- Short Term Disability
- Long Term Disability
- Life and Accidental Death & Dismemberment
- Basic & Voluntary Life Insurance
- Wellness Program
- PTO
- 11 Holidays
- Professional Development Reimbursement