Cybersecurity Systems Analyst, Intermediate
FEDITC · Fayetteville, NC · 2 wk ago
Information TechnologyFull-time
Responsibilities
- Performs assessment and authorization coordination.
- Advises and assists the customer with Risk Management Framework (RMF) and develops a Plan of Action and Milestones for resolving network deficiencies in accordance with DODI 8510.01 and ICD 503.
- Assesses network compliance against controls listed in NIST 800-53 and creates A&A packages.
- Executes a comprehensive assessment, compliance and validation of customer networks to ensure compliance with regulations and security and standards.
- Identifies and mitigates potential shortcomings and vulnerabilities by identifying and mitigating potential shortcomings and vulnerabilities.
- Advise on network and system risks, risk mitigation courses of action, and operational.
- Performs security evaluations and vulnerability assessments using the DOD Assured Compliance Assessment Solution (ACAS), Nessus vulnerability scanning tool and Security Content Automation Protocol tool.
- Identifies applicable STIGs and performs assessments using the Security Content Automation Protocol tool.
- Liaison with network and system administrators to correct identified deficiencies.
- Scan (or review scans) for new systems and applications being introduced into the SOF environment, identify issues, and draft certification letters for the government.
- Liaison with the Site Integration Facility (SIF) to ensure systems and application meet the standards in the DISA Security Technical Implementation Guides (STIG).
Qualifications
- Experience/Skills: 5+ years of progressive, relevant experience or equivalent combination of education and experience.
- Technical background with system administration experience, architecture and engineering preferred.
- Technical background in networking, identity management, Microsoft and Linux operating systems, database, and mobility.
- Working knowledge of the RMF.
- Knowledge of the Telos Xacta or Enterprise Mission Assurance Support Services (eMASS) system is desired.
- Excellent communications skill (written and oral) and interpersonal skills.
- Knowledge and experience with DoD IA processes and policies (e.g., DODI 8510.01, NIST, CNSS and other cybersecurity policies, Chairman of the Joint Chiefs of Staff Manual (CJCSM) 65101.01, Incident Response and other IA policies).