RMF Cyber Security Analyst - 306210 with Security Clearance
DNI (Delaware Nation Industries) · Virginia Beach, VA · 4 wk ago
Information TechnologyFull-time
Responsibilities
- Monitor and assess existing Information Security Management and Security Technical Architecture, regulations, and controls (FIPS, NIST, DISN CPG, Navy RMF Process Guide (RPG), Navy Testing Guidance)
- Audit proposed Information Security Management and Security Technical Architecture, regulations, and controls (FIPS, NIST, DISN CPG, Navy RPG, Navy Testing Guidance)
- Maintain regular meetings/notes and informal dialog with RDT&E CORE/LAB managers and ISSOs to keep them abreast of upcoming ISSM requirements and gather specifics on their capability and core support requirements and trends
- Maintain records in the Enterprise Mission Assurance Support Service (eMASS)
- Evaluate technical testing from Assured Compliance Assessment Solution (ACAS) scans, Evaluate STIG, eMASSter), and Security Technical Implementation Guide Viewer tool using FMATS or other NAVSEA or DoD-approved toolset
- Maintain security access, passwords, badges, log-ins to keep a site or system safe
- Use firewalls and information security standards to keep their organization secure
- Perform security assessments, vulnerability testing and risk analysis
- Conduct security audits internal and external
- Identify the cause of security breaches
Requirements
- DoD Top Secret Security Clearance
- 5+ Years of Experience in Cyber Security
- Cyber Security Workforce level IAM II/III CASP, CISM, or CISSP required
- Bachelor Degree or Equivalent Work Experience
- Familiarity with NIST IT Security Special Publication (SP) 800 Series with emphasis on NIST SP 800-37 and NIST SP 800-53 rev 4/5
- Forensics analysis familiarity
- Experienced STIG reviewer
- Microsoft Visio and Microsoft Project user
Desired
- Navy Qualified Validator (NQV) Level II
- Familiarity with ACAS, RedSeal, and Carbon Black
- Familiarity with the Vulnerability Remediation Asset Manager (VRAM) web tool
- Familiarity with the Continuous Monitoring and Risk Scoring (CMRS) web tool