Cyber Information Assurance Analyst

Arlington, VA | Full-Time

Apply Now

CSCI is seeking a well-qualified and self-motivated Senior Cyber Information Assurance Analyst with a minimum of 10-12 years cybersecurity experience to support a Department of Defense (DoD) customer. Candidates must have experience cybersecurity, military system specifications, DoD Information Assurance (IA) policies for both land-based and afloat/tactical systems. Strong experience in performing cybersecurity system engineering design, analysis, and documentation of combat systems; developing cybersecurity risk assessment analysis and risk mitigation plans for combat systems; and develop documentation of cybersecurity requirements, gap analysis, threat analysis, system engineering, risk assessment and mitigation for combat systems.

Strong experience implementing and supporting the Risk Management Framework (RMF) has defined in the above directives is required.

Responsibilities

  • Effectively communicate to senior level management in a unique and highly visible environment.
  • Develop, implement, and maintain Information Systems (IS) by the Joint Special Access Program (SAP) Implementation Guide (JSIG) Risk Management Framework (RMF).
  • Write Assessment and Authorization (A&A) documentation and developing processes and procedures for JSIG ISs.
  • Obtain Authorization to Operate (ATO), and the follow-up recertification process of an IS. 
  • Create and maintain a Plan of Action and Milestones (POA&M) and provide to Security Control Accessor (SCA) for review.
  • Conduct Continuous Monitoring (ConMon) Plans of an IS.
  • Run Security Content Automation Protocol (SCAP) tools for Windows and Linux Operating Systems and provide quarterly to the SCA. 
  • Implement and maintain compliance with the Defense Information System Agency (DISA) Secure Technical Implementation Guides (STIG) for Windows and Linux Operating Systems of approved systems.
  • Implement and manage Ivanti Device Control, Nessus Security Scanner, and Splunk.
  • Build and maintain a positive professional relationship with the customer.  

Skills

  • Exceptional communication skills.
  • Strong technical skills with Linux and Windows operating systems to go along with an in-depth understanding of the RMF process.
  • Intermediate skill set on configuring and supporting Cisco switches.
  • Knowledge and experience are configuring RAID levels for network storage devices.
  • Experience in implementing system backups.
  • Must be able to solve complex problems with minimal supervision.
  • Strong writing skills to create and review RMF documentation.
  • Customer service attitude.
  • Ability to effectively work with others that helps foster and encourage a positive work environment.

Experience:

  • A minimum of 10-12 years of cybersecurity experience to support a Department of Defense (DoD) customer.
  • Experience developing, implementing, and maintaining Information Systems (IS) by the Joint Special Access Program (SAP) Implementation Guide (JSIG) Risk Management Framework (RMF).
  • Experiencing writing Assessment and Authorization (A&A) documentation and developing processes and procedures for JSIG ISs.
  • Experience in the Information Assurance (IA) lifecycle within the RMF through at least the initial submission of an Authorization to Operate (ATO) and the follow-up recertification process of an IS.
  • Experience with the creation and maintenance of a Plan of Action and Milestones (POA&M).
  • Experience conducting Continuous Monitoring (ConMon) Plans of an IS.
  • Experience with running Security Content Automation Protocol (SCAP) tools for Windows and Linux Operating Systems.   
  • Expertise implementing and maintaining compliance with Defense Information System Agency (DISA) Secure Technical Implementation Guides (STIG) for Windows and Linux Operating Systems.
  • Experience implementing and managing Ivanti Device Control, Nessus Security Scanner, and Splunk.
  • Experience with Windows and Linux Operating Systems, along with basic knowledge of both Windows and Linux auditing.

Education:

BA/BS in Information Technology, Computer Science, Cyber Security, or related discipline.

Requirements - US Citizen / Top Secret/SCI Clearance

Training/Certifications:

DoD 8570 Compliance. IAT Level II Certification (CCNA Security, CySA+, CND, or SSCP) required.

U.S. Citizenship:

Yes

Minimum Clearance:

Applicants are required to have, at a minimum, a TOP SECRET (TS) clearances with Sensitive Compartmented Information (SCI) eligibility based on a Single Scope Background Investigation (SSBI) completed within the last five years. Applicants selected must be willing to submit to an initial and random counter-intelligence polygraph.

The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal responsibilities from time to time, as needed.

CSCI stands in support of equality for and advancement of all people based solely upon the merits of abilities and actions alone, without regard to race, creed, color, sex, age, national origin or disability.

Apply Now

  • Date Format: MM slash DD slash YYYY
  • Applicants are considered for all positions, and employees are treated during their employment without regard to their race, color, creed, religion, sex, national origin, age, marital status, sexual orientation, military status or any non-job-related handicap or medical condition.
  • This field is for validation purposes and should be left unchanged.