Cyber Info. Systems Security Analyst Dulles, VA
Dulles, VA
Job Description:
Qualifications
- Master's degree with 0 years of experience; OR a Bachelor\'s degree with 2 years of experience; OR an Associates degree with 4 years of experience; OR a High School Diploma/GED with 6 years of experience is required
- Must have a DoD 8570 IAM Level I security certification (example: Security+ CE); OR must have the ability to obtain one within 6 months of start date
- Candidates must have an Active DoD Top Secret security clearance to include SCI access level eligibility, based on a closed investigation date completed within the last 6 years, in order to be considered
- Must have the ability to obtain, and maintain, access to Special Programs as a condition of continued employment
- Travel Required: Yes, 10% of the Time
- Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy
- This is achieved through passive evaluations such as compliance audits and active evaluations such as vulnerability assessments
- Establishes strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems
- Includes support of process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits
- Assist in the implementation of the required government policy (i.e., NISPOM, DCID 6-3), make recommendations on process tailoring, participate in and document process activities
- Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards
- Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports
- Document the results of Certification and Accreditation activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones POA&M
- Periodically conduct a complete review of each system\'s audits and monitor corrective actions until all actions are closed