Cybersecurity, Information Assurance, IA, Certification, Accreditation
-Federal US Naval Warfare
-Full time/Direct hire
-Location: Virginia Beach, VA
-Top Secret Security Clearance
The Cybersecurity Analyst utilizes in-depth understanding and experience in the legacy DoD Information Assurance Certification and Accreditation Process (DIACAP), current DoD Risk Management Framework, Platform IT (PIT), and the implementation of Cyber Security and IA boundary defense techniques and various IA-enabled appliances to facilitate certification and security engineering tasks in support of the customer’s system security objectives.
Essential Job Functions:
Author Certification and Accreditation (C&A) and RMF artifacts to document a system from an IA perspective.
Derive, document and/or identify system CONOPS for Mission Assurance Categorization per DoDI 8500.2.
Research and apply DISA Security Technical Implementation Guides (STIGs) and NSA recommendations. Plan, Develop, execute and document results of security test procedures.
Lead the analysis and testing of a designated US Naval warfare system against known vulnerabilities based upon security approaches and known hacker techniques and exploits.
Lead the preparation and execution of an Information Assurance Vulnerability Management (IAVM) Plan.
Lead Risk Management Framework (RMF) efforts to obtain Authorization to Operate (ATO) or transition legacy DIACAP ATOs to RMF and resolve issues in the event a US Naval warfare system holds an Interim ATO (IATO). A bachelor's degree plus 5 - 8 years of applicable experience.
Due to the sensitivity of customer related requirements, U.S. Citizenship is required.
Must have a Secret Security clearance.
Requires 5 years’ of experience analyzing and securing DoD or information technology systems for compliance with Cyber Security policies and requirements.
IAT Level II or Level III certification in accordance with DoD 8570.01. (Security+ or CISSP)
Familiarity with the DISA Enterprise Mission Assurance Support Service (eMASS) application as used to develop, manage and track IA artifacts.
Must be proficient in the use of the MS Office Suite (MS Word, MS Excel, MS Visio) and other tools to develop required system documentation.
Familiarity with security control selection, implementation and assessment processes as they relate to preparing and reviewing/monitoring DAICAP and RMF packages.
Understanding of computer security, military system specifications, DoD IA policies and the ability to communicate clearly and succinctly in written and oral presentations.
Appointment as a Qualified Navy or Marine Corps Validator (intermediate) highly desired.
Experience with researching, assessing and performing continuous monitoring under Risk Management Framework (RMF) packages in accordance with DoD 8510.01 and NIST Publication.
Top Secret Clearance.