Cybersecurity Analyst, Mid

Falconwood, Inc. is a woman, veteran-owned business providing executive-level consultants and programmatic support to Department of Defense (DoD) Information Technology (IT) initiatives and programs.

We provide expert consultation on a diverse range of IT subjects, focusing on acquisition strategy, implementation activities, and Cyber Security policy and engineering., We have an opening for a Cyber Security Analyst, Mid to provide cyber security support and develop and maintain DoDI 8510.01-compliant Risk Management Framework (RMF) authorization packages for all assigned Logistics Integrated Information Systems-Marine Corps (LI2S-MC) systems and applications., The Cyber Security Analyst:

• Provide Cyber Security guidance and documentation throughout the system development life cycle for Marine Corps systems and applications
• Develop and maintain detailed cybersecurity project plans for all assigned systems. Cybersecurity project plans shall identify all action items necessary to obtain and maintain system authorization; maintain FISMA compliance and implement the system's continuous monitoring strategy; account for known system inspections, and system milestone events
• The contractor shall utilize the Enterprise Mission Assurance Support Service (eMASS) for the authoritative authorization packages as per the references
• Support the PM, Cyber Lead, and ISSM throughout all phases of the security authorization process
• Oversee cybersecurity testing to assess security controls and record security control compliance status during the continuous monitoring phase of the lifecycle
• Ensure the completion of cyber-related programs, projects, or tasks within estimated timeframes and budget constraints
• Provide Cyber Security guidance at meetings, briefings, and design reviews, and during system development in accordance with prevailing Cyber regulations and policies
• Ensure Cyber Security system designs that properly mitigate identified threats and vulnerabilities
• Review and approve test and evaluation activities to validate that those threats and vulnerabilities are mitigated
• Perform system security reviews and Certification & Accreditation (C&A)/ Assessment and Authorization (A&A)
• Conduct A&A process for IT systems and networks in accordance with the DoD Risk Management Framework process
• Analyze and review the results of network and system vulnerability scans and be able to validate the implementation of IA Controls in accordance with DoD 8500.2
• Develop the Security Plan, Security Assessment Plan, Security Assessment Report, and Executive Summaries
• Assess C&A impact based on ACAS and STIG results, and identify the strength of the mitigation or remediation
• Report package status and risks weekly to senior-level government leadership

• Active SECRET Clearance* BS Degree in Cyber Security/Engineering field (e.g., Computer, Electrical, Mechanical, Systems, Security)* 5+ years of cyber security experience* IAM/IAT III - Certified Information Systems Security Professional (CISSP) Certification or equivalent* Experience with contingency planning, firewall policy, ports and protocols, and service management* Experience with Microsoft Public Azure, Azure Pack, and Azure Stack, and related Microsoft technologies (Hyper-V, ADR, SCCM, SCOM)* Familiarity with Marine Corps network architecture