Junior Information System Security Officer
Role details
Job location
Tech stack
Job description
Under close supervision, a Cybersecurity Analyst I performs a variety of fundamental cybersecurity tasks in securing information systems and maintaining the Information Technology (IT) infrastructure operational environment to include developing and updating system security plans (SSPs), developing plans of action and milestones (POA&Ms), managing and controlling changes to the systems, conducting audits, providing incident response, vulnerability assessments, and assessing the security impact of security and non-security-relevant changes.
Work is at an entry level, involves deadlines, and generally supports members of a development, sustainment, or operations and maintenance team.
Employee will be responsible to perform the following functions/duties:
- Conduct research and reference reading to assist higher-level Cybersecurity Analysts in obtaining technical information
- Keep informed of the current approved standards, codes, and procedures as they apply to the cybersecurity specialty
- Perform systems engineering activities in the areas of cybersecurity / Information Assurance (IA) / System Security Engineering (SSE) and security assessment and authorization (A&A) in accordance with NIST SP 800-53 RMF
- Apply manager-approved risk management concepts to mitigate vulnerabilities in system security architectures
- Interface with the Information System Security Manager (ISSM), program managers, system stakeholders, and external contractors to coordinate cybersecurity requirements and architecture flow down from the system level to individual elements of the system
- Assist in preparation of reports, correspondence, or technical studies
- Perform other job-related duties, as required
Requirements
Due to customer requirements, U.S Citizenship is required.
Must be able to obtain and maintain a DoW Security Clearance for duration of employment.
B.S. in Computer / Information Technology / Information Assurance, or equivalent academic/technical training/certification;
2 to 3 years of experience in computer systems security, and/or related area of expertise;
compliance or ability to become compliant to DoD 8570.01-M levels; possession of Security+ certification, or completion of Security+ within a designated timeframe; and a minimum of one of the following certifications: A+CE, CCNA-Security, CND, Network+CE, or SSCP are required for this position.
Additional desired qualification: CEH
In addition, a Cybersecurity Analyst I must possess the following qualifications:
- Conceptual knowledge of Risk Management Framework (RMF) process, eMASS, ACAS, SCAP, STIG, Cyber Risk Assessment (CRA), and Cyber Table Top (CTT) or related process
- Robust conceptual and practical understanding of IT Infrastructure designs, technologies, products, and services
- Experience supporting various system configurations such as standalone, local area networks (LANs), and wide area networks (WANs)
- Demonstrated strong communication skills, analytical ability, good judgment, and the ability to work effectively with the customer and Cybersecurity Engineering Support Team
- Demonstrated experience in planning, designing, executing, and assessing discussion-based exercises
- Ability to plan, organize, and work under strict deadlines
Benefits & conditions
Salary: the expected pay range for this position is $72,800 to $99,840 but is subject to change.