Summary:


A Cybersecurity Analyst must have a thorough understanding of the developer or validator process and familiarity with IT/network technologies. Thus, the analyst is expected to provide technical support to perform validator functions, independently assessing and validating that systems have correctly implemented the approved security controls and conformed to package processing requirements.


Applicants must meet the requirement of U.S. Citizenship and have a SECRET security clearance,


 


Primary Skills & Responsibilities:


  • Prepare and submit the Security Assessment Plan (SAP) with program assistance.
  • Recommend policies and procedures to meet security control requirements.
  • Perform a complete assessment of a system’s or network’s security controls, known threats, and vulnerabilities.
  • Validate security controls and conduct DoD assessment procedures in accordance with National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53.
  • Recommend corrections to eMASS record.
  • Ensure traceability of all vulnerabilities from raw assessment results to the Plan of Action & Milestones (POA&M).
  • Recommend updates to the POA&M based on the assessment result.
  • Provide a summary of failed controls in Risk Assessment tab in eMASS.
  • Complete a Security Assessment Report (SAR), in conjunction with the Security Control Assessor (SCA), based on the assessment results.
  • Three (3) years’ experience supporting Power Apps, Power Automate and Sharepoint processes.


Education/Certifications/Clearance:


  • BS in Information Systems, Information Assurance, Computer Science, or equivalent technical degree or relevant experience.
  • NQV Level II certification preferred.
  • Security+, Network+, or other IAM Level II certifications desired.

An active Secret Clearance