Cask seeks artisans in their field of expertise. Our ideal Candidate is someone who seeks learning through immersion, collaboration and action. We value entrepreneurial spirits that maintain a team attitude and those who seek innovative solutions for our clients with a passion for solving tough problems. The Configuration Management position will support Marine Corps Systems Command (Quantico, VA).
Description
The Information Assurance / Cybersecurity Analyst will provide cybersecurity and information assurance support to the Program Manager, Applications Portfolio, PfM SES, Marine Corps Systems Command.
Key Duties
Provide information system security analysis and assessment and authorization (A&A) support for all assigned PM Applications portfolio information systems and the PM Applications Program Management Office as part of an integrated product team
Provide technical knowledge and expertise to support engineering change proposals and change requests by reviewing proposed modifications to system baselines, evaluating cybersecurity impact to design, and advising the integrated product team
Develop and maintain Department of Defense (DoD) Instruction 8510.01 compliant risk management framework (RMF) authorization packages for all assigned systems and applications utilizing the Marine Corps Certification and Accreditation Support Tool (MCCAST)
Develop the security assessment plans for all assigned systems to include detailing how to test and validate the applicable RMF controls and delivering the final test plan a specified number of days prior to the scheduled self-assessment test event
Conduct pre-assessments based on the security assessment plans as directed
Perform technical and non-technical system cybersecurity assessments on assigned systems and document results
Monitor, and assist in maintaining assigned systems’ and applications’ plans of actions and milestones
Provide support to the preparation and evaluation of technical documents, papers, studies, analysis, and briefings in support of acquisition of major automated information systems
Support the government ISSM in cybersecurity matters
Qualifications
Minimum of 5 years of experience in information technology, all of which must have been in the previous 8 years and in direct support of DoD Information Assurance / Cybersecurity
Demonstrated experience developing and implementing enterprise cybersecurity standards and procedures
Demonstrated proficiency in analyzing moderately complex cybersecurity-related technical problems and providing engineering and technical support for resolution
Demonstrated experience in performing vulnerability and risk analyses of computer systems and applications during the system development life-cycle
Demonstrated knowledge of and experience with implementing the DoD RMF
Demonstrated ability to work as part of a large and diverse team
Must have Security+, at a minimum, or one or more of the following IA certifications: Certified Authorization Professional (CAP); GIAC Security Leadership Certificate (GSLC); Certified Information Systems Security Professional (CISSP); CompTIA Advanced Security Practitioner (CASP); or Certified Information Security Manager (CISM)
Must meet requirements of DoD 8570.01-M Information Assurance Manager (IAM) Level II/ SECNAV-M 5239.2 Intermediate / Journeyman Proficiency Level
High School Diploma or Equivalent
Security Clearance: All personnel must have an active Secret security clearance.
EEO/Employer/Vet/Disabled