Cyber IA Analyst- Mid Assessor

The Cyber IA Analyst – Assessor conducts cybersecurity assessments, audits, and inspections for DoD organizations and partners, focusing on systems using cyber threat emulation and performance-based testing. Responsibilities include adhering to policies, supporting assessment development, coordinating logistics with the SCA Team Lead, performing vulnerability assessments, and documenting findings in eMASS. The role requires analyzing security gaps, providing mitigation recommendations, validating cybersecurity controls, and ensuring compliance with DoD policies. Additionally, the position involves providing risk analysis for authorization recommendations and participating in daily assessment reviews to share findings. This position is remote to the Ft. Meade area, may go onsite as needed. 

Chickasaw Nation Industries, Inc. serves as a holding company with multiple subsidiaries engaged in several lines of business (Technology, Infrastructure & Engineering, Health, Manufacturing, Public Safety, Consulting, and Transportation) for the federal government and commercial enterprises. A portion of our profits is used to support Chickasaw citizens. We are proud to support the economic development and long-term viability of the Chickasaw Nation and its people. CNI offers premium benefits eligible on the first day of hire to full time employees; (Medical - Dental – Vision), Company Life Insurance, Short-Term and Long-Term Disability Insurance, 401(K) Immediate Vesting, Professional Development Assistance, Legal Aid Assistance Program, Family Planning / Fertility Assistance, Personal Time Off, and Observance of Federal Holidays.

As a federal contractor, CNI is a drug-free workplace and adheres to the Federal Controlled Substance Act.   

ESSENTIAL REQUIREMENTS

• The ability to obtain, maintain and access classified information at the TS/SCI level. 

• Five (5) years of overall experience in cybersecurity or network security position.

• Three (3) years of experience in a Certification and Accreditation/A&A role.

• DoD 8570 IAM/IA Technical (IAT) Level II certification.

• Demonstrated experience with STIGs (Security Technical Implementation Guides), Security Requirement Guides (SRGs), Plan of Action and Milestones (POA&Ms) and cybersecurity best practices.

• Strong understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53, CNSSI 1253.

• Demonstrated experience with relevant tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS.

• Demonstratable understanding of key technologies areas/domain such as: Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, Host Based Security System (HBSS)/Endpoint Security Solutions (ESS), Databases, Applications.

• Strong written and verbal communication skills for reporting assessment findings.

KEY DUTIES AND RESPONSIBILITIES

Essential Duties and responsibilities include the following. Other duties may be assigned. 

• Conducts cybersecurity assessments, audits, and inspections for DoD organizations and partners handling DoD information or connecting to the DoDIN.

• Evaluates systems and Defensive Cyberspace Operations using cyber threat emulation and performance-based testing.

• Adheres to policies and processes for each assessment type.

• Supports assessment development and execution to ensure security expertise is properly applied.

• Coordinates logistics, test plans, and scope with the SCA Team Lead.

• Performs vulnerability assessments, capture results using STIG Viewer or designated tools, and document findings in eMASS.

• Analyzes security gaps and provide mitigation recommendations.

• Validates cybersecurity controls, TTPs, STIGs, RMF controls, and compliance with DoD policies and guidelines. 

• Provides risk analysis and assessment results for authorization recommendations.

• Participates in daily assessment reviews, in-briefs, and out-briefs, sharing findings with the SCA-R.

EDUCATION AND EXPERIENCE

Bachelor's degree (IT-related field preferred) and a minimum of five (5) years of overall experience in cybersecurity or network security position  and three (3) years of experience in a Certification and Accreditation/A&A role.
 

PHYSICAL DEMANDS

Work is primarily performed in an office environment. Regularly required to sit. Regularly required use hands to finger, handle, or feel, reach with hands and arms to handle objects and operate tools, computer, and/or controls. Required to speak and hear. Occasionally required to stand, walk and stoop, kneel, crouch, or crawl. Must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, and ability to adjust focus.  Exposed to general office noise with computers printers and light traffic.

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job.  

EOE including Disability/Vet

The estimated pay range for this role is $70K to $80K, with the final offer contingent on location, skillset, and experience. 

CNI offers a comprehensive benefits package that includes:

• Medical

• Dental

• Vision

• 401(k)

• Family Planning/Fertility Assistance

• STD/LTD/Basic Life/AD&D

• Legal-Aid Program

• Employee Assistance Program (EAP)

• Paid Time Off (PTO) – (11) Federal Holidays

• Training and Development Opportunities

Your application submission will be considered for all potential employment opportunities with Chickasaw Nation Industries (CNI).