Cybersecurity (CS) Analyst /Specialist

Description

Leading with our people, Digital Consultants’ mission is to deliver the highest level of professional solutions while being a trusted partner and advisor to our customers. With a culture of practicality, opportunity, and creativity, we remain dedicated to being honest, trustworthy, respectful, and ethical in everything we do. We are a certified SBA 8(a) small, disadvantaged business that supports multiple IT customers within the Federal, civilian, and private sectors. Digital Consultants also offers our employees growth opportunities, competitive wages, and a full benefits package. Our founding principles, Fairness and Common Sense, make working here more than a job; it’s the Digital family.

Digital Consultants is seeking a Cybersecurity Analyst to support the Norfolk Naval Shipyard CIO department (Code 109). The associated network capabilities are currently supporting activities that directly contribute to Navy Fleet readiness. Some of the functions supported by the network include automated tools that enhance the warfighter’s ability to execute their mission; support to mission areas such as Fleet logistics, maintenance, ship industrial and maintenance production activities, engineering, supply, legal, readiness, plans and policy, program planning and management, and personnel; hurricane disaster preparedness and response; world-wide support of bases, the war-fighter, and stations; readiness reporting and support; and securing the Homeland. NNSY CIO is responsible for the installation, administration, development, management, and/or maintenance of all networks and systems installed at NNSY and telecommunication services. The CIO provides IT approval for IT purchases made for and by NNSY. This department ensures that all systems and networks operate in a secure manner by implementing and managing an Information Assurance program that meets all Navy and DoD requirements.

Duties to include:

Network CS and Continuity Planning:

• Generate an assessment framework and methods for continued improvements of IA documentation, policy, and procedures and IA requirements for defending Naval Networking Environment (NNE) architectures.
• Interpret IA policy requirements; investigate IA capabilities for technology insertion; and evaluate insider threat and mitigation processes.
• Analyze existing and emerging certification and accreditation practices including national-level A&A transformation initiatives and recommend a methodology to optimize IA Management and standardize IA baseline certifications across the domain.

Network Security Support:

• Provide oversight and support for the development, configuration, management, and administration of IT network security hardware and software at Norfolk Naval Shipyard and its satellite locations.
• Perform network enhancement, system design, security, testing, implementation, and training for system administrators.
• Assist in developing a rapid incident response system to address security attacks and perform risk assessments.

Network Defense and Monitoring:

• Implement and manage a wide range of network security systems, including firewalls, intrusion prevention systems (IPS), vulnerability management systems (VMS), security information event management (SIEM), and intrusion detection systems (IDS).
• Support firewall administration, including configuring, monitoring, and troubleshooting network traffic.

Security Assessments and Authorization:

• Support the assessment and authorization (A&A) process, including reviewing existing and emerging certification practices and recommending methodologies to optimize IA management.
• Engage stakeholders to manage and coordinate necessary communications for A&A processes and provide support for post-inspection data and information analysis.

Incident Response and Security Documentation:

• Analyze and diagnose complex security issues and make recommendations for corrective actions.
• Generate assessment frameworks for improving IA documentation, policies, and procedures.
• Interpret IA policy requirements, investigate IA capabilities for technology insertion, and evaluate insider threat mitigation processes.

Network Security Appliance Management:

• Provide design and architecture support for network additions and modifications, ensuring security and integrity.
• Manage secure and non-secure VPN access and gateways and handle the review and storage of security logs.

Continuity Planning and Cybersecurity Compliance:

• Support continuity planning to ensure ongoing operations of NNSY's Command Information Office (CIO).
• Contribute to the production and integration of CS-compliant technologies and functionalities in a network-centric environment.

Requirements

 Clearance: Secret

Education:

• Bachelor’s degree in an IT-related discipline AND at least four (4) years of experience as described above; OR nine (9) years of relevant experience as described above.

Certifications:

• Information Assurance Workforce (IAWF) DoD 8570 IAM Level III qualifications.
• Qualified and registered as a Navy Validator IAW DoN Memorandum 5239, Ser 5.0/1274 dated 18 Mar 10, Subj: QUALIFICATION STANDARDS AND REGISTRATION PROCEDURES FOR NAVY VALIDATORS.

Experience:

• The Cybersecurity Analyst shall have a minimum of four (4) years of experience in CS/A&A analysis support in IA controls analysis, conducting risk assessments, risk mitigation analysis, or developing contingency plans. Examples of relevant experience may include the following:
  • CS / INFOSEC concepts and requirements.
  • DOD A&A process and standards.
  • System / network vulnerability analysis.
  • Risk assessment and risk mitigation analysis.
  • Security Test and Evaluation (ST&E).
  • Contingency planning.
  • Firewall Policy.
  • Ports & Protocols.
  • Maintaining all day-to-day VRAM activities.
  • Entering the system baseline configuration in VRAM by uploading vulnerability scan of a representative baseline system.
  • Expert and Mastery levels with institutional knowledge and a minimum of 5 years’ experience, on the mission-critical procedures, systems, and processes, as they pertain to Information Technology and Cyber Security requirements.
  • Fully qualified in accordance with DoD 8570.01M.
  • Experience in certifying and accrediting DON information systems and networks, as well as Platform IT.
  • Expert knowledge of and experience with CS requirements as defined by Public Laws, National, DoD, and DON guidance [e.g., Federal Information Security Management Act (FISMA), DoDD 8500.1, DoDI 8500.2, DoDI 8510.01 (Risk Management Framework (RMF) for DoD Information Technology (IT)), DODINST 8570/01M INFORMATION ASSURANCE WORKFORCE IMPROVEMENT PROGRAM. SECNAVINST 5239.3, OPNAVINST 5239.1, NIST Special Publications Series 800, etc.
  • Expert knowledge and experience with the requirements outlined in OPNAVINST N9210.3 Safeguarding Naval Nuclear Propulsion Information

Digital Consultants, an inclusive and welcoming company, is fully committed to hiring and retaining a diverse workforce without regard to race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), genetic information, national origin, age (40 or older), disability, Veterans status or any other protected characteristic. 

We provide reasonable accommodations to individuals who need assistance during any part of the employment process. If you need assistance navigating Digital Consultants job openings or applying for a position, please send an email to recruiting@digitalconsultants.org or call 571-306-3444. Please provide your contact information and let us know how we can assist you.