Cyber Information Assurance Analyst

APPLICATION INSTRUCTIONS:

• CURRENT PENN STATE EMPLOYEE (faculty, staff, technical service, or student), please login to Workday to complete the internal application process. Please do not apply here, apply internally through Workday.

• CURRENT PENN STATE STUDENT (not employed previously at the university) and seeking employment with Penn State, please login to Workday to complete the student application process. Please do not apply here, apply internally through Workday.

• If you are NOT a current employee or student, please click “Apply” and complete the application process for external applicants.

JOB DESCRIPTION AND POSITION REQUIREMENTS:

The Cyber, Modeling and Simulation Division in the Communications, Information, and Navigation Office (CINO) within the Applied Research Laboratory (ARL) at Penn State is seeking a Cyber Information Assurance Analyst to join our team in our Reston, VA office.

ARL’s purpose is to research and develop innovative solutions to challenging scientific, engineering, and technology problems in support of the Navy, the Department of Defense (DoD), and the Intel Community (IC). CMS Division leverages M&S expertise and other resources to deliver prototypes, demonstrations, and accelerated transitions of emerging research and technologies vital to national security needs, in addition to performing research, development, testing, and evaluations facilitating innovation in practice and development of critical, in-demand capabilities.

ARL is an authorized DoD SkillBridge partner and welcomes all transitioning military members to apply

You will:

• Conduct risk assessments and provide recommendations for system, network, and application design, implementation, and operation of departmental systems
• Conduct vulnerability assessments of departmental systems and networks to identify deviations from acceptable configurations or policies
• Meet with stakeholders regularly to assess needs and requirements at a departmental level
• Conduct vulnerability assessments of departmental systems and networks to identify deviations from acceptable configurations or policies
• Monitor the corrective actions of departmental system audits; draft documentation of Plan of Action and Milestones (POAM) for review
• Obtain certification and accreditation for departmental systems through the creation of process documentation support; may assist with unit or University wide process documentation
• Participate in the establishment of program control processes to ensure risk mitigation
• Perform periodic audits of departmental systems under general supervision
• Participate in the implementation of required policies, procedures, and configurations; make recommendations for improvements
• Participate in the preparation of requirements and procedures for forensic preservation
• Research and stay current on industry best practices
• Travel 50% time to surrounding area.

This position can be filled at multiple levels depending on the successful candidate’s education, and experience. Minimally requires an Associate’s degree. A Bachelors' degree in Information Technology, Cybersecurity or related field is preferred.

Additional responsibilities for higher level position includes:

• Lead risk assessments and provide recommendations for system, network, and application design, implementation, and operation of unit-wide systems
• Lead vulnerability assessments of unit-wide systems and networks to identify deviations from acceptable configurations or policies; conduct assessments of non-standard systems
• Monitor the corrective actions of unit-wide system audits; develop and manage Plan of Action and Milestones (POAM)
• Meet with stakeholders regularly to assess needs and requirements at a unit-wide level
• Obtain certification and accreditation through the creation of process documentation; develop unit or University-wide process documentation
• Establish program control processes to ensure risk mitigation
• Perform periodic audits of systems
• Implement required policies, procedures, and configurations; make recommendations for improvements
• Develop requirements and procedures for forensic preservation
• Assist in the development of policy, process, and standards of Cyber Incident Response Team (CIRT) program and participate in CIRT activities as needed
• Assist in the development and delivery of information security training material
• May interface with external entities including law enforcement and intelligence/government agencies
• May provide guidance to lower level Analysts

Required skills/knowlege include:

• Knowledge of Windows and Linux OS
• Understand CI/CD pipeline
• Experience reviewing hardware and software vulnerabilities
• Working knowledge of DoD Risk Management Framework (RMF)
• Understand and enforce policies and procedures within classified space
• Ability to effectively communicate and work in team environment
• Experience with Assured Compliance Assessment Solution (ACAS) and Security Technical Implementation Guide (STIG).
• Ability to multitask multiple programs at one time.
• Active Top Secret /SCI Clearance
• Security+, CAP, GSEC or equivalent

Preferred Skills/Knowledge Include:

• Experience developing and maintaining Security Assessment Plans, Risk Assessment Report, and Plans of Actions and Milestones (POA&Ms)
• Experience with containerized environments
• Understanding of Gitlab and Ansible
• Working knowledge of JIRA and confluence
• Experience with vulnerability scanning tools (ACAS, OpenSCAP, Trivy, Grype, etc.)

ARL at Penn State is an integral part of one of the leading research universities in the nation and serves as a University center of excellence in defense science, systems, and technologies with a focus in naval missions and related areas.

You will be subject to a government security investigation and will be required to obtain and maintain a TS/SCI clearance. Applicants with an active TS/SCI will be given preference.

You must be a U.S. citizen to apply. Employment with ARL will require successful completion of a pre-employment drug screen.

ARL is committed to diversity, equity, and inclusion; we believe this is central to our success as a Department of Defense designated University Affiliated Research Center (UARC). We are at our best when we draw on the talents of all parts of society, and our greatest accomplishments are achieved when diverse perspectives are part of our workforce.

FOR FURTHER INFORMATION on ARL, visit our web site at www.arl.psu.edu.

**The proposed salary range may be impacted by geographic differential.**

The salary range for this position, including all possible grades is:

$56,200.00 - $102,300.00

Salary Structure - additional information on Penn State's job and salary structure. 

CAMPUS SECURITY CRIME STATISTICS:

Pursuant to the Jeanne Clery Disclosure of Campus Security Policy and Campus Crime Statistics Act and the Pennsylvania Act of 1988, Penn State publishes a combined Annual Security and Annual Fire Safety Report (ASR). The ASR includes crime statistics and institutional policies concerning campus security, such as those concerning alcohol and drug use, crime prevention, the reporting of crimes, sexual assault, and other matters. The ASR is available for review here.

Employment with the University will require successful completion of background check(s) in accordance with University policies. 

EEO IS THE LAW

Penn State is an equal opportunity, affirmative action employer, and is committed to providing employment opportunities to all qualified applicants without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. If you are unable to use our online application process due to an impairment or disability, please contact 814-865-1473.

Federal Contractors Labor Law Poster

PA State Labor Law Poster

Affirmative Action

Penn State Policies

Copyright Information

Hotlines

Reston, VA