Cybersecurity Technical Auditor

Responsibilities

Cybersecurity Technical 

Location:  Onsite in Kansas City, Missouri

 

Overview: 

We are seeking a Cybersecurity Analyst to do the following:

Support US Marine Corps (USMC) enterprise-level hybrid cloud data center operations

Enable USMC world-wide customers to execute critical missions

 

What you will do:

As a Cybersecurity Analyst, you will work with a team responsible for all aspects of cybersecurity support to the hybrid-cloud enterprise hosting environment.  You will conduct vulnerability analysis and self- assessment technical analysis, monitor and report compliance status, manage and maintain the accreditation packages and support plan of action and milestone (POA&M) for known security vulnerabilities.  In addition you will support ATO package sustainment for the datacenter.  Finally, you will participate in the continuous monitoring program supporting datacenter operations.   You will support 2 ISSM and 2 ISSO.

 

Responsibilities include:

• Providing technical and authorization and accreditation support
• Conducting vulnerability management assessments using ACAS (Tenable Nessus) and other tools including mitigation development and POA&M and documentation support
• Coordinating and collaborating with operations teams to identify solutions for vulnerability mitigation and preparing cybersecurity documentation to obtain support and approval to operate
• Preparing systems for review and independent verification and validation (self-assessments)
• Developing POA&M for identified vulnerabilities and developing remediation, mitigation and criticality downgrade strategies
• Supporting accreditation activities for installed and in-deployment infrastructure as well as requirements in development and engineering change proposal/pipeline processes such as developing supporting documentation and completing cybersecurity compliance requirements
• Coordinating with independent verification and validation team and program office ISSM cybersecurity support to enable overall cybersecurity program activities
• Developing, maintaining, editing, authoring, and supporting accreditation package requirements including use of USMC's accreditation tool - MCCAST
• Developing scripting and automation and other supporting infrastructure for continuous monitoring activities

Qualifications

 

Required Experience/Education:  

 

BS 8+years, MS 6+years, PhD 3+years OR HS diploma and 12+ years of experience.

 

US SECRET Clearance, IAT II Certification required

 

• Demonstrated understanding and application of RMF And DISA STIG/Security framework implementation, experience with cloud implementation desired
• Expert experience conducting Tenable ACAS vulnerability management and reporting using Security Center, Nessus, PVS), experience with IAVM/IAVA management and reporting desired
• Experience using a certification and accreditation tool/GRC -- MCCAST (built on RSA Archer preferred), eMASS alternative
• Demonstrated understanding of DOD cybersecurity infrastructure tools including PKI, Data encryption, McAfee HBSS/ePO, DOD IA Tookit
• Strong technical foundation with system administration skills and experience to support independent assessments of cybersecurity risk and mitigation measures of enterprise data center systems including Virtualization, networking (CISCO, Palo Alto), Storage (SAN, NAS), Windows, Linux, Oracle and SQL database, SharePoint solutions
• Experiencing operating within an Enterprise ITSM solution and queue operations (BMC Remedy  preferred)
• Experience with the configuration of datacenter monitoring and management solutions
• Fundamental understanding of ITSM/ITIL processes (ITIL training or certification desired)
• Experience operating with SAFe/Agile Framework and as part of matrixed scrum teams

Desired:  ACAS, MDE and RMF certification 

Peraton Overview

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.

Target Salary Range

$80,000 - $128,000. This represents the typical salary range for this position based on experience and other factors.

EEO

EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.