Cybersecurity Analyst - 25-009

Description

JOB TYPE: FULL-TIME

COMPETITIVE SALARY, COMPREHENSIVE BENEFITS AND A COMPANY THAT CARES!

AUSGAR Technologies, Inc., an EOE Minorities/Females/Disabled/Veterans employer, is an established Service-Disabled Veteran-Owned Small Business (SDVOSB) Department of Defense, government contractor with core competencies in Information Assurance, Cyber Security and Systems Engineering. With offices on both the East and West coasts, an inviting culture and above-standard benefits, opportunity abounds for the right individual!

Cybersecurity Analyst – 25-009 – Norfolk, Virginia

AUSGAR Technologies has an exciting opportunity for a Cybersecurity Analyst to join our team of smart and innovative technical team members working in Norfolk, Virginia.

Purpose:

Serve as an Accreditation Analyst and Experiment Support Planner to Navy Warfare Development Center (NWDC) and its missions, functions and tasks through contracted positions serving the function of the Cybersecurity support SME.

Job Description:  

The ideal candidate will play a critical role in supporting the Risk Management Framework (RMF) Assessment and Authorization (A&A) processes for the Navy Continuous Training Environment (NCTE). The Navy Qualified Validator (NQV) will be responsible for the technical implementation of the RMF and will conduct cybersecurity and risk assessments on NCTE networks, systems and applications to identify and mitigate technical and non-technical vulnerabilities.

Duties include, but are not limited to:

• Serve as a trusted agent and technical representative to the Security Control Assessor (SCA), conducting thorough technical evaluations of systems to assess compliance with assigned security controls. 
• Conduct security assessments and create RMF   documentation, including Security Assessment Plan (SAP), eMASS Risk Assessment, Security Assessment Reports (SARs), SAP Executive Summary and SAP Body of Evidence (BOE). 
• Provide accurate assessments and document security posture, capabilities and vulnerabilities.
• Lead the creation of SAPs and SARs and develop executive summaries to convey technical findings and risk assessments to senior leadership. 
• Perform detailed risk analysis, identify system vulnerabilities and provide comprehensive recommendations for risk mitigation.
• Verify, validate and document risk, perform security control assessments and document compliant and failed security controls in eMASS.
• Assess STIGs and SRGs.
• Ensure traceability of all vulnerabilities from raw assessment results to the Plan of Action and Milestones (POA&Ms).
• Support the continuous monitoring program, as necessary.

Cyber Specific Tasks (Primary):

• Track, monitor and provide assistance to Assessment and Authorization (A&A) efforts of technology providers selected for operational experiments.
• Assists installations team in developing plans to achieve required certifications and accreditations to support installation in advance of experiment participation.
• Analyzes general information assurance-related technical problems and provide technical support in solving these problems.
• Develop/review Interim Authority to Test (IATT) Plans for down-selected initiatives.
• Develop/review feasible Risk Management Framework (RMF) process with A&A POCs to meet planning, installation and execution milestones. Develop timeline and tracker for RMF A&A Package Development.
• Coordinate with NAVWAR Navy Authorizing Official (NAO), Security Control Assessor (SCA) Package Support Office to develop IATT in-hand dates and accreditation termination dates for down-selected initiatives.
• Conduct Assured Compliance Assessment Solution (ACAS) scanning and Security Content Automation Protocol (SCAP) Testing and manual Security Technical Implementation Guidance (STIG) testing on systems for A&A package development on down-selected initiatives.
• Enter/update POA&M and track action items for developing packages in Enterprise Mission Assurance Support Service (eMASS) and identify outstanding action items for Cyber POC’s

Requirements

The physical demands and work environment described here are representative of those that must be met by an employee to successfully perform the essential functions of the job. Reasonable accommodation may be made for individuals with disabilities to perform the essential functions.  

• Active Secret Clearance, with the ability to obtain a TS/SCI.
• Requires IAT/IAM Level II certification, i.e., Security+ CE.
• Bachelor's Degree in a technical field of study, such as Engineering, Physical Sciences, Math or Management Information Systems from an accredited college or university and five (5) plus years’ experience in Information Assurance operations, as well as two (2) years’ direct experience with RMF and related installation and accreditation processes.
• Must have Cybersecurity Analyst, ISSE or similar experience.
• Experience with eMASS, Navy RMF, ACAS/NESSUS and SCAP.
• Experience with compliance of current Navy IT, IA and ship/ashore policies.
• Experience with material solutions that are planned to be connected to a Navy network, such as applications, networks, servers or associated devices.
• Knowledge of DoD Cybersecurity policies and procedures.
• Knowledge of required IA certifications and accreditations associated with the A&A process.
• Knowledge of appropriate A&A documentation that needs to be completed prior to an experiment event, such as A&A documentation for equipment that is required to be installed on a naval vessel or aircraft.
• Knowledge and ability to identify cybersecurity architecture issues to ensure they meet Navy requirements, including reviewing RMF IATT artifacts.
• Prior experimentation planning or test and evaluation experience is desired. 
• Knowledge of military experimentation, analysis and assessment processes is desired.
• Some travel required up to 5%.

An essential qualification for this position is successfully obtaining a Secret security clearance issued by the Federal Government, which may require successful completion of a background check.

AUSGAR’s salary range is dependent upon a variety of factors, which include experience, skills, education, certifications and geographical location. Our salary range includes a base salary and excellent benefits package as part of our total compensation.

AUSGAR Technologies, Inc. is an equal employment opportunity and affirmative action employer and is committed to engaging in affirmative action to increase employment opportunities for females, minorities, protected veterans and individuals with disabilities.

If you are a qualified individual with a disability or a disabled veteran and need assistance in completing the application, you have the right to request reasonable accommodation. Please e-mail us at jobs@ausgar.com if you are unable or limited in your ability to use or access www.ausgar.com careers page as a result of your disability.