Sr. Cybersecurity Assurance Analyst

Join our dynamic team at the forefront of safeguarding critical assets within the Defense Industrial Base (DIB). As a Senior Cybersecurity Assurance Analyst, you will play a pivotal role in evaluating and enhancing the cybersecurity posture of our organization. This position demands a strong understanding of DIB compliance requirements and hands-on experience in conducting thorough gap assessments. You will be instrumental in ensuring our adherence to key frameworks, including DFARS 252.204-7012, CMMC 2.0, and NIST SP 800-171. Your expertise will be crucial in guiding system owners toward audit readiness and providing essential support during C3PAO CMMC audits. This is an excellent opportunity to make a significant impact on the security and integrity of our operations.

The ISR (Intelligence, Surveillance & Reconnaissance), Aviation, and Security (IAS) business area is a leader in ISR and aviation, it is a leading prime manned and unmanned aircraft systems integrator for innovative, high-performance ISR and aviation systems. Its end-to-end Command, Control, Computers, Communications and Intelligence, Surveillance & Reconnaissance (C4ISR) capabilities encompass design, integration, test, certification, ground/flight training and complete logistics support. IAS tailors solutions to customer cost, performance, and schedule requirements and designs to consistently exceed expectations – with an unrivaled record of on time and on (or under) budget deliveries.

Responsibilities:

• Conduct internal audits and assessments against DFARS 252.204-7012, CMMC 2.0, and NIST SP 800-171 controls and requirements.
• Evaluate the design, implementation, and effectiveness of internal security controls, ensuring they align with regulatory requirements and organizational security standards.
• Provide expert guidance and support to system owners on preparing for audits, including remediation strategies and best practices for compliance.
• Act as a key point of contact and provide direct support during C3PAO CMMC audits, facilitating the audit process and ensuring successful outcomes.
• Develop, document, and maintain cybersecurity policies, procedures, and standards to support ongoing compliance efforts.
• Analyze complex cybersecurity requirements from DFARS, CMMC, NIST, and other relevant standards, and translate them into actionable implementation plans.
• Collaborate closely with cross-functional teams, including IT, engineering, and program management, to address cybersecurity challenges and implement effective security solutions.
• Prepare detailed and accurate reports on assessment findings, compliance status, and remediation progress for management review.
• Stay abreast of the evolving cybersecurity landscape, including emerging threats, technologies, and regulatory changes, and provide recommendations for proactive security measures.

Qualifications You Must Have:

• Bachelor's degree in a related discipline or 10 or more years of relevant experience.
• A higher level degree may substitute for experience.
• Related experience may be considered in lieu of required education.
•  Demonstrated understanding and practical experience with FISMA, CIS 20, NIST SP 800-171, DFARS Clause 252.204-7012, or similar requirements.
• Proven experience in conducting gap assessments and security control evaluations.
• Strong understanding of cybersecurity principles, practices, and technologies.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Strong communication and interpersonal skills, with the ability to effectively interact with technical and non-technical stakeholders.
• Proficiency with MSOffice Applications.
• Proficiency with data sampling and attribute analysis.
• Proficiency with process flow documentation.
• Ability to obtain and maintain a U.S. Security Clearance.

Qualifications We Prefer:

• Prior experience working within the Defense Industrial Base (DIB).
• Familiarity with security tools such as GRC platforms, vulnerability scanners, and SIEM.
• Familiarity with Information Technology, Audit, Cybersecurity, or Project Management as demonstrated with work toward any of the following or similar certifications:
• IT: ITIL, CompTIA A+, Network+, Azure Fundamentals, M365 Fundamentals,
• Audit: Certified Internal Auditor, Certified Information System Auditor,
• Cybersecurity: Certified Information Security Manager, Security+,
• Project Management:  CAPM, PMP, Project+
• Familiarity with risk management frameworks (e.g., NIST RMF).
• Experience developing or managing SSPs and POA&Ms.
• Ability to read and interpret security and technical documentation.
• Proven track record of maintaining the confidentiality of high-sensitivity projects and data.

SNC offers annual incentive pay based upon performance that is commensurate with the level of the position.

SNC offers a generous benefit package, including medical, dental, and vision plans, 401(k) with 150% match up to 6%, life insurance, 3 weeks paid time off, tuition reimbursement, and more.

IMPORTANT NOTICE:

This position requires the ability to obtain and maintain a Secret U.S. Security Clearance. U.S. Citizenship status is required as this position needs an active U.S. Security Clearance for employment. Non-U.S. citizens may not be eligible to obtain a security clearance. The Department of Defense Consolidated Adjudications Facility (DoD CAF), a federal government agency, handles the adjudicative aspects of the security clearance eligibility process for industry applicants. Adjudicative factors which affect the outcome of the eligibility determination include, but are not limited to, allegiance to the U.S., foreign influence, foreign preference, criminal conduct, security violations and illegal drug use.

Learn more about the background check process for Security Clearances.

SNC is a global leader in aerospace and national security committed to moving the American Dream forward. We’re known and respected for our mission and execution focus, agility, and disruptive and rapid innovation. We provide leading edge technologies and transformative solutions that support our nation’s most critical security needs. If you are mission-focused, thrive in collaborative environments, and want to make our country stronger with state-of-the-art technologies that safeguard freedom, join our team!

SNC is an Equal Opportunity Employer committed to an environment free of discrimination.  Employment decisions are made based on merit without regard to race, color, age, religion, sex, national origin, disability, status as a protected veteran or other characteristics protected by law.