Cyber Risk Analyst

Company Description

The Red Gate Group, founded in 2006, is a Service-Disabled Veteran-Owned Company based in Chantilly, VA. As an SDVOSB, the Red Gate Group has established a reputation for delivering quality multi-tiered services in intelligence analysis, strategic planning, program management, policy development, operational design, and technology integration. RGG delivers high-quality, customer-centric solutions around the world—from the foxhole to the highest levels of Government. Our motto, "Making a Difference for Country and Client," reflects our deep commitment to national security and service excellence. As an employer of choice, we offer comprehensive benefits including flexible time off, 11 paid holidays, immediate 401(k) eligibility with a generous match, and full medical, dental, and vision coverage through Anthem. Our employees enjoy 100% company-paid life insurance and disability benefits, along with professional development assistance for degrees and certifications. We foster a culture of growth and work-life balance, backed by our commitment to supporting both our clients' missions and our employees' success. Join our team and be part of an organization that values both service excellence and employee wellbeing.

Job Description

The Red Gate Group is seeking a skilled Cyber Risk Analyst to support the Defense Threat Reduction Agency (DTRA) in Reston, VA. In this role, you will use your experience to work with DoD programs to discover their cyber risks, understand policies, and develop a mitigation plan. You’ll get technical, environmental, and personnel details from engineers and SMEs to assess the entire threat landscape. Then, you’ll help your team guide your client through a plan of action with presentations, white papers, and milestones. You’ll work on translating security concepts for your client so they can make the best decisions to secure their mission critical networks and systems. This is your opportunity to act as an information security subject matter expert while broadening your skills in cybersecurity, security and network tools, systems engineering, and data science.

Qualifications

• 5+ years of experience working in a professional IT environment 

• 3+ years of experience with cybersecurity 

• 3+ years of experience with Assessment and Authorization (A&A) in support of DoD and IC programs, including package development, artifact generation, and authority to operate (ATO) 

• Experience with security hardening of Windows and Linux operating systems and security tools, such as ACAS, SCAP, STIG/SRGs, SCC, eMASS/Xacta, ESS, Prisma Cloud, Kubernetes, Rancher, and Docker 

• Experience generating and maintaining System Security Plans (SSP), Implementation Plans, Privacy Impact Assessments, Security Assessment Plans (SAP), Risk Assessments, Plan of Action and Milestones (POA&M), and other A&A documentation 

• Knowledge of Risk Management Framework (RMF) and the A&A activities needed to obtain and maintain an ATO, including National Institute of Standards and Technology (NIST) and Committee on National Security Systems Instruction (CNSSI), including NIST SP 800-60, NIST SP 800-53, and CNSSI 1253 

• Security+ DoD 8570 Level II 

• Active TS/SCI Clearance

Desired Qualifications:

• Experience with DoD or IC cybersecurity projects or programs 

• Experience with DevSecOps, Path-to-Production, and CI/CD 

• Experience with Cloud Authorization and Cloud Migration 

• Experience with administering Red Hat Enterprise Linux or Windows Server 2012 or higher 

• Ability to provide subject matter expertise to system engineering documents, including technical requirements documents, interface control documents, and system specifications 

• Ability to analyze and communicate complex technical challenges to both technical and non-technical clients and stakeholders 

• Ability to communicate and integrate between multiple customer stakeholders 

• Bachelor's degree 

Additional Information

The Red Gate Group, Ltd. is an Equal Opportunity/Affirmative Action Employer. The Red Gate Group, Ltd. considers applicants without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, or membership in any other group protected by federal, state, or local law. Know Your Rights