Lead Cyber Incident Security Analyst with a TS Security Clearance
Work onsite 4-5 days a week at Ft Belvoir, VA, with a fantastic team
This is a full-time permanent W-2 position with incredible benefits, learning, and growth.
DoD Top-Secret clearance is required.
Competitive salary up to $170,000
This international stable and growing government and defense contractor seeks a highly motivated and experienced Lead Cyber Incident Security Analyst to support a Defense Threat Reduction Agency (DTRA) mission in Fort Belvoir, VA. This position will support the Defense Stockpile Management Systems (DSMS), which includes: Defense Integration and Management of Nuclear Data Services (DIAMONDS), Joint Application Design Environment (JADE), Nuclear Inventory Management and Cataloging System (NIMACS), Government Acceptance Testing (GAT), and DIAMONDS Accountability Training System (DATS).
As the Lead Cybersecurity Analyst for the team, you will provide security engineering and management planning, design, and implementation using standard Government processes and applications like ACAS HBSS and RMF, while following DISA STIG Requirements and DoD IA Standards.
- Providing Security Engineering to include all design and development necessary to ensure systems are fully compliant with applicable security requirements to meet Assessment and Authorization (A&A) standards
- Developing and implementing a capability to perform audit logging of security-relevant events, including those occurring in the application(s), operating system(s), Database Management System(s) (DBMS), and services to log audit records
- Exercising Nessus vulnerability and compliance scanning tools to maintain vulnerability management service
- Updating Linux servers and software IAW DISA releases
- Meeting DOD requirements for vulnerability mitigation timelines and use of POA&M for prioritization
- Maintaining an active program to monitor, evaluate and install all Information
- Applying Assurance Vulnerability Alert (IAVA) updates to DSMS systems with no or minimal disruption to systems during the workweek
- Providing security management to include access control, encryption/decryption, key management, risk analysis, management of security assets, and assessment and prevention of security threats
- Providing data and system integrity and the physical security of the network
- Authoring and maintaining the System Security Plan (SSP), hardware and software baseline, system/network diagrams, maintaining the POA&M and other RMF requirements to obtain and maintain security accreditation from the Accrediting Authority and approval to connect from other sources
- Preparing, completing, updating, and maintaining site A&A packages
- Coordinating with the Approving Officials (AOs) to ensure system accreditation remains active
- Maintaining awareness of current and future trends of National Security Agency (NSA), DoD, DOE, Air Force, and Navy security requirements
- Assisting Government representatives in answering requests for information or coordinating with site security organizations
- Develop a system-level Continuous Monitoring (CM) strategy (maintaining ongoing awareness of information security, patches, vulnerabilities, threats, policies, standards, and guidelines to support system management decisions during the system’s lifecycle) and apply the CM guidance described in NIST SP 800-137
- Validating system applications, operating system(s), database management system(s), and components under the NIAP Common Criteria Evaluation and Validation
- Administering and maintaining HBSS servers and clients to include operating systems, patches, STIG compliance, resolving EPO server issues, and managing authorized data transfer officers
- Providing configuration management of all systems, ensuring a mature process systematically shepherds new requirements through appropriate reviews and boards prior to fielding and upholding configuration management processes, making and implementing recommendations for improvement to realize a robust and secure environment
- Engineering, implementing, and effectively administering Security Information and Event Management (SIEM) to ensure high situational awareness of pertinent events and risks across the environment
- Developing, implementing, maintaining, and decommissioning new cybersecurity tools, applications, and capabilities identified due to mission requirements and following mandated government guidance, policies, and directives
- 8+ years of Cyber Security Analyst experience.
- Active DoD Top-Secret Clearance
- DoD 8570 IAM Level III Cert (e.g., CISSP or CASP)
- BA/BS or equivalent experience instead of a degree
- Experience with QRadar SIEM Tool
About the Firm:
- We believe our people should work independently, but we also value teamwork.
- We offer performance appraisals regularly, so you can look forward to advancing your career.
- We offer a community of virtue-centered co-workers and clients.
- We offer a “NO-Jerk zone” where kindness, respect, and camaraderie are key
- We provide ongoing learning and development opportunities to foster continuous growth.
- You will be part of a virtue-centered team that values their work and teammates.
The firm offers extensive Medical, Dental, Vision & Prescription Insurance, life insurance, STD/LTD, Accidental Death and Dismemberment & Worker’s Compensation. A 401(k) Retirement Plan, HSA, PTO is 120 hours (15 days) per year plus nine company holidays.