Cybersecurity Analyst (Req # 1029PA)

$76,000 - $130,000/Yr

JGMS Government Services - West Mifflin, PA

posted 16 days ago

Full-time - Mid Level
West Mifflin, PA

About the position

The Cybersecurity Analyst at JGMS Government Services is responsible for executing all aspects of the National Institute of Standards and Technology (NIST) directives to support the Risk Management Framework (RMF). This role involves assisting information system owners in developing System Security Plans (SSPs) and Security Assessment Reports (SARs) using the RSA Archer application, as well as creating Plans of Action and Milestones (POA&Ms) and Risk Based Decisions (RBDs) for deficiencies identified during the information system authorization process.

Responsibilities

  • Execute NIST directives to support the Risk Management Framework (RMF).
  • Assist information system owners in developing System Security Plans (SSPs) and Security Assessment Reports (SARs).
  • Utilize the RSA Archer application for information system authorization support.
  • Develop Plans of Action and Milestones (POA&Ms) for identified deficiencies.
  • Create Risk Based Decisions (RBDs) during the information system authorization process.

Requirements

  • Active DOE Q Clearance.
  • At least four years of experience in roles such as security control validator, security control assessor, Information System Security Officer (ISSO), or Information System Security Manager (ISSM).
  • At least two years of experience in developing information system security authorization packages in accordance with Risk Management Framework (NIST 800-37, 800-53, 800-53a).
  • At least two years of experience with Federal Risk and Authorization Management Program (FedRAMP).
  • Security+ Certification.

Nice-to-haves

  • Experience with the RSA Archer application.
  • At least two years of experience on IT security project teams.
  • At least one year of experience managing IT projects.
  • Knowledge of IT infrastructure and services including Data Centers, servers, and cloud services.
  • Familiarity with NIST Special Publications and Security Technical Implementation Guides (STIGs).
  • Knowledge of infrastructure security and vulnerability management tools.
  • Previous experience authorizing information systems in a classified DoE or DoD environment.
  • Familiarity with NIST 800-171.
  • CISSP certification.
  • CCSK certification.

Benefits

  • 100% company paid medical insurance premiums for employees.
  • Dental and vision insurance.
  • 401k plan with company match.
  • 24 hours of paid community service per year.
  • Up to 4 weeks paid time off per year.
  • 10 paid floating holidays.
  • Life insurance, short- and long-term disability coverage.
  • Employee Assistance Program (EAP).
  • Professional development opportunities.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service