Cybersecurity Analyst
PeopleTec - Huntsville, AL
posted 5 months ago
About the position
PeopleTec is currently seeking a Cybersecurity Analyst to support our Huntsville, AL location. This position is ideal for a motivated self-starter who is interested in joining an award-winning company and working with cutting-edge technologies in the defense of the United States. The selected candidate will be a member of our dynamic Huntsville team and will work on essential activities to manage and assess the effectiveness of information security and privacy programs critical to the United States Army. Our team supports the cybersecurity of networks by analyzing, developing, and assessing processes for risk management to help secure information systems (computers and networks). Our PeopleTec employee-owners are key members of a cybersecurity team that integrates information security requirements, privacy needs, and risk management activities throughout the development life cycle of US government systems. We assist in defending key networks through our understanding of process control mechanisms for obtaining authorization decisions to support cybersecurity management as well as developing technical security solutions for software and classified Department of Defense information systems. The ideal candidate will have expert knowledge of the Enterprise Mission Assurance Support Service (eMASS) application and process, will have successfully deployed software products to the Secret Internet Protocol Router Network (SIPRNET), Closed-Restricted Networks, or Cloud connected information systems. The ideal candidate will possess excellent verbal and written communication skills, and thrive in a team environment. The selected candidate will become a member of our high-powered Huntsville team, supporting a comprehensive, fully integrated cybersecurity management program that develops the Risk Management Framework (RMF) for Department of Defense Information Technology and DoD Assess and Authorize (A&A) Package Reports.
Responsibilities
- Participation in the planning, development, implementation, and documentation of technical security solutions for software and information systems throughout the product development lifecycle
- Conducting technical evaluations of information system requirements, focusing on information security aspects and authorization requirements
- Developing, updating, and/or reviewing RMF documentation to include Security Plans, Implementation Plans, Plans of Action and Milestones (POA&Ms), and Risk Assessment Reports
- Assisting in the update of system artifacts for the RMF
- Using eMASS to create packages for accreditation
- Performing and analyzing results of Assured Compliance Assessment Solution (ACAS) scans to identify weaknesses and develop operational plans to remediate or mitigate weaknesses as they are discovered
- Updating ACAS and Security Technical Implementation Guide (STIG) scans and maintaining RMF documentation and artifacts
- Validating that technical security controls are in place for operating systems, applications, and network appliances and recommending enhancements
Requirements
- Expert knowledge of the Enterprise Mission Assurance Support Service (eMASS) application and process
- Experience deploying software products to the Secret Internet Protocol Router Network (SIPRNET), Closed-Restricted Networks, or Cloud connected information systems
- Excellent verbal and written communication skills
- Ability to thrive in a team environment
