Resource Management Concepts - Charleston, SC
posted 3 months ago
Resource Management Concepts, Inc. (RMC) is seeking a dedicated Cybersecurity Analyst to join our team in Charleston, South Carolina. This position is integral to supporting our customer at the Naval Information Warfare Center Atlantic (NIWC LANT). The Cybersecurity Analyst will play a crucial role in the technical implementation of the Risk Management Framework (RMF) Assessment and Authorization (A&A) services. This involves conducting comprehensive cybersecurity and risk assessments on Platform Information Technology (PIT) and Industrial Control Systems to identify and mitigate both technical and non-technical vulnerabilities. The responsibilities of the Cybersecurity Analyst include the development of RMF packages using the eMASS tool, where they will provide inputs and maintain these packages effectively. The role also requires collaboration with engineering teams to remediate existing vulnerabilities or to develop effective mitigations that minimize risks. Compliance with Department of Defense (DoD), Department of the Navy (DON), Committee on National Security Systems (CNSS), and National Institute of Standards and Technology (NIST) policies and requirements is essential. The analyst will also participate in ad hoc cybersecurity data calls to support critical assessments and will conduct traditional security compliance evaluation activities on shipboard platforms. Additionally, the Cybersecurity Analyst will be involved in network mapping and vulnerability scanning, utilizing tools such as ACAS and Nessus, and will be familiar with Security Technical Implementation Guides (STIGs) and Security Requirement Guides (SRGs). The role requires the creation of functional requirements documents and a strong understanding of general networking concepts, including TCP/IP and OSPF. This position is ideal for individuals with a solid background in software or enterprise information technology, particularly those with scripting experience in VBA for automation and efficiency in cybersecurity tasks.