Cybersecurity Analyst

$110,000 - $150,000/Yr

Gem Technology International, Corp. - West Mifflin, PA

posted 12 days ago

Full-time - Mid Level
West Mifflin, PA
Professional, Scientific, and Technical Services

About the position

The Cybersecurity Analyst at GEM Technology, Inc. is responsible for executing all aspects of the National Institute of Standards and Technology (NIST) directives to support the Risk Management Framework (RMF). This role involves assisting information system owners in developing System Security Plans (SSPs) and Security Assessment Reports (SARs) using the RSA Archer application, as well as creating Plans of Action and Milestones (POA&Ms) and Risk Based Decisions (RBDs) for deficiencies identified during the information system authorization process. The position requires a strong background in cybersecurity, risk management, and compliance with federal standards.

Responsibilities

  • Assist information system owners with the development of System Security Plans (SSPs) and Security Assessment Reports (SARs).
  • Support the execution of NIST directives in accordance with the Risk Management Framework (RMF).
  • Develop Plans of Action and Milestones (POA&Ms) and Risk Based Decisions (RBDs) for deficiencies found during the information system authorization process.
  • Utilize the RSA Archer application on the Naval Nuclear Propulsion Network (NNPP Net) to support information system authorization.
  • Collaborate with IT security project teams to ensure compliance with security policies and standards.

Requirements

  • At least four years of experience in roles such as security control validator, security control assessor, Information System Security Officer (ISSO), or Information System Security Manager (ISSM).
  • At least two years of experience in developing information system security authorization packages in accordance with RMF (NIST 800-37, 800-53, 800-53a).
  • At least two years of experience with Federal Risk and Authorization Management Program (FedRAMP).
  • CompTIA Security+ certification is required.

Nice-to-haves

  • Experience with the RSA Archer application.
  • At least two years of experience working on IT security project teams.
  • Knowledge of IT infrastructure and services including Data Centers, physical and virtual servers, and cloud services.
  • Familiarity with NIST Special Publications and Security Technical Implementation Guides (STIGs).
  • Certified Information Systems Security Professional (CISSP) certification.

Benefits

  • Health insurance
  • Dental insurance
  • Vision insurance
  • Life insurance
  • Paid time off

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service