Cybersecurity Systems Analyst - Intermediate

Jacobs Engineering Group - Tampa, FL

posted 5 months ago

Full-time - Mid Level
Tampa, FL
Professional, Scientific, and Technical Services

About the position

Your Impact: Challenging Today. Reinventing Tomorrow. We're invested in you and your success. Everything we do is more than just a project. It's our challenge as human beings, too. That's why we bring a thoughtful and collaborative approach to every one of our partnerships. At Jacobs, we challenge the status quo and redefine how to solve the world's greatest challenges, transforming big ideas into intelligent solutions for a more connected, sustainable world. Design your career with a company that inspires and empowers you to deliver your best work so you can evolve, grow and succeed - today and into tomorrow. As a Cybersecurity Systems Analyst, you will perform assessment and authorization coordination, advising and assisting the customer with Risk Management Framework (RMF) and developing a Plan of Action and Milestones for resolving network deficiencies in accordance with DODI 8510.01 and ICD 503. Your duties will include assessing network compliance against controls listed in NIST 800-53 and creating A&A packages. You will perform assessment, compliance, and validation of IT systems to support the Cybersecurity program at USSOCOM, its Component Commands, TSOCs, and deployed forces. The goal is to ensure the integrity of customer systems by identifying and mitigating potential shortcomings and vulnerabilities. You will advise USSOCOM and its Component Commands on network and system risks, risk mitigation courses of action, and operational security. Additionally, you will perform security evaluations and vulnerability assessments using tools such as the DOD Assured Compliance Assessment Solution (ACAS) and Nessus vulnerability scanning tool. You will identify applicable STIGs and perform assessments using the Security Content Automation Protocol tool, liaising with network and system administrators to correct identified deficiencies. You will also scan for new systems and applications being introduced into the SOF environment, identify issues, and draft certification letters for the government. Your typical duties will include tracking A&A status of SIE governed ISs, ensuring documentation is available in the USSOCOM-chosen automated tool, and providing DoD & IC RMF subject matter expertise to USSOCOM and its Component Commands. You will maintain, track, and validate DISN, cloud, and DIA connection approval packages, develop and maintain supporting documentation for new and existing networks, and perform risk and vulnerability assessments of IT and IS for authorization. You will prepare risk assessment reports for submission to the SCA and Authorizing Official, assist with the enforcement of A&A, and track and maintain A&A databases to ensure proper documentation and management from a cybersecurity perspective.

Responsibilities

  • Perform assessment and authorization coordination.
  • Advise and assist the customer with Risk Management Framework (RMF).
  • Develop a Plan of Action and Milestones for resolving network deficiencies.
  • Assess network compliance against controls listed in NIST 800-53 and create A&A packages.
  • Perform assessment, compliance, and validation of IT systems to support the Cybersecurity program at USSOCOM.
  • Advise USSOCOM and its Component Commands on network and system risks and risk mitigation courses of action.
  • Perform security evaluations and vulnerability assessments using DOD ACAS and Nessus.
  • Identify applicable STIGs and perform assessments using the Security Content Automation Protocol tool.
  • Liaison with network and system administrators to correct identified deficiencies.
  • Scan for new systems and applications being introduced into the SOF environment and draft certification letters for the government.
  • Track A&A status of SIE governed ISs and ensure documentation is available in the USSOCOM-chosen automated tool.
  • Provide DoD & IC RMF subject matter expertise to USSOCOM and its Component Commands.
  • Maintain, track, and validate DISN, cloud, and DIA connection approval packages.
  • Develop and maintain supporting documentation for new and existing networks and systems.
  • Perform risk and vulnerability assessments of IT and IS for authorization and prepare risk assessment reports.
  • Assist with the enforcement of A&A and connection standards for networks and systems.
  • Track and maintain A&A databases to ensure proper documentation and management from a cybersecurity perspective.

Requirements

  • 5 years of experience in cybersecurity or related field.
  • Bachelor of Science degree in a relevant field.
  • Active TS/SCI clearance required.
  • Current DoD 8570.01-M, IAT Level III or IAM Level III certification.
  • Experience with the US Combatant Commands (USCENTCOM/USSOCOM) is desired.
  • Technical background with system administration experience, architecture, and engineering preferred.
  • Technical background in networking, identity management, Microsoft and Linux operating systems, database, and mobility.
  • Working knowledge of the Risk Management Framework (RMF).
  • Knowledge of DoD IA processes and policies (e.g., DODI 8510.01, NIST, CNSS).
  • Excellent written and oral communication skills.

Nice-to-haves

  • Knowledge of the Telos Xacta or Enterprise Mission Assurance Support Services (eMASS) system is desired.
  • Experience with cyber network defense tools such as endpoint security and SIEM.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service