Jacobs Engineering Group - Arlington, VA

posted about 2 months ago

Full-time - Senior
Arlington, VA
Professional, Scientific, and Technical Services

About the position

As a Senior Cybersecurity Systems Analyst at Jacobs Technology, Inc., you will play a critical role in ensuring the security and compliance of IT systems within the U.S. Special Operations Command (USSOCOM) and its associated commands. Your primary responsibilities will include performing assessment and authorization coordination, advising on Risk Management Framework (RMF) processes, and developing Plans of Action and Milestones (POA&Ms) to address network deficiencies in accordance with Department of Defense Instruction (DODI) 8510.01 and Intelligence Community Directive (ICD) 503. You will assess network compliance against controls outlined in NIST 800-53 and create comprehensive Assessment and Authorization (A&A) packages to support the Cybersecurity program at USSOCOM and its Component Commands. In this role, you will conduct thorough assessments, compliance checks, and validations of IT systems to ensure they meet regulatory and security standards. Your efforts will be focused on identifying and mitigating potential vulnerabilities to maintain the integrity of customer systems. You will also provide expert advice on network and system risks, recommend risk mitigation strategies, and assist in the enforcement of A&A standards across various networks and systems. Additionally, you will utilize tools such as the DOD Assured Compliance Assessment Solution (ACAS), Nessus vulnerability scanning tool, and Security Content Automation Protocol (SCAP) to perform security evaluations and vulnerability assessments. You will work closely with network and system administrators to rectify identified deficiencies and ensure that new systems and applications introduced into the Special Operations Forces (SOF) environment comply with established security standards. Your role will also involve tracking A&A statuses, maintaining documentation, and preparing risk assessment reports for submission to relevant authorities. Your expertise in cybersecurity will be essential in developing and maintaining an Information Security Continuous Monitoring (ISCM) Plan, coordinating with various defense and intelligence agencies, and providing subject matter expertise for the development of cybersecurity mitigation strategies. This position requires a proactive approach to managing cybersecurity risks and ensuring compliance with applicable policies and regulations.

Responsibilities

  • Perform assessment and authorization coordination for IT systems.
  • Advise and assist customers with Risk Management Framework (RMF) processes.
  • Develop Plans of Action and Milestones (POA&Ms) for network deficiencies.
  • Assess network compliance against NIST 800-53 controls and create A&A packages.
  • Conduct compliance and validation of IT systems to support the Cybersecurity program at USSOCOM.
  • Identify and mitigate potential vulnerabilities in customer systems.
  • Perform security evaluations and vulnerability assessments using ACAS and Nessus.
  • Liaison with network and system administrators to correct identified deficiencies.
  • Scan and review scans for new systems and applications in the SOF environment.
  • Draft certification letters for the government regarding system compliance.
  • Maintain and track DISN, cloud, and DIA connection approval packages.
  • Develop and maintain documentation for new and existing networks and systems.
  • Perform risk and vulnerability assessments for authorization and prepare reports.
  • Assist with the enforcement of A&A and connection standards for networks and systems.
  • Track and maintain A&A databases and tools for cybersecurity documentation.
  • Ensure timely notifications to prevent lapses in accreditations.
  • Develop and maintain an Information Security Continuous Monitoring (ISCM) Plan.
  • Identify, assess, and advise on cybersecurity control compliance and risks.
  • Coordinate with various defense and intelligence agencies to resolve security issues.
  • Validate system patching and develop POA&Ms as required.

Requirements

  • 8 years of experience in cybersecurity or related field.
  • Bachelor's degree in a relevant field.
  • Current DoD 8570.01-M certification, IAT Level III or IAM Level III certification required.
  • Technical background in system administration, architecture, and engineering preferred.
  • Experience with US Combatant Commands (USCENTCOM/USSOCOM) is desired.
  • Knowledge of networking, identity management, Microsoft and Linux operating systems, and databases.
  • Working knowledge of the Risk Management Framework (RMF).
  • Familiarity with Telos Xacta or Enterprise Mission Assurance Support Services (eMASS) system is desired.
  • Excellent written and oral communication skills.
  • Knowledge of DoD Information Assurance processes and policies.

Nice-to-haves

  • Experience with cybersecurity tools such as endpoint security and SIEM.
  • Familiarity with compliance to connect policies.
  • Knowledge of Incident Response and other Information Assurance policies.

Benefits

  • Medical, dental, and vision insurance for employees and dependents.
  • 401k plan with company match.
  • Deferred compensation plan and Executive Deferral Plan available.
  • 15 days of vacation per year.
  • 10 paid holidays.
  • Caregiver leave.
  • Opportunity to purchase company stock.
  • Performance discretionary bonus eligibility.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service