Senior Cybersecurity Analyst

$120,000 - $160,000/Yr

Simventions - Morganza, MD

posted about 2 months ago

Full-time - Senior
Morganza, MD
Professional, Scientific, and Technical Services

About the position

SimVentions, consistently recognized as one of Virginia's Best Places to Work, is seeking a Senior Cybersecurity Analyst to join our dynamic team in Dahlgren and Fredericksburg, Virginia. This hybrid telework position requires a Secret clearance and is ideal for candidates with 7-10 years of experience in cybersecurity, particularly in the context of Department of Defense (DoD) systems. The successful candidate will be responsible for developing Risk Management Framework (RMF) Assessment and Authorization (A&A) packages, performing continuous monitoring tasks, and conducting system testing to ensure compliance with security standards. In this role, you will develop and maintain essential security documentation, including Authorization Boundary Diagrams, System Security Plans, and Privacy Impact Assessments. You will also be tasked with generating and updating test plans, conducting vulnerability scans using tools such as ACAS and Nessus, and analyzing scan results to document findings in the Plan of Action and Milestones (POA&M). Your expertise in the NAVSEA Risk Management Framework Process will be crucial as you perform annual FISMA assessments and ensure the continuous monitoring of authorized systems. The ideal candidate will possess a deep understanding of computer security, military system specifications, and DoD Information Assurance policies. Strong communication skills, both written and oral, are essential for effectively presenting findings and providing customer support. This position offers a unique opportunity to contribute to the security of critical systems that support our nation's defense efforts.

Responsibilities

  • Develop Assessment and Authorization (A&A) packages for various systems using the Risk Management Framework (RMF) process.
  • Develop and maintain security documentation such as Authorization Boundary Diagrams, System Security Plans, and Privacy Impact Assessments.
  • Perform Continuous Monitoring of Authorized Systems.
  • Generate and update test plans; conduct testing of the system components using ACAS/Nessus Vulnerability Scans, STIGs, and IAVM Reviews.
  • Analyze Nessus vulnerability scan results and document open findings in the Plan of Action and Milestones (POA&M).
  • Analyze DISA Security Technical Implementation Guide test results and document open findings in the Plan of Action and Milestones (POA&M).

Requirements

  • Minimum of 7 years of experience in engineering and securing DoD systems.
  • Certified as IAT or IAM Level III.
  • In-depth understanding of computer security, military system specifications, and DoD Information Assurance policies.
  • Strong ability to communicate clearly and succinctly in written and oral presentations.
  • Experience executing all aspects of the NAVSEA Risk Management Framework Process.
  • Experience reviewing NESSUS vulnerability scans and STIG test results.
  • Experience self-assessing RMF Security Controls.
  • Professional and effective interpersonal skills and the ability to provide face-to-face customer support.

Nice-to-haves

  • Navy Qualified Validator credential is a plus.
  • Bachelor's degree in a technical or Cyber field preferred but not required.

Benefits

  • Medical, dental, vision, and prescription drug coverage.
  • Employee Stock Ownership Plan (ESOP).
  • Competitive 401(k) programs.
  • Retirement and Financial Counselors.
  • Health Savings and Health Reimbursement Accounts.
  • Flexible Spending Accounts.
  • Life insurance, short- & long-term disability.
  • Continuing Education Assistance.
  • Paid Time Off, Paid Holidays, Paid Leave (e.g., Maternity, Paternity, Jury Duty, Bereavement, Military).
  • Third Party Employee Assistance Program that offers emotional and lifestyle well-being services, including free counseling.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service