Cybersecurity Assessment and Authorization Analyst

Location
Reston, Virginia, United States
Posted
Sep 05, 2018
Closes
Sep 19, 2018
Ref
J3R58N72W7GBGR5YBXB
Function
Analyst
Hours
Full Time
Job Description Job Number: R0024348

Cybersecurity Assessment and Authorization Analyst

Key Role:
Collaborate with engineering, development, integration, and test teams to lead transformation of the current software production and release management process into a secure continuous delivery approach. Analyze strategies to create better collaboration between developers, testers, project managers, and users who will have competing goals, schedules, and demands. Secure continuous build integration and automation processes, practices, and frameworks for an enterprise system of systems. Provide application security analysis in accordance with NIST 800-37, ICD-503, DoDI 8510.01, and the DoD Applications and Systems Development (ASD) Security Technical Implementation Guide (STIG) for locally developed GOTS and COTS applications and recommend mitigation strategies to minimize security risks. Develop Assessment and Authorization (A&A) documentation in accordance with NIST 800-37, DoDI 8510.01, and ICD 503. Coordinate through eMASS and Xacta workflow processes and provide client consultation on status and execution. Coordinate the continuous monitoring of implemented security controls.

Basic Qualifications:
-5+ years of experience with information assurance, A&A, or Cybersecurity
-5+ years of experience with documenting IT systems' vulnerabilities and mitigation strategies
-5+ years of experience with DoD 8500 series documents, including implementing and assessing security controls from the DoDI 8500.2 and the NIST 800-53 series
-4+ years of experience with providing technical support for the deployment of application changes to an IT environment consisting of multiple platforms, including Windows and UNIX
-2+ years of experience with using automated deployment and continuous integration tools, including Chef, Puppet, or Jenkins and building and configuring supporting infrastructures 
-2+ years of experience with automated testing tools and frameworks, including Load Runner, Selenium, JUnit, or JMeter
-Knowledge of certification and accreditation artifacts and supporting documents

-TS/SCI clearance

-Security+CE Certification

Additional Qualifications:
-BA or BS degree

-CISSP Certification
-Certified Ethical Hacker Certification

Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

We're an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

#LI-AH1, CJ1, DH1, DMI

Similar jobs