Cybersecurity Analyst (Active Secret Clearance Required)

Cybersecurity Analyst

Client: US Navy

POP: 12+ months

Location: San Diego, CA

SCOPE

Cybersecurity Information Assurance Analyst will be responsible for leading Assessment and Authorization (A&A) activities and developing RMF artifacts across all steps.

REQUIRED SKILLS

• Must have a Secret clearance, TS/SCI is preferred
• Must have a Bachelors Degree in related field
• Meet DoD CSWF Program requirements to include appropriate cybersecurity certification and operating system certifications (e.g. CISSP, CCSP, OCP, MS Azure, AWS, Cisco CCNP, Juniper JNCIP, Cisco CCIE)
• 4+ years of professional experience in the Information Assurance field
• 3+ years of experience with the engineering of CANES or ADNS to meet DISA STIGS and DoD DIACAP/RMF IA Certification and Accreditation controls OR 2+ years of experience developing HBSS policies for the CANES system
• Proficient in cybersecurity compliance testing using industry-standard tools such as Assured Compliance Assessment Solution (ACAS) and DoD Security Technical Implementation Guides (STIGs)
• Skilled in performing vulnerability analysis of networks, systems, and communication protocols
• Demonstrate ability to work independently, devise and execute client deliverables supporting a range of operating systems and technologies, including Windows, Linux, cloud, and virtualization.
• Experience with analyzing security policies, provide risk mitigation recommendations and lead tasks from inception to completion
• Supporting process improvement and implementation of agile methodologies using OSA, DevSevOps principles, and MBSE
• Working with DevSecOps Lead to progress development and implementation of environments and tools that support an end-to-end pipeline
• Ability to analyze vulnerability data to determine system risk
• Ability to independently perform lab-based and on-site (e.g. ship, sub, NOC) security assessments
• Ability to develop all security artifacts for accreditation packages
• Ability to work with automated vulnerability tools

PREFERRED SKILLS

• 6+ years experience supporting IT systems for a DoD or Government Agency
• Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management
• Experience with Navy initiatives such as Platform Application Services (PAS), Overmatch, Afloat Core Services (ACS), or Application Integration (AI)

TASKS

• Lead Assessment and Authorization (A&A) activities for Navy systems, developing complete RMF artifact packages (SSP, SAR, POA&M, etc.) from initial assessment to accreditation
• Conduct cybersecurity compliance testing and vulnerability assessments using ACAS and DISA STIGs on CANES/ADNS systems in lab environments and operational sites (ships, subs, NOCs)
• Engineer security controls for CANES and ADNS systems to meet DoD RMF requirements, including development and implementation of HBSS policies
• Analyze vulnerability scan data to assess system risk, provide risk mitigation recommendations, and track remediation through completion
• Collaborate with DevSecOps teams to integrate security controls into CI/CD pipelines using agile methodologies, OSA principles, and MBSE frameworks
• Perform security assessments across multi-platform environments (Windows, Linux, cloud, virtualization) supporting Windows and Linux OS