Mid-Level Cybersecurity Analyst

LOCATION: Washington DC

JOB STATUS: Full-time

CLEARANCE: Secret

CERTIFICATION: DoD 8140 IAT Level II

TRAVEL: As Needed

SALARY RANGE: Estimated $90,000 - $115,000 USD annually*

*depending on experience, certifications, and qualifications

Astrion has an exciting opportunity for a Mid-Level Cybersecurity Analyst located at the Washington Navy Yard in Washington, DC. Work for this position is onsite at Washington Navy Yard a minimum of 4 days per week.

REQUIRED QUALIFICATIONS / SKILLS

· A master’s degree in a relevant field; or

· A Bachelor’s degree in a relevant field and five (5) years of relevant experience in cyber security, information system management, software development, design or authorization; or

· A high school degree, or a GED, and ten (10) years of relevant experience in cyber security, information system management, software development, design or authorization.

· In depth knowledge of all steps in the RMF Process.

· Knowledge of DoD and DON cyber policies and procedures and/or NIST 800-53, DoDI 8500.01, and DoDI 8510.01.

· Must be flexible in adapting to deadlines, changing schedules, competing priorities, and unpredictable events.

· Familiar with and able to present data and recommendations to a Government or Military leadership.

· Thorough, detail oriented, and organized, with excellent time management skills and ability to prioritize and handle multiple projects simultaneously.

· Superb verbal and written communication skills.

· Self-motivated and independent thinker with out-of-the-box ideas.

PREFERRED QUALIFICATIONS / SKILLS

· Familiarity with PEO IWS organization and systems.

· Familiarity with the NAVSEA FAO RMF Process.

· Working knowledge of DoD, DON, NAVSEA, and PEO cyber regulations.

· Familiar with eMASS and the eMASSter tool.

RESPONSIBILITIES

· Provide cybersecurity expertise to surface combat system program offices.

· Perform cybersecurity Assessment and Authorization work as an ISSE under the RMF process.

· Lead efforts to bring Platform Information Technology systems and other systems through the full life cycle of the Risk Management Framework (RMF) process to achieve/renew Authority to Operate (ATO).

· Ensure systems meet guidelines and requirements with NAVSEA Standard Operating Procedures (SOP) prior to submission.

· Review Assured Content Assessment Solution (ACAS), Security Technical Implementation Guide (STIG), and Security Content Automation Protocol (SCAP) scanning/testing results.

· Work with the NAVSEA, PEO IWS, combat system program offices to ensure DOD/DON cybersecurity regulations and best practices are followed in the design, development, and sustainment of the integrated combat systems and weapon systems.