Cyber Sec Analyst - ISSO Security Clearance

Position: Cyber Sec Analyst - ISSO with Security Clearance
Description the src navy cryptologic systems (ncs) directorate supports a number of us navy programs, including the cryptologic carry-on program (ccop), ships' signals exploitation equipment (ssee) program, and distributed common ground system -- navy (dcgs-n). We specialize in engineering support, software development, integration, testing, technical writing, cybersecurity (administration, policy and engineering), production, technical support, warehousing, drafting, repair and management. As an ncs information systems security officer (isso), this position is responsible for supporting the information system owner to complete security assessment, continuous monitoring, and configuration management responsibilities of ncs.

Responsibilities include, but are not limited to:
* performing monthly compliance assessments using tools, such as assured compliance assessment solution (acas), collaborative computing security services (cs2) audit files, secure content automation protocol (scap), and mcafee virus scan enterprise, reviewing, documenting, and maintaining all results
* verifying patches and virus definitions to the systems using existing automated tools
* adhering to predefined configuration management and change management policies and procedures for authorizing software prior to its implementation on systems
* ensuring that audit trails (system logs) are reviewed as required; audit records will be maintained for future reference
* assessing ncs family of systems in accordance with nist, nsa and navintel ia guidance
* recommending authorization of systems to the designated authorizing official (dao) as a certified trusted agent
* reporting security incidents in accordance with the command's incident response plan
* ensuring systems are operated, used, maintained, and disposed of in accordance with all applicable security policies and practices #li-ll1 requirements
* must possess an active top secret clearance
* a minimum of five (5) years of cybersecurity experience
* must currently hold a dod 8570-compliant iat ii certification (sscp or security+ce with appropriatece/os certificate), and iam ii certification (cap or casp ce) or be able to obtain within six months
* ce/os certificate may include windows or linux
* experience creating complete ato packages using risk management framework process
* experience with emass, ssps, poa&ms, vram, acas/nessus, xacta, scap, scc tool, benchmarks, andstig viewer
* successfully complete a ncis polygraph within one year of employment
* developed communication skills and the ability to express thoughts and ideas clearly and concisely
* be a team player, dedicated to program support, capable of multitasking and working several complex and diverse tasks with simultaneous or near simultaneous deadlines
* be a self-starter who is accountable and requires minimal direction and supervision
* be open to new and innovative ideas
* must be able to be appointed isso for ncs systems within six months of employment desired skills
* bachelor's degree in information systems, computer science, or similar
* aws certified cloud practitioner
* ability to create and modify authorization boundary and data flow diagrams using microsoft visio
* knowledge of container security, ability to assess container hardening per nist 800-190, experience assessing container hosting environments, and knowledge of container and code analysis tools such as jfrog xray, trivy, and sonarqube
* knowledge of govcloud, navy cloud policies and disa cloud computing security requirements guide
* experience in a linux environment is preferred
* experience with wsus, yum clearance information src is a contractor for the u.s. Government. This position will require u.s. Citizenship as well as a u.s. Government security clearance at the top secret / sci level with ci poly eligibility travel requirements
* up to 20% travel may be required about us scientific research corporation is an advanced information technology and engineering company that provides innovative products and services to government and private industry, as well as independent institutions. At the core of our capabilities is a seasoned…