IT Specialist - SR. IT Specialist - Cyber Security Professional

IT SPECIALIST - SR. IT SPECIALIST - Cyber Security Professional

Join to apply for the IT SPECIALIST - SR. IT SPECIALIST - Cyber Security Professional role at Southwest Research Institute

Since the 1940s, SwRI has supported U.S. and friendly foreign governments to address ongoing threats to national security that require timely intelligence data. We provide advanced signal and communications intelligence systems in support of their missions. Our IT group is an essential element!

• Provide assistance to both Division and project focused System Security Baseline Management initiatives through Cyber analysis and vulnerability remediation with the use of tools like NESSUS, and Qualys.
• Harden systems through the implementation of STIGS and SCAP Scans.
• Conduct security review of system security plans and supporting documentation.
• Evaluate system, hardware, and software engineering requirements, designs, specifications, and contribute input into designs that will meet NIST, CMMC, and DoD A&A Requirements.
• Have strong verbal and written communication skills, be detailed oriented, and have the ability to work well within a team, as well as be proactive and self-directed.
• Provide inputs to development efforts to prepare for trends in cybersecurity requirements evolution and enforcement.
• Convey knowledge and security focused comprehensive solutions to technically complex systems and challenges
• Be proficient in audit log analysis with the use of tools like SPLUNK, and Log Rhythm.

• Collaborate with software and hardware teams, system integrators, and administrations to harden information systems to the required acceptable level.
• Proactively scheduling meetings and working with POCs to work through findings.
• Developing and maintaining the Security System Plans (SSP) and other security relevant documentation for computer systems and applications.
• Communicating with Division Staff and Project Teams on the current status of their cyber posture.
• As needed, conducting Security Controls Assessments (SCA) to determine the effectiveness and compliance of implemented controls and document results in a Security Assessment Report.
• Develop and maintain Plan of Action and Milestones (POA&M) for defined environments.
• Contribute and participate in all phases of the IA/Cyber Security lifecycle for software and hardware products: to include vulnerability scanning,
• IAVA and other security patches to test and operational systems, documentation creation and updates, and training of staff.
• Teamwork in a highly collaborative environment.
• Activities will include work primarily at SwRI facilities/laboratories in San Antonio and short-term travel to Division facilities in other states.

• Requires an Associates or a Bachelors degree in Information Assurance, Cyber Security, Security Engineering, IT or related field with related work experience. Those without a Bachelors degree require 10 years of related experience.
• Current DoD security Clearance highly desired.
• 5+ years:
  Experience with the Government agencies Risk Management Framework, NIST, CMMC framework, Security Scanning Tools, and System Hardening.
• Experience with Security Document creation and maintenance, to include working through required controls based on risk level.
• Independently conducted Security Scans, implementing findings resolutions, and documenting scan findings and resolution.
• Minimum of 1 security certifications, i.e. Security+, CISSP, CISM, CASP or the ability to obtain Security+ or CISSP, certification within 6 months of employment.
• Presenting to Management and staff risk levels, SSPs, and controls for the target system.
• A valid/clear driver's license is required.

Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Applicant must be a U.S. citizen.

San Antonio, Texas

Mid-Senior level

Full-time

Information Technology

Industries:
Research Services