Cybersecurity and Information Assurance Analyst; On-Site

Overview

Join us as a Cybersecurity and Information Assurance Analyst supporting the Joint Pathology Center's critical mission. Help protect enterprise systems, strengthen cybersecurity operations, and support DoD compliance efforts in a fast‑paced, mission‑driven environment where your expertise makes a direct impact.

Joint Pathology Center, 606 Stephen Sitter Ave, Silver Spring, MD 20910

The Cybersecurity and Information Assurance (IA) Analyst provides enterprise‑level cybersecurity and information assurance support for Joint Pathology Center (JPC) information systems.

10 years of cybersecurity and information assurance experience.

Bachelor’s Degree in information technology, computer science, cybersecurity, engineering, or related field; active certification meeting Cyber IT/Cybersecurity Workforce (CSWF) / Information Assurance Technician (IAT) Level II requirements (e.g., Security+ CE, CySA+, CND, GSEC, GICSP, SSCP).

• Above average experience supporting cybersecurity operations, including monitoring networks, systems, and applications for security events and vulnerabilities.
• Above average experience supporting Risk Management Framework (RMF) activities (e.g., System Security Plans, POA&M, Security Assessment Reports, authorization packages).
• Above average experience supporting assessment and Authorization to Operate (ATO) activities.
• Experience supporting patching, configuration changes, and compensating controls.
• Experience coordinating with system administrators, application developers, and database administrators to ensure timely mitigation of vulnerabilities.
• Experience implementing, validating, and maintaining technical, administrative, and operational security controls in accordance with applicable DoD standards.
• Experience with Security Technical Implementation Guides (STIGs).
• Experience developing and maintaining cybersecurity and IA documentation.
• Experience supporting a federal agency.

• Assignment
  
  Location:
  
  Joint Pathology Center, 606 Stephen Sitter Ave, Silver Spring, MD 20910.
• Most work is sedentary. Exerting up to 10 pounds of force occasionally or a negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects.
• Typing, communicating, repetitive motions.
• Close visual acuity to analyze data, view computer monitors; may need to view presentation screens and other visual aids in a virtual setting.
• Work inside environmental conditions with protection from outside elements.

Active DoD Secret Clearance; ability to obtain DoD Top Secret Clearance as needed. U.S. Citizenship.

• Monitor JPC networks, systems, and applications for security events, vulnerabilities, and anomalous activity.
• Analyze security alerts, logs, and audit data to identify potential threats and incidents.
• Coordinate incident response activities, including investigation, containment, mitigation, and recovery actions.
• Support continuous monitoring activities in accordance with DoD cybersecurity requirements.
• Assist with development, review, and maintenance of RMF artifacts.
• Track and remediate security findings to support system ATO.
• Track, analyze, and manage Information Assurance Vulnerability Alerts (IAVAs), Vulnerability Bulletins (IAVBs), and IAVM actions.
• Support application of STIGs for operating systems, applications, databases, and network devices.
• Perform configuration assessments and compliance checks using approved security tools and methodologies.
• Assist in cybersecurity incident response activities, including detection, analysis, reporting, and recovery.
• Support root‑cause analysis and documentation of cybersecurity incidents.
• Coordinate with government stakeholders and external organizations as required during incident response activities.
• Develop and maintain cybersecurity and IA documentation, including policies, procedures, and system security documentation.
• Provide regular cybersecurity status reports, risk assessments, and compliance updates to the Contracting Officer (COR) and designated…