Cyber Information Assurance Analyst

Cyber Information Assurance Analyst

The Applied Research Laboratory (ARL) at Penn State University is looking for an experienced Information Systems Security Manager (ISSM) to join our Cybersecurity Division.

Current Penn State employees (faculty, staff, technical service, or student) must apply internally via Workday. Current Penn State students not previously employed at the university should also apply through Workday. External applicants should click “Apply” and complete the standard application.

Responsible for overseeing and owning the unclassified information security program, implementing compliance requirements such as the Cybersecurity Maturity Model Certification (CMMC). Supports both unclassified and collateral spaces, assisting fellow ISSMs and enforcing common standards.

• Develop, validate, submit, and maintain information system security plans, certification and authorization packages, and plans of action and milestones.
• Oversee development and implementation of risk assessments for all information system life cycles.
• Provide cybersecurity recommendations for system, network, and application design.
• Monitor and review current and new systems to ensure compliance with policies.
• Develop training materials related to compliance and audit requirements.
• Assist with vulnerability scanning, security log review, network analysis, and incident response as needed.

• Current eligibility for Top‑Secret or higher security clearance; subject to background investigation if required.
• Experience with assessment and authorization using CMMC and RMF.
• Knowledge of NIST/SP 800‑53, SP 800‑171, DoD directives, DISA STIG, and regulatory requirements.
• Strong technical background with Windows and Linux operating systems.
• Experience developing policy, procedures, plans of action, risk assessments, and continuous monitoring.
• Understanding of technical security safeguards and operational security measures.
• Capability to maintain information security certifications (e.g., Security+, CISSP).
• Excellent communications, analytical, and problem‑solving skills.
• Efficient organizational, multitasking, and time‑management abilities.

• Bachelor’s degree in Information Security, Information Technology, or Computer Science.
• Management or leadership experience in IT and information security.
• Experience with Nessus, Retina, GFI Languard, or similar vulnerability tools.
• Networking fundamentals and related tools.
• Container image security and container environment management.
• SEIM tools such as Splunk, ELK, or Alien Vault.
• VMware and virtual machine management.
• Training material development.

State College, PA – hybrid onsite/remote. Periodic travel to remote locations may be required.

Cyber Information Assurance Analyst – Principal Professional:
Master’s degree + 8+ years relevant experience (or equivalent). No mandatory certifications required.
Cyber Information Assurance Analyst – Senior Professional:
Bachelor’s degree + 6+ years relevant experience (or equivalent). No mandatory certifications required.

Successful completion of a background check and the ability to obtain a U.S. government security clearance is required. U.S. citizenship is required.

Salary range: $86,300 – $145,700 (geographic differential may apply). Comprehensive benefits include medical, dental, vision, retirement plans, paid time off, and a generous tuition discount.

Penn State is an equal‑opportunity employer committed to removing barriers to employment for all qualified applicants. Contact 814‑865‑1473 if you need assistance due to a disability.

Mid‑Senior Level

Full‑time

Information Technology

Government Administration