Cyber Security Analyst - Info Assurance

Cyber Protection Assessment and Authorization and Risk Management Framework (RMF). Provides cybersecurity functional support for assessments authorizations and documentation Enterprisefielded systems managed by NETCOM HQ. Efforts include using the Enterprise Mission Assurance Support Service (eMASS) to record RMF activities such as control implementation of all applicable security controls as identified via information system security categorization in accordance with National Institute of Standards and Technology (NIST) Special Publication (SP) 80053 and Committee on National Security Systems Instructions (CNSSI) 1253. The number of families and controls will vary depending on the security categorization the application of overlays (privacy classified intel etc. and any security control tailoring.
Adhere to the DoD cybersecurity policy requirements set forth in DoDI 8500.01 Cybersecurity and DoDI 8510.01 Risk Management Framework (RMF) for DoD Information Technology (IT) and their successors.
Provide personnel with knowledge in DoD security hardening collection and assessment tools (includes: Security Technical Implementation Guide (STIGs); Assured Compliance Assessment Solution (ACAS) SCAP; Nessus; or other currently Governmentapproved tools) and expertise with security architectures firewalls and network access.
Possess and retain knowledge of the RMF Knowledge Service the DoDs official site for enterprise RMF policy and implementation guidelines.
Review any RMF activities on behalf of NETCOM ensuring adherence to the operational ETPs and Operations Orders hosted on the US Army Component Workspace Operations tab of the RMF Knowledge Service. The ETPs provide amplifying guidance and process implementation for the Army regarding RMF.

Basic Qualifications:

• 1 years of applicable work experience.
• Certifications: DCWF Code 722 Intermediate: Certified Chief Information Security Officer (CCISO) or Certified Cloud Security Professional (CCSP) or Certified in Governance Risk and Compliance (CGRC) or CompTIA Cloud or CompTIA Security or CompTIA SecurityX (formerly CASP) or Systems Security Certified Practitioner (SSCP)
• Possess a Secret Clearnace and the ability to obtain a Top Secret w/SCI security clearance
• Ability to conduct vulnerability assessments and monitor networks to support test and operational environment requirements
• Solid understanding of data transport encryption networking IT systems and cybersecurity fundamentals

Peraton is a nextgeneration national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the worlds leading mission capability integrator and transformative enterprise IT provider we deliver trusted highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land sea space air and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day our employees do the cant be done by solving the most daunting challenges facing our customers. Visit peraton to learn how were keeping people around the world safe and secure.