Specialist, Cyber Intelligence

Job Title:Specialist Cyber Intelligence

Job Code:37098

Job Location: Palm Bay FL

Job Schedule: 9/80: Employees work 9 out of every 14 days totaling 80 hours worked and have every other Friday off

Job Description:

Experienced cybersecurity professional with advanced knowledge of Risk Management Framework (RMF) system authorization continuous monitoring and information assurance principles. Serves as a key contributor within the cybersecurity function applying broad technical and regulatory knowledge to support the security compliance and authorization of information systems. Works with limited supervision and is responsible for leading cybersecurity processes and authorization activities across assigned systems or programs. Regularly interfaces with internal and external stakeholders to interpret requirements resolve compliance issues and ensure alignment with government policies security controls and organizational standards. Recommends and implements improvements to cybersecurity processes documentation and control execution to strengthen security posture improve audit readiness and reduce organizational risk. May provide technical guidance task leadership and mentoring to less experienced personnel.

Essential Functions:

• Lead development coordination maintenance and execution of RMF system authorization packages across the system lifecycle
• Oversee assessment of systems and networks to identify deviations from approved configurations security baselines enclave requirements and applicable government policies
• Interpret and implement cybersecurity requirements in accordance with RMF NIST CNSSI JSIG DoD or other applicable government frameworks and customer directives
• Guide system owners engineers administrators and program stakeholders in the implementation and sustainment of required security controls
• Analyze system architectures operational changes and technical solutions to determine cybersecurity impact and authorization implications
• Conduct security control assessments and evaluate control effectiveness to validate compliance and identify residual risk
• Lead or support Security Test and Evaluation (ST&E) activities including planning preparation execution support analysis of results and reporting of findings
• Prepare review and maintain authorization documentation including System Security Plans (SSPs) Security Assessment Reports (SARs) Plans of Action and Milestones (POA&Ms) risk assessments and supporting artifacts
• Track identified vulnerabilities and deficiencies through remediation risk acceptance or closure and ensure corrective actions are properly documented and completed
• Support continuous monitoring activities by reviewing vulnerabilities audit records change activity control inheritance and security-relevant system modifications
• Coordinate internal and external audits inspections and reviews and support responses to cybersecurity findings and compliance actions
• Evaluate new and emerging technologies system changes hardware and software releases and proposed implementations for security and compliance impact
• Establish and improve control processes that support risk mitigation authorization readiness and long-term sustainment of compliant system operations
• Communicate cybersecurity risks requirements and compliance status to technical and non-technical stakeholders including leadership customers and external assessors
• Provide technical guidance coaching and subject matter support to team members in RMF execution security documentation and compliance practices

Qualifications

• Bachelors Degree and minimum 4 years of prior relevant experience. Graduate Degree and a minimum of 2 years of prior related lieu of a degree minimum of 8 years of prior related experience.
• Active Top Secret US Security Clearance

Preferred Additional Skills:

• ISSO/M experience with eMASS
• ISSO/M experience under the DAAG
• Experience with audit reduction tools like Splunk
• Experience with Linux or Unix operating systems
• Flexibility to adjust to changing requirements schedules and priorities
• Experience working in a military/DOD environment

• Experience developing and managing RMF system authorization packages
• Advanced working knowledge of government cybersecurity policies RMF processes security controls and authorization documentation requirements
• Experience supporting or leading system authorization continuous monitoring audit response and risk management activities in regulated environments
• Ability to assess technical implementations against cybersecurity requirements and translate findings into actionable compliance and risk decisions
• Strong analytical organizational coordination and documentation skills
• Strong verbal and written communication skills with the ability to influence stakeholders and drive resolution of cybersecurity issues interpretingvulnerability scanning results (preferably Nessus or Tenable SecurityCenter); 5 years experience reviewing workstation server firewall & IPS logs; 3 years experience with SIEM tools
• Experience as an ISSO cybersecurity on classified systems under DAAG NISPOM ICD 503 and/or NIST 800-53
• Experience developing managing and providing evidence to close POA&Ms associated with theA&A and project management processes
• Experience with DISA STIGs and SCAP Compliance Checker
• Experience interpreting vulnerability scanning and security log results (Nessus ACAS Splunk)
• Exceptional verbal written interpersonal and presentation skills customer relationship building skills analytical skills and ability to lead/mentor teammates

#LI-CS2