Cybersecurity Systems Analyst

2 days ago


Arlington, United States Jacobs Full time

Performs assessment and authorization coordination. Advises and assists the customer with Risk Management Framework (RMF) and develops a Plan of Action and Milestones for resolving network deficiencies in accordance with DODI 8510.01 and ICD

503. The duties of this task include assessing network compliance against controls listed in NIST 800-53 and creating A&A packages. Performs assessment, compliance, and validation of IT systems to support the Cybersecurity program at USSOCOM, its Component Commands, TSOCs, and deployed forces. The Contractor shall execute a comprehensive assessment, compliance and validation of customer networks to ensure compliance with regulations and security and standards. The end goal is to ensure the integrity of customer systems by identifying and mitigating potential shortcomings and vulnerabilities.

Advise USSOCOM, its Component Commands, TSOCs, and deployed forces on network and system risks, risk mitigation courses of action, and operational.

Additionally, the Cybersecurity Systems Analyst should be able to perform security evaluations and vulnerability assessments using the DOD Assured Compliance Assessment Solution (ACAS), Nessus vulnerability scanning tool and Security Content Automation Protocol tool. Identify applicable STIGs and perform assessments using the Security Content Automation Protocol tool. The Cybersecurity Systems Analyst will liaison with network and system administrators to correct identified deficiencies. The Cybersecurity Systems Analyst will also scan (or review scans) for new systems and applications being introduced into the SOF environment, identify issues, and draft certification letters for the government. The contractor will liaison with the Site Integration Facility (SIF) to ensure systems and application meet the standards in the DISA Security Technical Implementation Guides (STIG).

The Cybersecurity Systems analyst should be knowledgeable of cyber network defense tools such as end point security, SIEM, comply to connect, etc.

Typical duties include:

·       Tracks A&A status of SIE governed ISs. Ensures these artifacts and documentation are available in the USSOCOM-chosen automated tool.

·       mentation of cybersecurity requirements.

·       Provide DoD & IC RMF subject matter expertise to USSOCOM, its Component Commands, TSOCs, deployed forces and their delegates, including other Contractors, and assist with the development and execution of the RMF program at USSOCOM, its Component Commands, TSOCs, and deployed forces.

·       Maintain, track, and validate DISN, cloud and DIA connection approval packages, including those from USSOCOM, its Component Commands, TSOCs, and other subordinate organizations.

·       Develop and maintain supporting documentation for new and existing networks, cloud environments, information systems and technologies as they are introduced into the SIE.

·       Develop and review the A&A of SIE networks, cloud environments, systems, services, telecommunication circuits, mobile devices, portable electronic devices, hardware, and software using the DoD & IC RMF to obtain an Authority to Operate (ATO), Interim Authority to Test (IATT), or Authority to Connect (ATC).

·       Perform risk and vulnerability assessments of IT and IS for authorization; prepare risk assessment reports for submission to the SCA and Authorizing Official/Designated Authorizing Official/Designated Accrediting Authority (AO/DAO/DAA) in accordance with DoD, DIA, USCYBERCOM, USSOCOM, Component Command, TSOC, and deployed forces’ policies, procedures, and regulations.

·       Assist USSOCOM, its Component Commands, TSOCs and deployed forces with the enforcement of A&A, as well as DoD, DIA, USSOCOM, Component Command, TSOC, and deployed forces’ connection standards for networks and systems.

·       Track and maintain A&A databases, web sites and tools to ensure that networks, systems and devices are properly documented and managed from a cybersecurity perspective.

·       Track and report to higher headquarters organizations (e.g. USCYBERCOM, DIA) compliance with applicable Cybersecurity regulations and directives.

·       Ensure timely notifications are made to responsible individuals and organizations in order to prevent lapses in accreditations (e.g., 30, 60, and 90 day notices).

·       Develop and maintain an Information Security Continuous Monitoring (ISCM) Plan. This plan shall address ongoing awareness of information security, vulnerabilities, security controls, and threats to support organizational risk management decisions.

·       Identify, assess, and advise on cybersecurity control compliance and associated risks.

·       Coordinate with USCYBERCOM, DoD, DIA, NSA, DISA, and subordinate organizations to support the resolution of issues with security, A&A, connection approvals, and waiver requests.

·       Perform network, cloud, information systems, hardware, software and device security authorization and assessments, as well as the application and execution of policy, including project management support services.

·       Validate the patching of systems, perform validation scanning, develop Plans of Action & Milestone (POA&Ms), and report as directed by applicable policies, procedures, and regulations.

·       Provide subject matter expertise for COA development and the implementation of Cybersecurity mitigation strategies.

·       Develop and implement required processes, procedures, and capabilities to mitigate vulnerabilities and weaknesses for software and hardware deployment.

·       Identify, implement and validate continued effectiveness of key performance parameters and applied security measures

·       Perform analytics on cybersecurity posture and provide reports to the AO/DAO and applicable stakeholders as required per ISCM and AO/DAO direction.

  • US CMS statement:
    • Health and welfare benefits are designed to invest in you, and in the things you care about. Your health. Your well-being. Your security. Your future. Eligible employees and their dependents may elect medical, dental, vision, and basic life insurance. Employees are able to enroll in our company’s 401k plan, and, if eligible, a deferred compensation plan and Executive Deferral Plan. Employees will also receive 15 days of vacation per year, 10 paid holidays, and caregiver leave. Hired applicants will be able to purchase company stock and have the opportunity to receive a performance discretionary bonus. 

    • The base salary range for this position is $100k to $104k. This range reflects the minimum and maximum target for new hire salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training.


  • Arlington, Virginia, United States Jacobs Full time

    Job SummaryCybersecurity Systems AnalystAs a Cybersecurity Systems Analyst at Jacobs, you will play a critical role in ensuring the security and integrity of our customers' networks and systems. Your primary responsibilities will include assessing network compliance against controls listed in NIST 800-53, creating A&A packages, and performing assessments,...


  • Arlington, United States Mount Indie Full time

    Cybersecurity Analyst - Protect High-Impact Digital Assets We are seeking a skilled Cybersecurity Analyst to join our team in Arlington, VA, focused on safeguarding critical digital assets. This role is essential for maintaining the confidentiality, integrity, and availability of sensitive program information by proactively identifying security risks,...

  • Technical Writer

    1 week ago


    Arlington, Virginia, United States Farfield Systems Full time

    Job Description:Farfield Systems is seeking a skilled Technical Writer to support a critical customer mission. As a Technical Writer - Cybersecurity Documentation Specialist, you will be responsible for developing and reviewing technical communications deliverables, including cybersecurity documentation, operational procedures, plans, action reports, and...


  • Arlington, United States Global Systems Technologies Full time

    Summary: The Cybersecurity Specialist will provide engineering and cybersecurity support services for engineering analysis, Transportation Security Equipment (TSE) development , configuration control board, technical reviews of deliverables, and other technical documentation (cybersecurity meetings, conferences, and reviews).Provide Cybersecurity subject...


  • Arlington, United States Goldbelt Nighthawk, LLC Full time

    Overview Goldbelt Nighthawk offers sound solutions in software development and both defensive and proactive cybersecurity. Nighthawk offers an integrated, holistic cybersecurity workforce that is enthusiastic, continuously learning, and progressive. The team is fully committed to implementing dynamic cybersecurity solutions that effectively address the...


  • Arlington, United States Gray Tier Technologies LLC Full time

    Cybersecurity Analyst Gray Tier Technologies is seeking an experienced Cybersecurity Analyst on The Enterprise and Cyber Solutions (E&CS) Operation. The team is seeking a Cybersecurity Analyst to support the implementation and administration of information security policies, procedures, and technologies to ensure the protection of systems, applications, and...


  • Arlington, Virginia, United States Department of Homeland Security Full time

    Cybersecurity is a rapidly evolving field that requires professionals with expertise in multiple areas, including network security, cryptography, threat analysis, and incident response. As a Development and Operations (DEV/OPS) Branch Chief at the Department of Homeland Security (DHS), Cybersecurity and Infrastructure Security Agency (CISA), you will play a...


  • Arlington, United States Technomics Full time

    Role & Responsibilities Provide cybersecurity expertise to surface combat system program offices. Lead efforts to bring platform information technology systems through the full life cycle of the Risk Management Framework (RMF) process to achieve/renew Authority to Operate (ATO). Develops, coordinates, and reviews detailed Assessment & Authorization...


  • Arlington, Virginia, United States Leidos Full time

    Job OverviewLeidos is seeking a highly skilled Cybersecurity Operations Center Analyst to manage the operational environment for the Compartmented Enterprise Services Office (CESO) NOC. As part of this task order, Leidos will transform the existing Secure Web Services (SWS) environment into a more mature service offering.


  • Arlington, United States Argo Cyber Systems Full time

    The DHS's Hunt and Incident Response Team (HIRT) secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front line response for cyber incidents and proactively hunting for malicious cyber activity. Argo Cyber Systems is a key partner to DHS, and performs HIRT investigations to develop a preliminary diagnosis of the severity of...


  • Arlington, United States Argo Cyber Systems Full time

    The DHS's Hunt and Incident Response Team (HIRT) secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front line response for cyber incidents and proactively hunting for malicious cyber activity. Argo Cyber Systems is a key partner to DHS, and performs HIRT investigations to develop a preliminary diagnosis of the severity of...


  • Arlington, Virginia, United States Castalia Systems Full time

    Cyber Action OfficerEstimated Salary:$80,000 - $120,000 per year.Location: Arlington, VA. Job OverviewCastalia Systems is a leading provider of mission-critical solutions to the Federal Government. We are seeking a highly skilled Cyber Action Officer to support our clients in their cybersecurity needs. Job DescriptionThe Cyber Action Officer will be...


  • Arlington, Virginia, United States Technomics Full time

    Job SummaryWe are seeking a highly skilled Cybersecurity Expert to join our team at Technomics. In this role, you will be responsible for providing cybersecurity expertise to surface combat system program offices and leading efforts to bring platform information technology systems through the full life cycle of the Risk Management Framework (RMF) process.Key...


  • Arlington, Virginia, United States Argo Cyber Systems Full time

    Argo Cyber Systems is a leading provider of cybersecurity solutions to the U.S. Government.We are seeking an experienced Cybersecurity Technical Writer and Documentation Specialist to join our team.The successful candidate will have 5+ years of technical writing experience, including developing cybersecurity communications deliverables such as documentation,...


  • Arlington, Virginia, United States Demo - Maximus Full time

    Job SummaryWe are seeking a skilled Senior Python Software Developer to contribute to our cybersecurity analytics program. The successful candidate will collaborate with cyber analysts, data scientists, and countermeasures researchers to develop and implement analytic applications.Key Responsibilities:Work with cyber analysts to develop automated analytic...


  • Arlington, United States Technomics Full time

    Role & Responsibilities Provide cybersecurity expertise to surface combat system program offices. Lead efforts to bring platform information technology systems through the full life cycle of the Risk Management Framework (RMF) process to achieve/renew Authority to Operate (ATO). Perform cybersecurity Assessment & Authorization work under the RMF guidelines...


  • Arlington, United States Gray Tier Technologies LLC Full time

    The DHS's Hunt and Incident Response Team (HIRT) secures the nation's infrastructure. HIRT provides DHS's front-line response for cyber incidents and proactive hunting for malicious cyber activity. Our team provides support for on and offsite incident response to Government agencies and critical infrastructure owners who experience cyber-attacks. Our team...


  • Arlington, United States Solutions3 Full time

    Title: Host Based Systems Analyst IV Description: Solutions³ LLC is supporting our prime contractor and their U.S. Government customer on a large mission-critical development and sustainment program to design, build, deliver, and operate a network operations environment, including introducing new cyber capabilities to address emerging threats. Solutions³...


  • Arlington, United States Base One Technology Full time

    Our DC based client is looking for Network Based Systems Analyst - IV - NBA04 - Expert. If you are qualified for this position, please email your updated resume in word format to lli@base-one.com Network Based Systems Analyst - IV - NBA04 - Expert Perform investigations to characterize the level of severity of breaches and develop...


  • Arlington, United States Motion Recruitment Full time

    Security Analyst II The Senior Security Analyst II plays a key role in designing, configuring, testing, and deploying both on-premises and cloud services. This role encompasses responsibilities in incident response, threat hunting, and proactive support for development activities across cloud and on-prem environments. The company is located in Alexandria,...