Cyber Security C&A Analyst

Cyber Security C&A Analyst at Amyx, Inc.

Amyx, Inc. is seeking to hire a Cyber Security C&A Analyst to be located off site to support DLA remotely.

Daily Duties

The Cyber Security C&A Analyst serves as a cybersecurity Subject Matter Expert (SME) with regards to OT Authorization of information systems and all associated cybersecurity policies and procedures. This role requires full knowledge of the general tenets supporting the overall DOD implementation of its authorization process, including supporting cybersecurity policy, procedures, and processes. The analyst performs DOD cybersecurity processes while either authorizing an information system or serving as an SME for an information system undergoing authorization. A strong understanding of how the security controls identified in NIST 800-53 apply to the process of assessing and authorizing a large organization’s IT infrastructure, which includes a compilation of large and small enclaves, AIS applications, and outsourced IT processes, is crucial. Responsibilities also include determining the applicable severity value for identified vulnerabilities (e.g., non-compliant security controls) and assessing the possible ramifications on a system’s current or future authorization. The Cyber Security C&A Analyst will be required to brief senior management on the progress or results of an information system undergoing the authorization process and provide site surveys and/or on-site evaluations for Operational Technology (OT), such as ICS/SCADA. The ability to communicate accurate information effectively is essential.

Supported Technologies

• Microsoft Excel and Access
• Microsoft Office suite, to include Word, PowerPoint and SharePoint
• eMASS
• ArcSight
• Stigviewer
• SCAP
• Cloud Computing
• Mobility
• IOT/SCADA/ICS
• RSA Archer
• ACAS/HBSS

Required Skills and Qualifications

• Five (5) years of relevant C&A experience
• Risk Management Framework (RMF) and NIST C&A experience
• DOD cybersecurity experience
• DOD Secret Clearance
• Must be eligible for IT-II
• DOD 8570.01 IAM level III (CISSP, CISM, GSLC, CCISO)
• Experience in assessing security controls and conducting authorization reviews for large, complex organizations
• Computing Environment certifications such as CISSP, MCDST, MCITP EDST, MCITP EDA, MCITP SA, MCITP EA, MCM, MCA MS Windows Server Directory, Windows 10, MCSA, MCSE

Desired Skills and Qualifications

DLA Experience a Plus

Benefits

• Medical, Dental, and Vision Plans (PPO & HSA options available)
• Flexible Spending Accounts (Health Care & Dependent Care FSA)
• Health Savings Account (HSA)
• 401(k) with matching contributions
• Roth
• Qualified Transportation Expense with matching contributions
• Short Term Disability
• Long Term Disability
• Life and Accidental Death & Dismemberment
• Basic & Voluntary Life Insurance
• Wellness Program
• PTO
• 11 Holidays
• Professional Development Reimbursement

Key skills/competency

• Cybersecurity
• Certification and Accreditation (C&A)
• Risk Management Framework (RMF)
• NIST 800-53
• DOD Cybersecurity
• Operational Technology (OT) Security
• Vulnerability Assessment
• Security Control Assessment
• eMASS
• Compliance Auditing