|Location||Edwards Air Force Base, CA|
|Date Posted||April 28, 2021|
JT4 provides engineering and technical support to multiple western test ranges for the U.S. Air Force and Navy under the Joint Range Technical Services Contract, better known as J-Tech II. We develop and maintain realistic integrated test and training environments, and prepare our nation's war-fighting aircraft, weapons systems, and aircrews for today's missions and tomorrow's global challenges.
A Cybersecurity Analyst II performs a variety of cybersecurity tasks in monitoring information systems and securing the Information Technology (IT) infrastructure operational environment to include developing and updating system security plans (SSPs), developing plans of action and milestones (POA&Ms), managing and controlling changes to the systems, conducting audits, providing incident response, vulnerability assessments, and assessing the security impact of security and non-security-relevant changes. Work is at an intermediate level and involves managing deadlines and cybersecurity engineering support for members of development, sustainment, or operations and maintenance team. Employee will be responsible to perform the following functions/duties:
• Conduct research and reference reading in obtaining technical information.
• Keep informed of currently approved standards, codes, and procedures applied to cybersecurity specialty.
• Perform systems engineering activities in the areas of cybersecurity / Information Assurance (IA) / System Security Engineering (SSE) and security assessment and authorization (A&A) in accordance to NIST SP 800-53 RMF.
• Interface with the Authorizing Official (AO) and the Security Control Assessor (SCA) for coordination of Authorization to Operate (ATO) packages.
• Manage multiple system packages throughout the ATO process.
• Apply risk management concepts to mitigate vulnerabilities in system security architectures.
• Interface with the Information System Security Manager (ISSM), program managers, system stakeholders, and external contractors to coordinate cybersecurity requirements and architecture flow down from the system level to individual elements of the system.
• Assist in preparation of reports, correspondence, or technical studies.
• Supervise junior Cybersecurity Analysts with providing cybersecurity engineering support for system engineering to ensure systems are engineered within DoD Instruction (DoDI) 8510.01.
• Perform other job-related duties, as required.
Each employee must read, understand, and implement the general and specific operational, safety, quality, and environmental requirements of all plans, procedures, and policies pertaining to their job.
Work is performed in a typical office environment with no unusual hazards. Occasional lifting (up to 20 pounds), constant sitting and use of a computer terminal; constant use of sight abilities while writing, reviewing, and editing documents; constant use of speech/hearing abilities for communication; and constant mental alertness are required for this position. Routine travel to remote company work locations and work in field environment with occasional overnight assignment may be required.
REQUIREMENTS - EDUCATION, TECHNICAL AND WORK EXPERIENCE
Level I: A bachelor's degree in Computer / Information Technology / Information Assurance, or equivalent academic/technical training/certification; 2 to 3 years of experience in computer systems security, and/or related area of expertise; compliance or ability to become compliant to DoD 8570.01-M levels; possession of Security+ certification, or completion of Security+ within a designated timeframe; and a minimum of one of the following certifications: A+CE, CCNA-Security, CND, Network+CE, or SSCP are required for this position. Additional desired qualification: CEH Level II: A Bachelor's degree (master's degree is preferred) in computer / information technology / information assurance focused on cybersecurity, or equivalent academic/technical training/certification; 6 to 10 years of experience in computer systems security, and/or related area of expertise; DoD 8570.01-M levels compliance; a Security+ certification; and other industry standard certificates such as CASP+CE, CCNP Security, CISA, CISSP, GCED, or GCIH, CEH, CCNA, and CySA+ are required for this position. Additional desired qualifications include CEH (Master) or CERP. In addition, a Cybersecurity Analyst must possess the following qualifications:
• Conceptual knowledge of Risk Management Framework (RMF) process, eMASS, ACAS, SCAP, STIG, Cyber Risk Assessments (CRAs), Cyber Table Top (CTT), or related process.
• Robust conceptual and practical understanding of IT infrastructure designs, technologies, products, and services.
• Experience supporting various system configurations such as standalone, local area networks (LANs), and wide area networks (WANs).
• Experience formulating and/or interpreting cyber threat analysis of adversary techniques, tactics, and procedures used to disrupt computer networks.
• Excellent written and verbal communication skills, analytical ability, judgment, and the ability to work effectively with the customer and Cybersecurity Engineering Support Team.
• Ability to plan, organize, and work under strict deadlines.
• Experience with planning, designing, executing, and assessing discussion-based exercises. DISCLAIMER The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of persons so classified. Tasking is in support of a federal government contract that requires U.S. citizenship. Some jobs may require a candidate to be eligible for a government security clearance, state-issued driver's license or other licenses/certifications, and the inability to obtain and maintain the required clearance, license or certification may affect an employee's ability to maintain employment. Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled