- DCSA requires Cybersecurity Cloud support to maintain IT infrastructure, applications, and any new development projects in the cloud. As such, technical analysis, research, evaluation, and technical guidelines shall be performed to accomplish the needed support. The workload for the Cybersecurity Analyst will vary depending on the number of active developments including Federal Risk and Authorization Management Program (FedRAMP) and Risk Management Framework (RMF) governance tier level as well as other technical evaluations required by DCSA.
- Prior support of FedRAMP activities for cloud hosted systems such as eMASS Package (ex: Readiness Assessment Report (RAR), System Security Plan (SSP), Plan of actions Milestones (POA M), etc.
- Review, Audit, and validate compliance of DCSA systems Secure Cloud Computing Architecture (SCCA) to ensure cloud systems connections to the Boundary CAP (BCAP) and Virtual Datacenter Security Stack(VDSS) are implemented in accordance with the cloud Security Requirements Guide (SRG) including support for the internal implementation of the Visual Data Management System (VDMS) solutions internally.
- Perform periodic cyber security control assessments of IT cloud systems, identify potential risks and gaps, and make recommendations and implement cloud security improvements based on industry standards and best practices.
- Perform Cyber Security Impact Assessments and Risk Assessments for new and existing cloud systems, determine security posture and viability for organizational use, and make recommendations for cloud security architectures and controls.
- Provide support for the internal Information Security Continuous Monitoring Program for authorization to operate and ongoing authorization approvals for cloud-based IT systems.
- Experience working withThird Party Assessment Organizations (3PAO)
- Participation with the DISA Cloud Joint Verification Team (JVT) Team
- Assist the Product Managers (PMs) and/or Program Management Office (PMO) with cyber security audits and assessments of cloud systems including programmatic reviews and management of corrective action plans.
- Participated in reviews of Information System Agreement (ISA) / Memorandum of Agreement (MOA), Whitelisting, etc.
- Worked with the solution engineers to identify best practices and methods required by the FedRAMP PMO to configure and operate within the NIST SP 800 series of controls.
- Assist with non-cloud systems authorization efforts utilizing the Risk Management Framework (RMF).
- Demonstrated experience with research and analysis of Commercial-Off-The-Shelf (COTS) and Government-Off-The-Shelf (GOTS) and IA-enabled products as part of the security architecture and ensure products are National Security Telecommunications and Information Systems Security Policy Number 11 (NSTISSP-11) compliant and validated via the NIAP Common Criteria Evaluation and Validation Scheme or NIST Federal Information Processing Standards (FIPS) Cryptographic Module Validation Program (CMVP).
- Hybrid work schedule available dependent on work demands.
- At least three (3) Years of Cloud Cybersecurity experience.
- Be able to maintain TS/SCI clearance and access to require to DoD systems including NIPRNet, SIPRNet, and JWICS.
- Knowledge of Federal/DoD IT and Cloud security policies, IT configuration tools, Network Security, and other applicable Cybersecurity Policies.
- Understanding and familiarity with cloud architectures (e.g., SaaS, PaaS, IaaS), common commercial cloud systems (e.g., AWS, Microsoft 365, etc.) as well as specific DOD cloud architecture BCAP, ICAP, SCCA, cloud security solutions (e.g., Cloud Access Security Broker, Multi-factor Authentication, Zero Trust Architecture).
- Understanding of DOD cyber security standards and methodologies including NIST Cyber Security Controls, the FedRAMP, the DODI RMF, FISMA, and NIST Risk Management.
- Excellent communication (written and oral) and interpersonal skills.
- At least an Associates Bachelor's Degree, in Cybersecurity, and/or Information Systems Management
- Bachelor's Degree, in Cybersecurity, and/or Information Systems Management preferred
- Required to have a cloud certification and DD8140/DoD M IASAE level I or IAM level II or IAT level II at time of onboarding.
- Cloud certifications preferred.
- Active TS with the ability to obtain a SCI Clearance
-
Cybersecurity Analyst
2 weeks ago
ASRC Federal Quantico, United StatesASRC Federal Broadleaf Division is actively hiring a Cybersecurity Analyst in support of our DCSA program based out of Quantico VA. Remote flexibility available · Some Telework offered with a requirement to be onsite at least two (2) days a week at Quantico Marine Corps Base VA. ...
-
Cybersecurity Analyst
2 weeks ago
ASRC Federal Holding Company, LLC Quantico, United StatesASRC Federal Broadleaf Division is actively hiring a Cybersecurity Analyst in support of our DCSA program based out of Quantico VA. Remote flexibility available Some Telework offered with a requirement to be onsite at least two (2) days a week at Qu Cybersecurity Analyst, Securit ...
-
Cybersecurity Analyst Senior
3 weeks ago
Science Applications International Corporation Quantico, United StatesThe Cybersecurity Analyst will provide support for a program, an organization, system, or an enclave; provides support for proposing, coordinating, implementing, and enforcing information systems or enclave cybersecurity policies, standards, and meth Cybersecurity Analyst, Securi ...
-
Cybersecurity RMF Analyst
1 week ago
ASRC Federal Holding Company, LLC Quantico, United StatesASRC Federal Broadleaf Division is actively hiring a Cybersecurity Analyst in support of our DCSA program based out of Quantico VA. Sign-on Bonus Available This is primarily a Telework position with a requirement to be onsite at least two (2) days a Cybersecurity, Cybersecurity A ...
-
Cybersecurity Analyst Senior
2 weeks ago
SAIC Quantico, United States· Introduction · Make a difference for national security by joining a team of dedicated IT professionals who will sustain, modernize and transform the enterprise IT capabilities for the Defense Counterintelligence and Security Agency (DCSA).The National Security & Space Sector ...
-
Cybersecurity Analyst Senior
3 weeks ago
SAIC Career Site QUANTICO, United StatesDescription · Introduction · Make a difference for national security by joining a team of dedicated IT professionals who will sustain, modernize and transform the enterprise IT capabilities for the Defense Counterintelligence and Security Agency (DCSA). The National Security & ...
-
Cybersecurity Analyst
2 weeks ago
Precise Systems Washington, United StatesAs a solutions-based company, Precise Systems is focused on innovation in support of the warfighters and aligning our expertise to deliver the highest quality of service. Powered by our highly skilled workforces, we provide expert consultation on network and weapons systems acqui ...
-
Cybersecurity Analyst
2 weeks ago
General Dynamics Information Technology Springfield, United StatesReporting to the Lead of Focused Operations, under the Branch Chief of Defensive Cyber Operations, you will be tasked with developing and maintaining defensive countermeasures for the enterprise. Working within a Fusion model will collaborate with other teams within Focused Opera ...
-
Cybersecurity Analyst
4 days ago
WarCollar Industries Chantilly, United States Full timeJob Description · Penetration Tester -- Performs technical assessments against customer systems in support of certification and accreditation. Penetration tester uses a combination of automated tools and technical know-how to attempt to discover vulnerabilities in the security of ...
-
Cybersecurity Analyst
2 weeks ago
Northwest Talent Solutions LLC Washington, United StatesJob Description · Job DescriptionCompany Overview: · Northwest Talent Solutions LLC is a leading provider of staffing and recruitment services within the private industry and public sector. Our mission is to connect talented individuals with top companies in the world, helping bo ...
-
Cybersecurity Analyst
3 weeks ago
Rare Arlington, United StatesPosition Overview · About RareRare inspires change so people and nature thrive. For over 45 years, across 60 countries, we have inspired and empowered millions of people and their communities to shift their behaviors and practices to protect our shared planet. We are a global lea ...
-
Cybersecurity Analyst
1 week ago
General Dynamics Information Technology Springfield, United StatesReporting to the Lead of Focused Operations, under the Branch Chief of Defensive Cyber Operations, you will be tasked with developing and maintaining defensive countermeasures for the enterprise. Working within a Fusion model will collaborate with other teams within Focused Opera ...
-
Cybersecurity Analyst
4 weeks ago
By Light Professional IT Services Alexandria, United StatesOverview · The Army's Tactical Exploitation of National Capabilities (TENCAP) mission is to enable the Army to rapidly exploit and influence National capabilities and architectures. Army TENCAP conducts advanced development and rapid prototyping to enhance, inform, and modernize ...
-
Cybersecurity Analyst
3 weeks ago
By Light Professional IT Services Alexandria, United StatesOverview: · The Armys Tactical Exploitation of National Capabilities (TENCAP) mission is to enable the Army to rapidly exploit and influence National capabilities and architectures. Army TENCAP conducts advanced development and rapid prototyping to enhance, inform, and modernize ...
-
Cybersecurity Operations Analyst
3 weeks ago
Booz Allen Hamilton Arlington, United States Full timeJob Number: R0193723 · Cybersecurity Operations AnalystThe Opportunity: · You'll support a Chief Information Officer (CIO) and Chief Information Security Officer (CISO) as a Cybersecurity Operations Analyst focused on liaison between the strategic and operational levels, with occ ...
-
Cybersecurity Policy Analyst
3 weeks ago
Booz Allen Hamilton Alexandria, United States Full timeJob Number: R0194948 · Cybersecurity Policy AnalystThe Opportunity: · When our country's cybersecurity is on the line, simply reacting is not enough. We need a plan. And when that plan is critical to protecting our defense infrastructure, we need strategic policy development. Tha ...
-
Cybersecurity Compliance Analyst
3 weeks ago
Booz Allen Hamilton Arlington, United States Full timeJob Number: R0194379 · Cybersecurity Compliance AnalystKey Role: · Support a Cybersecurity Compliance process and tracking team in a fast-paced cybersecurity environment delivering Cyber Task Order (CTO) and Cyber Scorecard reports. Perform compliance monitoring in various areas, ...
-
Operations Cybersecurity Analyst
1 day ago
Leidos Alexandria, United StatesThe Leidos Defense Group is seeking an experienced, professional Operations Cybersecurity Analyst to support a DoD organization. A successful candidate needs to be a high-energy, well-organized, detail-oriented, forward-thinking, analyst and planner with executive-level experienc ...
-
Operations Cybersecurity Analyst
3 weeks ago
Leidos Alexandria, United States· The Leidos Defense Group is seeking an experienced, professional Operations Cybersecurity Analyst to support a DoD organization. A successful candidate needs to be a high-energy, well-organized, detail-oriented, forward-thinking, analyst and planner with executive-level experi ...
-
Cybersecurity Analyst
3 weeks ago
Gray Tier Technologies LLC Arlington, United StatesCybersecurity Analyst · Gray Tier Technologies is seeking an experienced Cybersecurity Analyst on The Enterprise and Cyber Solutions (E&CS) Operation. The team is seeking a Cybersecurity Analyst to support the implementation and administration of information security policies, pr ...
FedRAMP Cloud Cybersecurity Analyst(Primarily Remote) - Quantico, United States - ASRC Federal Holding Company
Description
Job DescriptionASRC Federal Broadleaf Division is hiring a FEDRAMP Cloud Cybersecurity Analyst in support of DCSA at Quantico.
OVERVIEW:
BASIC QUALIFICATIONS:
ASRC Federal and its Subsidiaries are Equal Opportunity / Affirmative Action employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.