Cyber Information Assurance Analyst 2-3 - State College, United States - Applied Research Laboratory at the Penn State University

Description

JOB DESCRIPTION AND POSITION REQUIREMENTS:

The Cyber and Information Security Division of The Applied Research Laboratory (ARL) at Penn State University, is seeking an Information Systems Security Officer (ISSO) to support Information Security requirements of our unclassified and classified networks. This position is based in State College, Pennsylvania. This team helps to protect ARL's network and systems by providing proactive security measures, assessing and acting on risks, and ensuring compliance. We are looking for someone who wants to tackle a constant need to solve complex problems, is comfortable communicating and collaborating with a diverse audience, and can easily work alone or in a group.

ARL is an authorized DoD SkillBridge partner and welcomes all transitioning military members to apply.

Responsibilities include:

• Aid in the, development, validation, and submission of information system security plans, security test and evaluation plans, certification and accreditation or authorization packages, and plans of action and milestones in support of compliance requirements
• Take part in conducting, developing, planning, and coordinating risk assessments of information systems in development, test, production and research environments as required by established or newly determined compliance/audit requirements
• Conduct assessment and review of systems and networks within the environment to identify where systems/networks deviate from acceptable configurations, enclave policy, and local policy
• Aid in the development of training material related to compliance and audit requirements to assist employees in individual compliance/audits as applicable
• Complete technical requirements for networks and systems such as; vulnerability scanning, review of security/event logs, network analysis, security configuration review, and incident response on an as-needed basis

This job will be filled as a level 2 or level 3, depending upon the successful candidate's competencies, education, and experience. Typically requires a Bachelor's degree or higher plus two years of related experience, or an equivalent combination of education and experience for a level 2. A Bachelor's Degree in Cyber and Information Security, Information Technology, or Computer Science is preferred.

Required skills and experience include:

• Assessment and Authorization with experience using RMF
• Knowledge and application of NIST , NIST 800-53, CMMC, Department of Defense Directives, and regulatory requirements
• Operational experience, with familiarity in security/event log auditing
• Security plan development and/or continuous monitoring for compliance with security plans
• Policy and procedure development
• The ability to certify and maintain information security related certifications. Security+ or CISSP are the most ideal (some other useful certs, CASP, GSEC, CISM)
• Effective analytical, problem solving, and communication skills
• Efficient organizational, multitasking, and time management abilities with the aptitude to work independently, as part of a team, and across multiple teams in various disciplines

Preferred skills and experience include:

• An active TS or Secret security clearance
• Vulnerability scanning and mitigation utilizing Nessus, ACAS, or similar tool
• Windows or UNIX/Linux operating system administration
• TCP/IP network analysis and network/packet level examination tools such as tcpdump, or Wireshark
• SEIM management or use for analysis, such as Splunk or ELK
• VMWare and management of Virtual Machines
• Definition and interpretation of audit requirements
• Development and support of a certification test plans and continuous monitoring plans

Occasional travel to satellite offices in may be required.

ARL at Penn State is an integral part of one of the leading research universities in the nation and serves as a University center of excellence in defense science, systems, and technologies with a focus in naval missions and related areas.

You will be subject to a government security investigation, and you must be a U.S. citizen to apply. Employment with the ARL will require successful completion of a pre-employment drug screen.

ARL is committed to diversity, equity, and inclusion; we believe this is central to our success as a Department of Defense designated University Affiliated Research Center (UARC). We are at our best when we draw on the talents of all parts of society, and our greatest accomplishments are achieved when diverse perspectives are part of our workforce.

FOR FURTHER INFORMATION on ARL, visit our web site at