Our client, a federal contractor is seeking a Systems Security Analyst to provide support to the Client's Cross Domain Support Office (CDSO) integrating and implementing Cross-Domain Solutions (CDS) in a secure environment and implement security measures to resolve vulnerabilities, mitigate risks, and recommend security changes to system or system components. Helps mitigate/correct security deficiencies identified during security/certification testing and/or recommend risk acceptance for the appropriate senior leader or authorized representative. The contractor also performs security reviews, identifies gaps in security architecture, and assists in the development of a security risk management plan.

The position is 100% onsite at the government facility in Springfield, VA. Our client is looking to onboard as a direct employee.

Responsibilities for this position shall include but are not limited to:

- Ensure all systems- security operations and maintenance activities are properly documented and updated as necessary.
- Ensure that cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
- Apply security policies to applications that interface with one another, such as Business-to-Business (B2B) applications to meet security objectives of the system.
- Ensure that the application of security patches for commercial products integrated into system design meet the timelines dictated by the management authority for the intended operational environment.
- Integrate automated capabilities for updating or patching system software where practical and develop processes and procedures for manual updating and patching of system software based on current and projected patch timeline requirements for the operational environment of the system.
- Perform cybersecurity testing of developed applications and/or systems and properly document all systems security implementation, operations, and maintenance activities and update as necessary.
- Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
- Assess all the configuration management (change configuration/release management) processes.
- Develop procedures and test fail-over for system operations transfer to an alternate site based on system availability requirements.

Required Skills

- Must be US Citizen due to government clearance requirement
- Active TS/SCI Clearance
- Bachelor-s degree or higher from an accredited college or university. (Prefer an accredited Computer Science, Cyber Security, Information Technology, Software Engineering, Information Systems, or Computer Engineering degree, or a degree in a Mathematics or Engineering field.
- Must have one of the following Certs: IAT, IAM, or IASAE Level 3
- Knowledge of computer networking concepts and protocols, network security methodologies, and risk management processes (e.g., methods for assessing and mitigating risk).
- Experience with laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
- Expertise with assessing the impact of cyber threats and vulnerabilities and the potential impacts of cybersecurity lapses.
- Expertise with computer algorithms, encryption algorithms, cryptography and cryptographic key management concepts, database systems, and human-computer interaction principles.
- Knowledge of mathematics (e.g., logarithms, trigonometry, linear algebra, calculus, statistics, and operational analysis).
- Experience with network access, identity, and access management (e.g., public key infrastructure, auth, OpenID, SAML, SPML), operating systems, and how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).
- Knowledge of parallel and distributed computing concepts, security system design tools, methods, and Techniques, and software engineering.
- Experience with network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
- Knowledge of security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model).
- Understanding of how to develop and apply user credential management and implement enterprise key escrow systems to support data-at-rest encryption