ISSO Cyber Security Analyst
Apex Systems
Charleston, South Carolina
cyber security
security
analyst
security
management
ncs
navy
tools
apex
engineering
information systems
assessment
continuous monitoring
January 12, 2023
Apex Systems
Charleston, South Carolina
Job#: 1307453
Apex Systems is hiring, please email {removed} if interested
ISSO Cyber Security Analyst
PRIMARY DUTIES & RESPONSIBILITIES:
The SRC Navy Cryptologic Systems (NCS) Directorate supports a number of US Navy Programs, including the Cryptologic Carry-On Program (CCOP), Ship's Signal Exploitation Equipment (SSEE) Program, and Distributed Common Ground System - Navy (DCGS-N). We specialize in engineering support, software development, integration, testing, technical writing, Cybersecurity (administration, policy and engineering), production, technical support, warehousing, drafting, repair and management.
As an NCS Information Systems Security Officer (ISSO), this position is responsible for supporting the Information System Owner to complete security assessment, continuous monitoring, and configuration management responsibilities of NCS.
Responsibilities include, but are not limited to:
Develops and updates assessment and authorization documentation (Body of Evidence) for management and continuous monitoring of information systems
Performs ongoing compliance assessments using tools, such as Assured Compliance Assessment Solution (ACAS), Collaborative Computing Security Services (CS2) audit files, Secure Content Automation Protocol (SCAP), and McAfee Virus Scan Enterprise. Review, document, and maintain all results
Verify patches and virus definitions to the systems using existing automated tools
Adheres to pre-defined configuration management and change management policies and procedures for authorizing software prior to its implementation on systems
Performs security audits using to track multiple events including any signs of inappropriate or unusual activity, intrusion events, data transfers, etc
Performs security assessments of NCS Family of Systems in accordance with NIST, Navy, NSA and NAVINTEL IA guidance
Works with system engineers to take corrective action to resolve identified problems
Performs Site Based Security Assessments (SBSAs) of systems and recommending authorization to the Designated Authorizing Official (DAO) as a certified Trusted Agent
Reports security incidents in accordance with the Command Incident Response Plan
Ensures systems are operated, used, maintained, and disposed of in accordance with all applicable security policies and practices
MINIMUM SKILLS & REQUIREMENTS:
Must possess an active Top Secret/SCI clearance
2-5 years of Cybersecurity experience
Must currently hold a DoD 8570-compliant IAT II certification (SSCP or Security+CE with appropriate
CE/OS certificate), and IAM II certification (CAP or CASP CE) or be able to obtain within six months
CE/OS certificate may include Windows or Linux
Experience with System Security Plans (SSPs), POA&Ms, ACAS/Nessus, SCAP, and DISA STIGs
Experience with Risk Management Framework processes Have developed communication skills and the ability to express thoughts and ideas clearly and concisely
Have developed communication skills and the ability to express thoughts and ideas clearly and concisely
Must be a team player, dedicated to program support, capable of multitasking and working several complex and diverse tasks with simultaneous or near simultaneous deadlines
Be a self-starter who is accountable and requires minimal direction and supervision
Be open to new and innovative ideas
Must be able to be appointed ISSO for NCS systems within 6-months of employment
DESIRED SKILLS & REQUIREMENTS:
Extensive training or experience with Windows and UNIX based Information Systems standards with a working knowledge of networking devices, web servers, databases and related technologies
Experience with creation and maintenance of network topology and data flow diagrams using Visio or similar tools
Experience with NAVINTEL IA and NSA Enterprise Services: Continuous Monitoring
Experience desired with the following systems/platforms/tools: XACTA; XACTA 360 (preferred); eMASS; HBSS; ACAS; Nessus; SPLUNK
EEO Employer
Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at {removed} or {removed}.
Employee Type:
Contract
Location:
Charleston, SC, US
Job Type:
Engineering and Technicians
Date Posted:
November 3, 2022
Apex Systems is hiring, please email {removed} if interested
ISSO Cyber Security Analyst
PRIMARY DUTIES & RESPONSIBILITIES:
The SRC Navy Cryptologic Systems (NCS) Directorate supports a number of US Navy Programs, including the Cryptologic Carry-On Program (CCOP), Ship's Signal Exploitation Equipment (SSEE) Program, and Distributed Common Ground System - Navy (DCGS-N). We specialize in engineering support, software development, integration, testing, technical writing, Cybersecurity (administration, policy and engineering), production, technical support, warehousing, drafting, repair and management.
As an NCS Information Systems Security Officer (ISSO), this position is responsible for supporting the Information System Owner to complete security assessment, continuous monitoring, and configuration management responsibilities of NCS.
Responsibilities include, but are not limited to:
Develops and updates assessment and authorization documentation (Body of Evidence) for management and continuous monitoring of information systems
Performs ongoing compliance assessments using tools, such as Assured Compliance Assessment Solution (ACAS), Collaborative Computing Security Services (CS2) audit files, Secure Content Automation Protocol (SCAP), and McAfee Virus Scan Enterprise. Review, document, and maintain all results
Verify patches and virus definitions to the systems using existing automated tools
Adheres to pre-defined configuration management and change management policies and procedures for authorizing software prior to its implementation on systems
Performs security audits using to track multiple events including any signs of inappropriate or unusual activity, intrusion events, data transfers, etc
Performs security assessments of NCS Family of Systems in accordance with NIST, Navy, NSA and NAVINTEL IA guidance
Works with system engineers to take corrective action to resolve identified problems
Performs Site Based Security Assessments (SBSAs) of systems and recommending authorization to the Designated Authorizing Official (DAO) as a certified Trusted Agent
Reports security incidents in accordance with the Command Incident Response Plan
Ensures systems are operated, used, maintained, and disposed of in accordance with all applicable security policies and practices
MINIMUM SKILLS & REQUIREMENTS:
Must possess an active Top Secret/SCI clearance
2-5 years of Cybersecurity experience
Must currently hold a DoD 8570-compliant IAT II certification (SSCP or Security+CE with appropriate
CE/OS certificate), and IAM II certification (CAP or CASP CE) or be able to obtain within six months
CE/OS certificate may include Windows or Linux
Experience with System Security Plans (SSPs), POA&Ms, ACAS/Nessus, SCAP, and DISA STIGs
Experience with Risk Management Framework processes Have developed communication skills and the ability to express thoughts and ideas clearly and concisely
Have developed communication skills and the ability to express thoughts and ideas clearly and concisely
Must be a team player, dedicated to program support, capable of multitasking and working several complex and diverse tasks with simultaneous or near simultaneous deadlines
Be a self-starter who is accountable and requires minimal direction and supervision
Be open to new and innovative ideas
Must be able to be appointed ISSO for NCS systems within 6-months of employment
DESIRED SKILLS & REQUIREMENTS:
Extensive training or experience with Windows and UNIX based Information Systems standards with a working knowledge of networking devices, web servers, databases and related technologies
Experience with creation and maintenance of network topology and data flow diagrams using Visio or similar tools
Experience with NAVINTEL IA and NSA Enterprise Services: Continuous Monitoring
Experience desired with the following systems/platforms/tools: XACTA; XACTA 360 (preferred); eMASS; HBSS; ACAS; Nessus; SPLUNK
EEO Employer
Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at {removed} or {removed}.
Employee Type:
Contract
Location:
Charleston, SC, US
Job Type:
Engineering and Technicians
Date Posted:
November 3, 2022
by Jobble
Report this job