Scientific Research Corporation · 3 hours ago
Cyber Security Analyst - ISSO
US-SC-North Charleston
Full-time
Onsite
Senior Level
5+ years expScientific Research Corporation is an advanced information technology and engineering company that provides innovative products and services to government and private industry. As a Cyber Security Analyst - ISSO, you will be responsible for supporting the information system owner to complete security assessment, continuous monitoring, and configuration management responsibilities.
Biotechnology
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Performing monthly compliance assessments using tools, such as Assured Collaborative Computing Security Services (CS2) audit files, Secure Content Automation Protocol (SCAP), and Trellix Virus Scan Enterprise, reviewing, documenting, and maintaining all results
Verifying patches and virus definitions to the systems using existing automated tools
Adhering to predefined configuration management and change management policies and procedures for authorizing software prior to its implementation on systems
Ensuring that audit trails (system logs) are reviewed as required; audit records will be maintained for future reference
Assessing NCS family of systems in accordance with NIST, NSA and NAVINTEL IA guidance
Recommending authorization of systems to the Designated Authorizing Official (DAO) as a certified trusted agent
Reporting security incidents in accordance with the command's incident response plan
Ensuring systems are operated, used, maintained, and disposed of in accordance with all applicable security policies and practices
Qualification
Required
Must possess an active Top Secret/SCI clearance
A minimum of five years of cybersecurity experience
Must currently hold a DoD 8140-compliant IAT II certification (SSCP or Security+CE with appropriate CE/OS certificate), and IAM II certification (CASP CE) or be able to obtain within six months
Experience creating complete ATO packages using Risk Management Framework process
Experience with eMASS, SSPs, POA&Ms, VRAM, ACAS/Nessus, XACTA, SCAP, SCC Tool, Benchmarks, and STIG Viewer
Successfully complete a NCIS Polygraph within one year of employment
Developed communication skills and the ability to express thoughts and ideas clearly and concisely
Be a team player, dedicated to program support, capable of multitasking and working several complex and diverse tasks with simultaneous or near simultaneous deadlines
Be a self-starter who is accountable and requires minimal direction and supervision
Be open to new and innovative ideas
Must be able to be appointed ISSO for NCS systems within six months of employment
Bachelor's degree in information systems, computer science, or similar
SRC IS A CONTRACTOR FOR THE U.S. GOVERNMENT. THIS POSITION WILL REQUIRE U.S. CITIZENSHIP AS WELL AS A U.S. GOVERNMENT SECURITY CLEARANCE AT THE TOP SECRET / SCI LEVEL with CI POLY ELIGIBILITY
Preferred
AWS Certified Cloud Practitioner
Ability to create and modify authorization boundary and data flow diagrams using Microsoft Visio
Knowledge of container security, ability to assess container hardening per NIST 800-190, experience assessing container hosting environments, and knowledge of container and code analysis tools such as JFrog Xray, Trivy, and SonarQube
Knowledge of GovCloud, Navy Cloud policies, and DISA Cloud Computing Security Requirements Guide
Experience in a Linux environment is preferred
Experience with WSUS, YUM
Benefits
Medical, dental, and vision plans
401(k) with a company match
Life insurance
Vacation and sick paid time off accruals starting at 10 days of vacation and 5 days of sick leave annually
11 paid holidays
Tuition reimbursement
Company
Scientific Research Corporation
Scientific Research Corporation provides innovative solutions to the U.S. government, private industry, and international markets.
1001-5000 employees
Funding
Current Stage
Late StageLeadership Team
Tim W.
Chief Operating Officer
Dolores Vogel
Learning and Development Business Partner
Company data provided by crunchbase