Cyber Risk Analyst with Security Clearance

Cyber Risk Analyst Location: Offutt Air Force Base, Omaha, NE (on-site)

Clearance Required: Active Secret (or higher)

Position Type: 9 months on contract before converting to FTE of prime contractor ClearanceJobs is assisting our Government Contracting client with their search for a Cyber Risk Analyst to work onsite at Offutt Air Force Base in Omaha, NE. Job Summary: Support cyber policy and risk management efforts at the Weather Wing and local levels, in alignment with United States Air Force (USAF) and Department of Defense (DoD) cybersecurity directives. The analyst will play a key role in advising, assisting, and implementing cyber policy development and Risk Management Framework (RMF) processes in coordination with government stakeholders. Responsibilities:

• Advise and assist the government in developing Weather Wing and local cyber policies based on USAF and DoD guidance.

• Tailor existing cyber policies to incorporate new guidance and mission needs.

• Support the development of an enterprise-level cybersecurity framework encompassing all IT operating environments.

• Assist with creating RMF artifacts for each step in the RMF process, ensuring alignment with NIST and Air Force guidance.

• Aid in the development and transition of cybersecurity policies for cloud-based environments.

• Develop Tactics, Techniques, and Procedures (TTPs) with embedded risk analysis and threat hunting methodologies.

• Collaborate directly with government personnel, understanding that final approval for all policy and procedural outputs rests with the government. Required:

• Minimum 5 years of demonstrated relevant experience in Air Force Information Assurance (IA) and system accreditation or equivalent experience using National Institute of Standards and Technology (NIST) security standards.

• Active SECRET (or higher) security clearance

• Information Assurance Technical Level II (IAT Level II) certified, as defined by DoDM 8140.03 and DAFMAN 17-1305.

• Experience with the following systems and standards:

o Air Force Instruction (AFI) Series 33

o Risk Management Framework (RMF)

o eMASS accreditation system

o DISA STIGs (Defense Information Systems Agency Security Technical Implementation Guides)

• Excellent written and verbal communication skills, with the ability to produce high-quality technical documentation and briefing materials.

• Strong analytical skills related to cyber risk and threat identification. Desired:

• Familiarity with DoD cloud migration strategies and policy transitions.

Permanent