Cybersecurity Analyst

Job Description

Imagine One Technology & Management, Ltd. Is seeking a highly qualified Cybersecurity Analyst to support an effort within Naval Information Warfare Center (NIWC) Atlantic in North Charleston, South Carolina. The ideal candidate will have demonstrated experience supporting Navy and/or United States Marine Corps (USMC) Programs of Record (PoRs), Risk Management Framework (RMF), and Command, Control, Communications, Computers, Intelligence, Surveillance, and Reconnaissance (C4ISR) programs. The successful candidate will leverage cybersecurity expertise to protect and enhance the security posture of various DoD systems.

Key Responsibilities:

Provide project support to include but not limited to executing cybersecurity assessments in compliance with RMF guidelines, ensuring Navy/USMC systems meet DoD standards. Conduct vulnerability assessments using Marine Corps Compliance and Authorization Support Tool (MCCAST), Assured Compliance Assessment Solution (ACAS), and Security Content Automation Protocol (SCAP) tools. Perform continuous monitoring of security controls and reporting and tracking vulnerabilities.

Qualifying candidates must meet or exceed the following requirements:

Experience Requirements:

Minimum of three (3) years supporting a cybersecurity authorization framework similar to Risk Management Framework (RMF)

Minimum of three (3) years of technical experience supporting C4ISR engineering, software development and integration programs, or similar USMC / Navy efforts, to include:

Administering, operating, or assessing information systems

Familiarity with administering, operating, and assessing MCCAST, ACAS / Tenable.SC, SCAP, Security Technical Implementation Guides, Security Requirements Guides (SRGs)

Developing cybersecurity authorization artifacts by reviewing engineering artifacts and interviewing engineering stakeholders

Planning, overseeing, and executing security control assessments to include policy reviews, architecture reviews, vulnerability scanning, and configuration audits

Conducting NIST-based risk assessments on non-compliant findings using Common Vulnerability Scoring System (CVSS) framework and USMC procedures

Additional / concurrent experience to include:

Administering, operating, or assessing Unix-based systems, such as Red Hat Enterprise Linux, in a command line environment

Conducting research on emerging cybersecurity requirements and initiatives from NIST, the DoD, USMC and related organizations

Ensuring key milestones for achieving and maintaining system/application authorizations are planned and executed

Providing recommendations to system stakeholders on how best to meet new requirements and initiatives

Developing, overseeing, and executing continuous monitoring program for system(s) being operated by the integrated product team; to include laboratory system(s)

Ability to maintain current knowledge of relevant technologies and subject areas, and research new and upcoming technologies

Developing and documenting processes and completing tasks within an Agile / SAFe environment

Education Requirements:

Bachelor of Science in Engineering, Physics, Network Security, Physical Sciences, Computer Science, Mathematics, or Psychology from an accredited college or university

NOTE: Psychology is acceptable only if the degree included courses in Human Systems Interface (HSI) and Human Factors Engineering (HFE)

Desired certifications:

Agile / SAFe certification(s)

Completed or working towards completing the following certifications: Cybersecurity Workforce compliant certification at the IAT/IAM Level 2 or higher; Security + required, either CISSP, GSLC or CISM

Working towards the following certifications within one and a half year after assuming duties: Professional Software Engineering Master (PSEM)/ Certified Software Development Professional (CSDP) or with COR approval complete a vendor/platform specific certification (e.g., Microsoft Certified Solutions Developer (MCSD), Microsoft Certified Applications Developer (MCAD), Microsoft Certified Database Administrator (MCDBA), Sun Certified Professional (SCP), Red Hat Certification Program (RHCP), CISCO Certified Network Professional (CCNP), CISCO Certified Design Professional (CCDP), Oracle Certified Professional (OCP), etc.)

Additional Requirements:

Experience in technical specifications development, process analysis and design, technical problem solving, and analytical/logical thinking

Proficient with Microsoft Office products (Word, Excel, PowerPoint, Outlook, Teams) and Adobe Acrobat

Demonstrated experience with SharePoint, JIRA, Confluence, Intelink, Naval LIFT, CMPro, or similar products

High-level attention to detail and the ability to track various projects, tasks, schedules, and competing priorities

Proven ability to collaborate and work effectively in a team environment

Strong oral and written communication skills

Process-oriented with strong organizational and time management skills

Security Requirements:

U.S. Citizen

Active SECRET clearance

Additional Information:

This is not a remote position.

Imagine One Technology & Management, Ltd., offers a full package of benefits and competitive salary, excellent group medical, vision, and dental programs. 401K savings plan; $4K annual tuition reimbursement ($5K if pursuing master’s degree); employee training, development, and education programs; profit sharing; advancement opportunities; and much more!

ISO 9001:2015, ISO 20000-1:2018, ISO 27001:2013

CMMI Development and Services - Maturity Level 3

An Employee-Owned Business

EEO/Veterans/Disabled

Full-time