Senior Cyber Security Analyst

Responsibilities…

• Works to maintain ATOs for SaaS, PaaS, and Add-On products throughout their product lifecycle.
• Maintain Plan of Action & Milestone (POA&M) for the SaaS, PaaS product through the remediation and Mitigation efforts.
• Assist with identifying and supporting what changes or processes will satisfy the organization's security requirements.
• Supporting technical solutions that address vulnerability findings and security gaps.
• Analyzing current system designs and requirements to ensure all current systems and system updates meet goals and expectations.
• Evaluating information security technologies and create recommendations and plans for implementation.
• Applying experience and knowledge of NIST Risk Management Framework (RMF) and how federal agencies apply this to secure their information systems.
• Applying experience and knowledge with Assessment and Authorization (A&A) including Authority To Operate (ATO) packages and its alignment with RMF processes.
• Conduct compliance reviews to ensure all products developed are in accordance with VA security standards. Perform qualitative assessment of current Cloud Computing Frameworks particularly as it relates to security in cloud environments.

Requirements...

• Bachelor's Degree OR 4 years of related work experience.
• Must have at least 8 years of related security experience, preferably for a federal or government agency.
• Requires strong analytical and organizational skills to include strong attention to detail.
• Strong interpersonal skills and ability to work collaboratively in a dynamic team environment.
• Excellent communication and technical documentation skills.
• Ability to read technical documentation and identify alignment and/or conflict with process requirements and policies. Ability to translate these findings into customer communications along with action-items to resolve potential issues.
• Ability to prioritize and work on multiple projects and initiatives simultaneously and adapt to changing priorities and tight deadlines.
• Superb soft skills including the ability to gain the trust of stakeholders and senior management and negotiate priorities with external teams
• Working knowledge of eMASS or similar systems.
• Experience with product management tools and practices, can interface directly with product teams to assign work/influence backlog for security needs
• Ability to articulate security control-level concerns to both technical and non-technical audience

Desired Skills:

• Experience supporting Department of Veterans Affairs (VA) and/or other federal organizations.
• Experience hands on network security to include security controls, network architecture and vulnerability management.

Years of Experience: Must have at least 8 years of related security experience, preferably for a federal or government agency.

Education: Bachelor's Degree OR 4 years additional years of work experience.

Location: Fully Remote within the United States.

Clearance: Ability to obtain a Public Trust security clearance.