Cybersecurity Specialist

Overview

Cybersecurity Specialist (EDOS-2025-24199):

Bowhead is seeking a skilled full-time Cybersecurity Analyst is responsible for ensuring GWS fleet and land-based configurations are assessed and authorized with respect to Department of Defense (DOD) Cybersecurity policies.

Responsibilities

The Cyber Security Specialist will be assigned to review and maintain the Cyber Authorization-to-Operate (ATO) packages for the variety of the MK160 configurations. They will have experience in Risk Management Framework (RMF) cyber package development and maintenance preferably in DoD programs.

• Knowledge of cyber threats and vulnerabilities.
• Knowledge of specific operational impacts of cybersecurity lapses.
• Knowledge of host/network access control mechanisms (e.g., access control list, capabilities list).
• Knowledge of cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
• Knowledge of network traffic analysis methods.
• Knowledge of Virtual Private Network (VPN) security.
• Knowledge of transmission records (e.g., Bluetooth, Radio Frequency Identification (RFID), Infrared Networking (IR), Wireless Fidelity (Wi-Fi). paging, cellular, satellite dishes, Voice over Internet Protocol (VoIP)), and jamming techniques that enable transmission of undesirable information, or prevent installed systems from operating correctly.
• Knowledge of network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML).
• Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
• Knowledge of different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks).
• Knowledge of application security risks.
• Knowledge of Linux.

Qualifications

• DoDM 8140.03 certified, (any IAT level 2 certification will meet requirement)
• Seven (7) years of professional experience as a Cybersecurity Specialist with a specialization in cross domain solution implementation.
• Experience to include computer networking concepts and protocols, and network security methodologies experience.

• Knowledge of conducting application vulnerability scans using Assured Compliance Assessment Solution (ACAS) tools, revising artifacts, applying Security Technical Implementation Guides (STIGs), and is proficient with eMASS/eMASSter.
• Knowledge and experience in gun weapon systems is a plus
• Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth & concept of zero trust).
• Experience working with Intrusion Detection System (IDS)/Intrusion Prevention System (IPS) tools and applications.
• Experience working with network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
• Knowledge of system administration, network, and operating system hardening techniques.
• Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems.
• Experience utilizing Microsoft Visio for creating network boundary diagrams

Physical Demands:

• Must be able to lift up to 25 pounds.
• Must be able to stand and walk for prolonged amounts of time.
• Must be able to twist, bend and squat periodically.

SECURITY CLEARANCE REQUIREMENTS: Must currently hold a security clearance at the Secret level.  US Citizenship is a requirement for Secret clearance at this location.

#LI-BG1