Cyber Intelligence Specialist (Cyber Security Analyst - ISSO)

Job Title: Spec, Cyber Intelligence (Cyber Security Analyst – ISSO)

Job Code: SAS20231008-104649

Job Location: Palm Bay, FL


Job Description:

Performs ISSO duties under the guidance of the Information System Security Manager (ISSM) on assigned government-authorized systems. Knowledgeable in information technology and security.

Essential Functions:

• Responsible for performing various scans of information systems, including vulnerability, network detection and mapping, and controlled interface scans.
• Knowledgeable on a variety of scanning tools, including Rapid 7 Nexpose, NMAP, and Nipper.
• Ability to create and interpret scan reports and recommend prioritized remediation plans.
• Ability to script and develop parsing tools preferred.
• Authoring and maintaining documentation supporting the Assessment & Authorization (A&A) of assigned systems in accordance with the Risk Management Framework (RMF) under the ICD503, JSIG and NISPOM;
• Performing security control assessments as part of the systems’ Continuous Monitoring Plan;
• Overseeing configuration management of assigned systems;
• Working with IT organization to develop device and system hardening guides following DISA and NIST guidelines;
• Auditing systems to ensure security posture integrity;
• Conducting periodic hardware/software inventory assessments;
• Identifying system security controls shortcomings and developing POA&Ms;
• Remediating control deficiencies;
• Conducting, documenting and reporting annual self-assessments; maintaining operational information security posture for a system, program, or enclave;
• Investigating security incidents such as data spills, data integrity infractions, and malicious events;
• Authoring and delivering security education and training to a range of audiences.
• Configure scan engines for vulnerability, network detection and mapping, and controlled interface scans
• Develop new concepts or standards which make significant and impactful improvements to processes, systems, solutions, or products
• This position will require candidates to have an active Top Secret security clearance with SCI and the willingness to submit to a counterintelligence (CI) polygraph investigation

Qualifications:

• Bachelor’s Degree and minimum 4 years of prior relevant experience. Graduate Degree and a minimum of 2 years of prior related experience. In lieu of a degree, minimum of 8 years of prior related experience.
• Active Top Secret security clearance with SCI (CI polygraph preferred)
• Security CE or equivalent certification
• Minimum 4 years of prior relevant experience to include experience with networking equipment; experience running vulnerability scans and interpreting results (e.g. Nessus, Rapid7, etc.); experience reviewing workstation, server, firewall, & IPS logs (e.g. Splunk); experience with SIEM, DLP, and/or UBA tools
• Experience as an ISSO managing cybersecurity on classified systems under multiple agencies’ JSIG, NISPOM Ch8, ICD 503, and/or NIST 800-53 implementations
• Experience developing, managing, and providing evidence to close POA&Ms associated with the A&A and project management processes
• Experience with diverse workstation and server operating systems, including but not limited to Microsoft and Linux offerings

Preferred Additional Skills:

• CISSP or equivalent certification
• Flexibility to adjust to changing requirements, schedules, and priorities
• Able to socialize ideas, make recommendations, and gain team consensus
• Excellent time management and task prioritization skills.
• Exceptional verbal, written, interpersonal and presentation skills, customer relationship building skills, analytical skills and ability to lead/mentor teammates.
• High level of personal motivation and initiative to learn and acquire new skills