Vacancy expired!
RESPONSIBILITIES:
Kforce has a client that is seeking a Sr. Cyber Security Analyst in Chevy Chase, MD.
Responsibilities:
Coordinate, maintain, change, and keep updated, the Risk Management Framework (RMF) Assessment and Authorization (A&A) packages for the five enclaves administered by AFOSI
Develop and complete System Security Documents in accordance with the RMF Process. Monitor policy for the IT Enterprise Cyber Surety Division relating to the compliance, validation, and assessment of the four networks (NIPRNET, SIPRNET, SAPnet and JWICS) and Major Information Technology Systems (MITS)
Maintain and update HQ's AFOSI database for assessing/managing risk, and authorizations for all AFOSI data networks
Implement cyber security controls and assist AFOSI customers with the implementation on cyber security controls where the cyber security controls fall outside of the contractor's area of responsibility
Continuously monitor for control compliance and take immediate actions to bring systems into compliance
Ensure that all application deliverables comply with the DISA Application Security & Development and Database STIG, which includes the need for source code scanning and a Web Penetration Test to mitigate vulnerabilities (including as examples, SQL injections, cross-site scripting, and buffer overflows)
Ensure successful implementation and tracking of all Network Tasking Orders (NTO), Maintenance Tasking Orders (MTO), Time Compliance Network Orders (TCNO), NOTAM, Time Compliance Technical Order (TCTO), Data Call Orders (DCO) for the systems included in the five AFOSI enclaves
Perform the Information Assurance Vulnerability Management (IAVM) process by ensuring systems and networks maintain compliance with vulnerabilities
REQUIREMENTS:
Bachelor's degree in a related field is desired
Must be IAT Level III (CISSP, CASP+ CE, CISA, GCED, GCIH, or CCNP Security) certified
10+ years of experience in Cybersecurity
Extensive experience with Risk Management Framework (RMF), STIGs, and cyber security controls
Experience working with Enterprise Mission Assurance Support Service (eMASS)
Experience performing IAVA compliance audits using DISA tools such as SCAP
Experience performing vulnerability and risk assessment using DISA's Assured Compliance Assessment Solution (ACAS) suite or Nessus Security Scanner
Strong desktop application administration experience to include Microsoft Office, web browsers, and anti-virus applications
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.