Please scroll down, To apply

Cloud Security Control Analyst with Security Clearance

hiring now

ManTech International

2024-11-05 18:44:02

Job location Quantico, Virginia, United States

Job type: fulltime

Job industry: I.T. & Communications

Job description

Description & Requirements We have a current opening for a Senior-level Cybersecurity Analyst to perform analysis of cybersecurity packages using the Risk Management Framework (RMF) process to achieve an Authority to Operate (ATO) while supporting the Marine Corps Systems Command (MCSC) in Quantico, VA. This position works closely with government officials and senior engineers. Security Clearance : DoD Secret with the ability to obtain Top Secret Responsibilities include, but are not limited to: Ensure system documentation reflects current system security configurations to include hardware and software components, data flow, interconnections, and ports, protocols, and services, etc. Perform Compliance reviews and analyses to verify compliance with federal
requirements (e.g., EO, OMB Memos, A-130, NIST SP 800-37, 800-53, FIPS199, and FIPS-200, etc.). Perform analyses of security implementations for assigned systems pertaining to people, processes, and technologies, identify gaps and recommend solutions. Conduct daily, weekly, monthly compliance monitoring of assigned systems for all RMF steps. Assist in the preparation and review of documentation to include System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), Authorization Recommendations (ARs), Cybersecurity Strategies (CSSs), and other A&A artifacts. Research major obstacles related to the ever-changing FISMA requirements,
which customers will need to overcome and provide recommendations. Provide updates and input to the GRC SharePoint sites to include document
uploads, page updates, access requests, permissions, etc. on an ongoing basis. Minimum Requirements: Bachelors Degree and at least 10 years of related experience to include the following (additional 4 years of experience can be substituted in lieu of degree): Must be compliant with DoD 8140 at an intermediate or advanced level. Thus, will need a CASP+CE, Security+, CISSP, or CISM certification. Experience and expert knowledge on NIST guidelines, FISMA, Cybersecurity
principles and methodologies, Executive Orders (EO's), Office of Management and Budget (OMB) Memorandums, Federal, DoD and CISA Technical Reference Architectures, Maturity Models, Risk Management Framework (RMF), Cybersecurity Framework (CSF), technical knowledge of IT systems Knowledge of and experience using relevant cybersecurity and analysis tools
such as Archer, Nessus Security Center, Splunk, etc. Must be able to conduct system analysis and quality reviews to detect
performance issues. Experience applying an enterprise-wide set of disciplines for the planning, analysis, design and construction of information systems on an enterprise-wide basis or across a major sector of the enterprise. Experience applying reverse engineering and re-engineering disciplines to develop migration strategic and planning documents. Familiarity with agency mandated security tools such as: ACAS/Nessus, HBSS, MDE, etc. Preferred Qualifications: USMC or Navy Validator certified Experience with cloud-based environments and technologies. An analytical mind with excellent problem-solving ability. Good communication skills and have good interpersonal, organizational, and analytical skills. Clearance Requirements: DoD Secret with the ability to obtain Top Secret Physical Requirements: This job largely operates in a professional office environment. Ability to sit for extended periods of time. For all positions requiring access to technology/software source code that is subject to export control laws, employment with the company is contingent on either verifying U.S.-person status or obtaining any necessary license. The applicant will be required to answer certain questions for export control purposes, and that information will be reviewed by compliance personnel to ensure compliance with federal law. ManTech may choose not to apply for a license for such individuals whose access to export-controlled technology or software source code may require authorization and may decline to proceed with an applicant on that basis alone. ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law. If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at . ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services. If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access as a result of your disability. To request an accommodation please click and provide your name and contact information.

Inform a friend!

<!– job description page –>
Top