Cyber Security Analyst
Osi Vision is currently seeking a Cyber Security Analyst. In support of this position, the Cyber Security Analyst will perform system, network and application Assessment and Authorization (A&A)-related tasks including Risk Management Framework (RMF) package development, Cybersecurity (Information Assurance) controls analysis, risk assessment, contingency planning, Security Test and Evaluation (ST&E), risk mitigation analysis, and technology reviews/assessments
Essential Job Duties
- Provide documentation services related to Security Authorization Process activities.
- Compile, develop and refine the standardized processes for developing IT system authorization.
- Organize and maintain electronic libraries of all documents and task-associated documentation, deliverables, reference materials, memorandums, and relevant documentation through systems development life cycle to include: all drafts, versions, finals, updates, maintenance, and retirement to electronic archive.
- Compile, draft, review, develop, and deliver recommendations on all aspects relevant to Cybersecurity (Information Assurance) SAP activities, processes and associated documentation to the COR for review and approval.
- Update Documentation Style guides upon COR request, and implement standard style and formats for all SAP associated documentation, reports and task related elements.
- Review security related work products (SAP packages) for compliance, content and adherence to the approved style and format guidelines. SAP Packages include but are not limited to reports, documents, test plans, procedures, evaluation criteria, analysis results and all security related documents.
- Electronically apply and track all documents and written comments, as requested by the COR and shall ensure that all security related documentation is compliant with standards and requirements, in accordance with established guidelines and delivery schedules.
- Prepare, reproduce, and file all security related packages and related documentation, as defined by the USCG System Development Life Cycle requirements.
Required Education & Experience
- Bachelor of Arts / Bachelor of Science degree from an accredited university.
- At least four (4) years demonstrated experience supporting a major system acquisition program’s Security Authorization process.
- US Government or military experience
- Knowledge of performing system, network and application A&A-related tasks including RMF package development, IA/security controls analysis, risk assessment, contingency planning, Security Test and Evaluation (ST&E), risk mitigation analysis, and technology reviews/assessments.
- Experience with Platform Information Technology (PIT) /Industrial Control System (ICS) analysis.
- Familiar with DoD/DHS Cybersecurity directives, policy, instructions and orders
- Must hold appropriate current DoD baseline Cybersecurity certifications in accordance with DoD 8570.01-M (IAM Level III)
- Proficiency with Microsoft Office applications (MS Word, Excel, PowerPoint, etc…)
- Experience with Acquisition Life Cycle Framework
- Office computer and MS Office
- Active Secret security clearance required
- US citizenship required
- Ability to read, analyze, and interpret general business periodicals, professional journals, technical procedures, or governmental regulations.
- Ability to write reports, business correspondence, and procedure manuals.
- Ability to effectively present information and respond to question from groups of managers, clients, customers, and the public.