Cybersecurity Analyst (Subject Matter Expert)

Please note that this position is contingent upon the successful award of a contract currently under bid.

Dedicated to serving those who defend the US and warfighters, Nisga’a MOSTT offers Military Operations support and Specialized Tactical Training (MOSTT). Nisga’a MOSTT’s services include aviation and military training, cybersecurity, intelligence gathering and analysis, and simulation and exercise support, as well as aviation flight logistics support and unmanned aerial vehicle support.  

Summary:

The Cybersecurity Analyst (Subject Matter Expert) shall support the efforts to coordinate the Certification and Accreditation (C&A) of systems in accordance with the Risk Management Framework outlined by the National Institute of Standards and Technology (NIST), DoD Instruction 8500.1. This includes supporting the development, coordination and support of initial C&A, Federal Information Security Management Act (FISMA) and re-accreditation requirements.

Essential Job Functions:

• The Contractor, as an integrated project team (IPT) member, shall support the efforts to coordinate and ensure Assess and Authorization (A&A) of systems are IAW DoD Cybersecurity (CS) A&A Risk Management Framework (RMF) process and/or Intelligence Community Directives (ICD) 503/Director of Central Intelligence Directive (DCID) 6/3 guidance, DoDI 8500.01, DoDI 8510.01 and AR 25-2.
• The Contractor, as an IPT member, shall provide Information Security (IS) engineering support to integrate required security characteristics and requirements into the performance objectives of the selected system.
• The Contractor shall provide assistance to ensure that these systems are protected from known vulnerabilities.
• The Contractor, as an IPT member, shall support the preparation and generate required security A&A documentation and coordination with the Authorizing Official (AO) to obtain successful system accreditation. Security documentation includes, but is not limited to, artifacts required by RMF and National Institute of Standards & Technology (NIST) controls such as the Security Plan (SP), Continuity of Operations Plan (COOP), Configuration Management Plan (CMP) and when required a Plan of Action and Milestones (POA&M).
• The Contractor, as an IPT member, shall provide Information Assurance Vulnerability Management (IAVM) support to include assisting with dissemination, installation, Information Assurance Vulnerability Alerts (IAVA) reporting, and compliance procedures for IAVM.
• The Contractor, as an IPT member, shall provide configuration management support of IS software and hardware, maintain software licenses and ensure security related documentation is current and accessible to properly authorized individuals.
• The Contractor shall conduct self-assessments, document validation results and generate POA&M in support of the Control Approval Chain and Package Approval Chain activities in the US Army Enterprise Mission Assurance Support Service (eMASS) online database.
• The Contractor, as an IPT member, shall provide independent validation and assessment support by conducting vulnerability scans, determining Security Technical Implementation Guide (STIG) checklist compliance and reviewing a variety of DoD, Army, RMF and NIST documentation to include SP, CMP, CP and other A&A artifacts to assess the cybersecurity posture of subject systems.

Necessary Skills and Knowledge:

• Advanced knowledge of DoD cybersecurity policies and frameworks, including Risk Management Framework (RMF), NIST standards, and DoDI 8500.01 / 8510.01
• Knowledge of Information Assurance Vulnerability Management (IAVM), including IAVA compliance and reporting.
• Familiarity with Security Technical Implementation Guides (STIGs) and vulnerability scanning tools.
• Understanding of configuration management principles for secure systems and environments.
• Ability to assess system security posture and recommend mitigation strategies
• Strong analytical and documentation skills.

Minimum Qualifications:

• Shall have a minimum of IAT Level II certification IAW DODM 8570.01.
• 8+ years of experience in cybersecurity, information assurance, or RMF support within a DoD or federal environment
• Requires Secret Clearance.

Preferred Qualifications:

• Bachelor’s degree preferred.

Pay and Benefits
At Goldbelt, we value and reward our team's dedication and hard work. We provide a competitive base salary commensurate with your qualifications and experience. As an employee, you'll enjoy a comprehensive benefits package, including medical, dental, and vision insurance, a 401(k) plan with company matching, tax-deferred savings options, supplementary benefits, paid time off, and professional development opportunities.