Systems Security Analyst

Job Description

OVERVIEW :

We are seeking a Systems Security Analyst to provide support to the Client's Cross Domain Support Office (CDSO) integrating and implementing Cross-Domain Solutions (CDS) in a secure environment and implement security measures to resolve vulnerabilities, mitigate risks, and recommend security changes to system or system components.

Helps mitigate / correct security deficiencies identified during security / certification testing and / or recommend risk acceptance for the appropriate senior leader or authorized representative.

The contractor also performs security reviews, identifies gaps in security architecture, and assists in the development of a security risk management plan.

GENERAL DUTIES :

Ensure all systems’ security operations and maintenance activities are properly documented and updated as necessary.

Ensure that cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.

Apply security policies to applications that interface with one another, such as Business to-Business (B2B) applications to meet security objectives of the system.

Ensure that the application of security patches for commercial products integrated into system design meet the timelines dictated by the management authority for the intended operational environment.

Integrate automated capabilities for updating or patching system software where practical and develop processes and procedures for manual updating and patching of system software based on current and projected patch timeline requirements for the operational environment of the system.

Perform cybersecurity testing of developed applications and / or systems and properly document all systems security implementation, operations, and maintenance activities and update as necessary.

Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).

Assess all the configuration management (change configuration / release management) processes.

Develop procedures and test fail-over for system operations transfer to an alternate site based on system availability requirements.

DESIRED QUALIFICATIONS :

Design the integration of hardware and software solutions.

Determine how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.

Develop and apply security system access controls and evaluate the adequacy of security designs.

Write code in a currently supported programming language (e.g., Java, C++).

Assess security controls based on cybersecurity principles and tenets. (e.g., CIS CSC, NIST SP 800-53, Cybersecurity Framework, etc.).

Recognize vulnerabilities in security systems. (e.g., vulnerability and compliance scanning).

Ability to communicate complex information, concepts, or ideas in a confident and well organized manner through verbal, written, and / or visual means.

Required Skills

REQUIRED QUALIFICATIONS :

Bachelor’s degree desired in an accredited Computer Science, Cybersecurity, Information Technology, Software Engineering, Information Systems, or Computer Engineering;

or a degree in a Mathematics or Engineering field.

Knowledge of computer networking concepts and protocols, network security methodologies, and risk management processes (e.

g., methods for assessing and mitigating risk).

Experience with laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.

Expertise with assessing the impact of cyber threats and vulnerabilities and the potential impacts of cybersecurity lapses.

Expertise with computer algorithms, encryption algorithms, cryptography and cryptographic key management concepts, database systems, and human-computer interaction principles.

Knowledge of mathematics (e.g., logarithms, trigonometry, linear algebra, calculus, statistics, and operational analysis).

Experience with network access, identity, and access management (e.g., public key infrastructure, auth, OpenID, SAML, SPML), operating systems, and how traffic flows across the network (e.

g., Transmission Control Protocol TCP and Internet Protocol IP , Open System Interconnection Model OSI , Information Technology Infrastructure Library, current version ITIL ).

Knowledge of parallel and distributed computing concepts, security system design tools, methods, and Techniques, and software engineering.

Experience with network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).

Knowledge of security models (e.g., Bell-LaPadula model, Biba integrity model, Clark Wilson integrity model).

Understanding of how to develop and apply user credential management and implement enterprise key escrow systems to support data-at-rest encryption.

IAT, IAM, or IASAE Level 3

CLEARANCE :

TS / SCI minimum with CI Polygraph eligibility

About Procession Systems

About us