Job Description
Cyber Information Assurance Analyst SME Job ID R8640 Job Location REMOTE Category Information security data recovery Full-Time/Part-Time Full-Time The Cyber Information Assurance Analyst SME provides IT support services for the Marine Corps Logistics Base by independently conductingplex security analyses of classified and unclassified systems forpliance with security requirements. Performs Command Cyber Readiness Inspections, vulnerability evaluations, and utilizing various security technologies and tools to assess the security posture of intricateputer systems and networks. Responsibilities include conducting vulnerability and risk analyses, participation in penetration studies, and defining security requirements for a range ofputing systems. Rmends solutions to enhance security, gathers technical information to align withanizational goals, and offers technical analysis and advice to client executive management on system improvements, focusing on areas like information systems architecture, networking, andmunication protocols. This position is on-site in the Albany, GA area. Chickasaw Nation Industries, Inc. serves as a holdingpany with multiple subsidiaries engaged in several lines of business (Technology, Infrastructure & Engineering, Health, Manufacturing, Public Safety, Consulting, and Transportation) for the federal government andmercial enterprises. A portion of our profits is used to support Chickasaw citizens. We are proud to support the economic development and long-term viability of the Chickasaw Nation and its people. CNI offers premium benefits eligible on the first day of hire to full time employees; (Medical - Dental - Vision), Company Life Insurance, Short-Term and Long-Term Disability Insurance, 401(K) Immediate Vesting, Professional Development Assistance, Legal Aid Assistance Program, Family Planning / Fertility Assistance, Personal Time Off, and Observance of Federal Holidays. As a federal contractor, CNI is a drug-free workplace and ads to the Federal Controlled Substance Act. ESSENTIAL REQUIREMENTS Secret Clearance is required and must be maintained for employment. Must be eligible for an IT-II upon assignment. Tenable Certified NESSUS Auditor required and must maintain CSSP Auditor Certification. IAM III and IAT II level certification is required. Proven proficiency performing CCRI / vulnerability assessment / penetration testing on networks, databases,puter applications and IT frameworks Seven (7) years IT experience Five (5) years IA experience Two (2) years of experience with DOD Vulnerability Management System Command Cyber Readiness Inspection certification in at least one of the following areas: Retina scan analysis o Operating Systems (Windows, Unix) Boundary defense (network policy, router, firewall) Internal defense (L2 switch, L3 switch) DNS (policy, BIND/Windows) HBSS (remote console, AV, ABM, PA, HIPS, ePO) Traditional security (Common, Basic, NCV, SCV) Wirelessmunications (BES, handhelds) Strong analytical and problem solving skills for resolving security issues Strong skills implementing and configuring networks and networkponents Knowledge and understanding of DOD security regulations, DISA Security Technical Implementation Guides Understanding of SCAP Knowledge of and proficiency with: VULNERATOR; USCYBERCOM CTO Compliance Program; Wireless vulnerability assessment; Web Services (IIS, Apache, Proxy); Database (SQL Server, Oracle); Email Services (Exchange); Vulnerability Scans (NESSUS, SCCM); Knowledge of Phishing exercises; USB Detect; Physical Security. Nice to have: DISA FSO certified CCRI Team Lead and have a certification in penetration testing, such as: Licensed Penetration Tester (LPT); Certified Expert Penetration Tester (CEPT); Certified Ethical Hacker (CEH); Global Information Assurance Certification Penetration Tester (GPEN); Familiarity with AUTOCHECKLIST Tool. KEY DUTIES AND RESPONSIBILITIES Essential Duties and responsibilities include the following. Other duties may be assigned. Independently performsplex security analysis of classified and unclassified applications, systems and enclaves forpliance with security requirements. Performs Command Cyber Readiness Inspections and cybersecurity vulnerability evaluations. Uses a variety of security techniques, technologies, and tools to evaluate security posture in highlyplexputer systems and networks. Performs vulnerability and risk analysis, and participate in a variety ofputer security penetration studies. Analyzes and defines security requirements forputer and networking systems, to include mainframes, workstations, and personalputers. Rmends solutions to meet security requirements. Gathers andanizes technical information about ananization's mission goals and needs, and makes rmendations to improve existing security posture. Provide enterprise-wide technical analysis and direction for problem definition, analysis and remediation forplex systems and enclaves. Provides workable rmendations and advice to client
Apply tot his job
Apply To this Job