Overview

ASRC Federal Field Services is seeking a Cybersecurity Analyst to support ongoing activities on our KEOS contract at Kirtland AFB in Albuquerque, New Mexico.

Job Summary:

  • The Cybersecurity Analyst will be responsible for deploying and supporting client projects, working with a multitude of technologies such as PLC controls and automation, APC’s, PLC’s, DCS, and SCADA analysis, performing custom software development, integrating databases, and validating system requirements.
  • Additionally, the Cybersecurity Analyst will be responsible for engaging with the customer, guiding and leading them through solution development, and ultimately delivering complete and useable projects.

Duties and Responsibilities:

  • Ensure control systems are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the Enterprise Mission Assurance Support Services (eMASS).
  • Initiate protective or corrective measures when a security incident or vulnerability is discovered.
  • Develop and maintain System Policy Documents (SPD) and conduct periodic reviews to ensure compliance with the SPD.
  • Provide cybersecurity, technical and analytical guidance to project teams.
  • Ensure Configuration Management (CM) for security-related CS software, hardware, and firmware is maintained and documented.
  • Ensure that system recovery processes are monitored and security features and procedures are properly restored.
  • Ensure all control systems security-related documentation is current and accessible to properly authorized individuals.
  • Ensure that control system security requirements are addressed during all phases of the system life cycle.

Experience:

  • Prefer candidate have at least three years’ experience working in a military environment and familiarity with Air Force Civil Engineering guidance, rules, and regulations.

Skill Requirements/Qualifications:

  • Experience conducting security control assessments for Security Assessment and Authorization (SA&A) using NIST SP 800-53 Rev4 and 800-53a.
  • Knowledge of core security tool concepts (IDS, SIEM, Firewalls, Vulnerability Assessment tools, configurations compliance, etc.) and ability to analyze technical outputs and recommend process improvements at an enterprise level.
  • Possess an understanding of computer security architectures and technical implementation of security controls
  • Knowledge of Federal Government C&A practices and policies, particularly FISMA, NIST SP 800-53, 800-171. Industry certifications relating to IT security preferred (CISSP, CySA+, GIAC, CEH, TNCP, etc.).
  • Must be capable of completing complex assignments with minimal supervision.
  • Possess excellent verbal and written communication skills.
  • Must meet citizenship requirements and currently possess or be able to obtain/maintain a SECRET security clearance.
  • Must maintain a valid US driver’s license.
  • Have ability to perform repetitive physical tasks involving lifting at least 50 lbs.
  • Be committed to providing for and maintaining a safe working environment.