ASRC Federal Field Services is seeking a Cybersecurity Analyst to support ongoing activities on our KEOS contract at Kirtland AFB in Albuquerque, New Mexico.
- The Cybersecurity Analyst will be responsible for deploying and supporting client projects, working with a multitude of technologies such as PLC controls and automation, APC’s, PLC’s, DCS, and SCADA analysis, performing custom software development, integrating databases, and validating system requirements.
- Additionally, the Cybersecurity Analyst will be responsible for engaging with the customer, guiding and leading them through solution development, and ultimately delivering complete and useable projects.
Duties and Responsibilities:
- Ensure control systems are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the Enterprise Mission Assurance Support Services (eMASS).
- Initiate protective or corrective measures when a security incident or vulnerability is discovered.
- Develop and maintain System Policy Documents (SPD) and conduct periodic reviews to ensure compliance with the SPD.
- Provide cybersecurity, technical and analytical guidance to project teams.
- Ensure Configuration Management (CM) for security-related CS software, hardware, and firmware is maintained and documented.
- Ensure that system recovery processes are monitored and security features and procedures are properly restored.
- Ensure all control systems security-related documentation is current and accessible to properly authorized individuals.
- Ensure that control system security requirements are addressed during all phases of the system life cycle.
- Prefer candidate have at least three years’ experience working in a military environment and familiarity with Air Force Civil Engineering guidance, rules, and regulations.
- Experience conducting security control assessments for Security Assessment and Authorization (SA&A) using NIST SP 800-53 Rev4 and 800-53a.
- Knowledge of core security tool concepts (IDS, SIEM, Firewalls, Vulnerability Assessment tools, configurations compliance, etc.) and ability to analyze technical outputs and recommend process improvements at an enterprise level.
- Possess an understanding of computer security architectures and technical implementation of security controls
- Knowledge of Federal Government C&A practices and policies, particularly FISMA, NIST SP 800-53, 800-171. Industry certifications relating to IT security preferred (CISSP, CySA+, GIAC, CEH, TNCP, etc.).
- Must be capable of completing complex assignments with minimal supervision.
- Possess excellent verbal and written communication skills.
- Must meet citizenship requirements and currently possess or be able to obtain/maintain a SECRET security clearance.
- Must maintain a valid US driver’s license.
- Have ability to perform repetitive physical tasks involving lifting at least 50 lbs.
- Be committed to providing for and maintaining a safe working environment.