ANR - Cyber Security Engineer/ISSO
Alaska Northstar Resources, LLC5 months ago
Colorado Springs, CO, United States
On-site
Full-time
Junior Level (1-3 years)
Job Description
Key Responsibilities
- Perform day-to-day information assurance and system administration duties in support of mission critical Space Force systems to ensure the security posture is sustained and the residual level of risk is always at an acceptable level as determined by the Space Force.
- Implement a government approved viable information system security program.
- Directly support the Information Systems Security Manager (ISSM) by providing cyber-security compliance services for several national security systems and support systems.
- Ensure the day-to-day requirements for maintaining the security posture of the information system.
- Verify individual access requirements to ensure controls are in place.
- Implement timely protection or corrective measures after identification of a cyber-incident or vulnerability in accordance with an Incident Response Plan.
- Conduct system security scans and evaluate security vulnerabilities.
- Evaluate firewall, security, and system log files.
- Maintain public key infrastructure (PKI) of the system.
- Assist with installing definition and Nessus Plug-In updates.
- Complete/Update Plan of Action and Milestones (POAM).
- Develop the Risk Management Framework to certify and accredit the system.
- Develop and update the eMASS ATO Package.
- Apply and maintain Security Technical Implementation Guides (STIGs) in accordance with DISA standards.
- Maintain accreditations during the continuous monitoring stages of RMF.
- Assess the impact of system and control changes to the information system.
- Ensure all changes to the information system are appropriately documented and approved through the Security Impact Analysis (SIA) process.
- Ensure all information system security-related documentation is current, uploaded, and accessible to authorized individuals.
- Ensure security safeguards and features are implemented for the information system and network.
- Create and deliver the monthly cyber report by the required due date.
- Assist with all other contract deliverables as needed.
- Provide regression testing support for the deployment of software maintenance actions.
- Develop contract deliverables.
- Provide systems administration backup and assistance.
- Support project sustainment.
Required Qualifications
- Must be a US Citizen.
- Must have DoD Active Secret Clearance (at minimum).
- Must have one of the following certifications: IAT Level II certifications as defined in DoD 8570-10-M or possibly 8140 (e.g., Security+ CE, CySA+, CCNA-Security, GICSP, GSEC, SSCP, CCNP Security, CISSP).
- Must have a Bachelor's degree or an additional 4+ years of experience in lieu of degree.
- Must have 2+ years of experience in Cyber Security and related fields.
- Must have 4+ years of experience with IT System Administration.
- Prior experience as ISSO, ISSE, ISSM, or SCA.
- Experience with NIST 800 publications.
- Experience vetting both initial and reauthorization SIPRNet cybersecurity packages via RMF processes including creating, compiling, and inputting data/artifacts into the eMASS database on SIPRNet.
- Experience with system administration on a Microsoft Windows 11 environment.
- Experience with ACAS Security Center and Nessus.
- Ability to troubleshoot and work under minimal direction.
- Proven critical thinking and problem-solving skills.
- Local to Colorado Springs, CO for occasional on-site work.
Preferred Qualifications
- Ability to present ideas to the Government customer.
- Basic knowledge of MS SQL databases.
Benefits & Perks
- Competitive compensation.
- Outstanding benefits.
- Challenging work assignments with opportunities for advancement/career growth.
Required Skills
Nessus
Cyber Security
System Administration
NIST 800
Information Assurance
Public Key Infrastructure (PKI)
ISSO
Risk Management Framework
STIG Implementation
ACAS