Cyber Security Specialist

Job Duties:

Responsible for the day to day operations of conducting routine IA Audits on all Information Systems (IS) to ensure the appropriate IA security controls have been applied and maintained
• Evaluate IS for compliance in accordance with Risk Management Framework (RMF) 800-53 Controls and Special Directives
• Assist with the continuous monitoring of RMF packages within eMASS (POA&Ms, Test Results, Risk Assessments, etc.)
• Record and/or prepare artifacts associated with the audit to ensure a repository for all system RMF documentation is kept current certification and Accreditation (C&A) support in the development of security and contingency plans by conducting risk and vulnerability assessments
• Use the 800 Series NIST Special Publications as reference for C&A, system security plans, risk assessment, and other security requirements
• Create, edit, and review organization and team level documentation for clarity and accuracy and assist with development of security related TTPs, SOPs, processes, plans, or diagrams
• Use automated security scanning tools (SCAP, ACAS, Tychon, etc.) to identify potential vulnerabilities
• Analyze and report findings to technical teams and leadership for appropriate tracking and mitigation
• Research RFIs from technical teams regarding DISA STIG checklists, and DOD/Army regulations
• Explain requirements to systems administrators in detail to ensure proper understanding and clarity
• Review proposed courses of action from technical teams and recommend the most secure option while balancing operations and/or mission requirements
• Assist in the identification, tracking and remediation of security risks discovered on information systems
• Prepare and deliver detailed written reports and oral presentations to the Security Manger, Information Assurance Manager and other senior leaders or staff within the organization
• Coordinate with both internal and external entities to improve established processes and procedures; ensuring efficient execution of all analysis, tracking, mitigation and reporting requirements

Qualifications:

• Active DoD Secret Clearance
• 2 years with Bachelor's degree in Information Technology, Computer Science, or related field., 6 years of experience in lieu of Bachelor's degree
• CompTia Security+ certification required prior to start date
• Knowledge of network specific DISA Security Technical Implementation Guides and checklists
• Knowledge of asset scanning
• Experience performing audits within a DoD organization
• Experience with Risk Management Framework (RMF) and vulnerability management

Desired Skills:

• Knowledge of Enterprise Mission Assurance Support Service (eMASS)
• Knowledge of Assured Compliance Assessment Solution (ACAS), and Tychon Vulnerability scanning and reporting
• Knowledge of ePolicy Orchestrator (ePO) and Continuous Monitoring and Risk Scoring (CMRS)

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure.