Apply on Employer Site

Credence · 1 day ago

Cybersecurity Program Analyst, Senior

Robins Air Force Base, GA

Full-time

Onsite

Senior Level, Lead/Staff

10+ years exp

Credence is a company that supports mission-critical needs through technology, providing solutions to defense and health federal organizations. They are seeking a Senior Cybersecurity Program Analyst to ensure compliance with DoD and AF Cybersecurity policies and manage cybersecurity documentation and planning for the Integrated Broadcast Service program.

GovTechInformation TechnologySoftware

Growth Opportunities

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Collect and maintain data needed to meet system cybersecurity reporting requirements IAW cybersecurity law, regulation, and policy

Identify gaps in cybersecurity compliance for the assigned system, create plans of action to resolve cybersecurity gaps, communicate plans to organizational leadership, execute plans to ensure cybersecurity compliance is met

Ensure security improvement action is identified, validated, and implemented as required for the assigned system; tracks cybersecurity program requirements to ensure successful implementation

Ensure that cybersecurity requirements are integrated into the continuity planning for the assigned system and organization; makes recommendations to update the cybersecurity policy for organizational efficiency

Plan, monitor, and track cybersecurity tasks to ensure successful completion

Identify alternative information security (INFOSEC) strategies to address cybersecurity tasks or requirements that are a risk to the system's continued operation and mission success

Monitor the assigned system to ensure cybersecurity data and data sources meet cybersecurity policy requirements, and communicate status to organizational leaders

Audit cybersecurity information, data, system configuration, and other cybersecurity characteristics to ensure requirements are met, report gaps or issues to division cybersecurity leadership

Conduct import/export reviews for acquiring systems and SW

Review source code scanning reports to identify vulnerabilities and identify risks

Develop methods to monitor and measure risk, compliance, and assurance efforts; develop contingency plans, disaster recovery procedures, and other methods to mitigate and/or resolve cybersecurity risks

Identify and document the requirements necessary to ensure SW acquisition programs, contract requirements, or other product development efforts meet applicable cybersecurity law, regulation, and policy

Develop methods to ensure programs or projects meet the requirements of DoDI 8520.02, Public Key Infrastructure (PKI) and Public Key (PK) Enabling

Support the Risk Management Framework (RMF) tasks related to system/application efforts to include Assessment and Authorization efforts, system audits, and other quality checks; ensure cybersecurity RMF artifacts (documents, data, etc.) meet the requirements of cybersecurity policy

Recommend policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks, and data

Conduct risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs

Participate in network and systems design to ensure implementation of appropriate systems security policies

Ensure the rigorous application of INFOSEC/cybersecurity policies, principles, and practices in the delivery of all IT services

Perform the Information System Security Engineer duties in an Information Assurance (IA) Workforce System Architecture and Engineering position as outlined in AFI 33-200, AFI 33-210 and AFMAN 33-285 for assigned systems

Qualification

Cybersecurity ComplianceRisk Management Framework (RMF)Defense Acquisition SystemDISA Policy KnowledgeNetwork Security MethodologiesCybersecurity PrinciplesCybersecurity QualificationCommunication SkillsProblem SolvingTeam Collaboration

Required

Active TS/SCI clearance is required

Master's or Doctorate degree and ten (10) years of experience in the respective technical / professional disciplines being performed, five (5) years of which must be in the DoD acquisition

Or, BA/BS degree, and twelve (12) years of experience in the respective technical/professional discipline being performed, five (5) of which must be in the DoD acquisition

Or fifteen (15) years of directly related experience with proper certifications, eight (8) of which must be in the DoD acquisition

Experience with Defense Acquisition System processes including UCA, MTA, MCA, SW Acquisition and Acquisition of Services

Familiarity with DoD Security Requirements Guides (SRGs) and Security Technical Implementation Guides (STIGs) is required

In depth knowledge of DISA policy and guidance is required

Experience with AF computer networking concepts and protocols, network security methodologies, cybersecurity principles used to manage risk, and experience identifying and mitigating system vulnerabilities is required

Cybersecurity Qualification is required for Work Role ID 805 IT Program Auditor

Benefits

Health Care Plan (Medical, Dental & Vision)

Retirement Plan (401k, IRA)

Life Insurance (Basic, Voluntary & AD&D)

Paid Time Off (Vacation, Sick & Public Holidays)

Family Leave (Maternity, Paternity)

Short Term & Long Term Disability

Training & Development

Company

Credence

Credence provides innovative technology, health, engineering, and management solutions to support mission-critical programs for Federal government customers.

Founded in 2005

Vienna, Virginia, USA

1001-5000 employees