SIGN IN
Risk Management Framework Analyst– Mid Level jobs in United States
cer-icon
Apply on Employer Site
company-logo

CP Marine LLC · 17 hours ago

Risk Management Framework Analyst– Mid Level

positionFort Huachuca, AZ
timeFull-time
remoteOnsite
seniorityMid, Senior Level
date5+ years exp
CP Marine LLC is a leader in cutting-edge research and technology in the cyber arena, focusing on cybersecurity and risk management solutions. The Risk Management Framework Analyst will support the Facility Related Control Systems team by acting as a subject matter expert and providing recommendations to lower risk and improve the overall defensive posture.
Computer & Network Security
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Assist in performing risk and vulnerability assessments on Army UMCS FRCS and EEDRS systems to identify and mitigate potential security risks. Collaborate with the CP Marine Team Lead and ISEC staff to analyze risks and recommend security measures
Conduct risk assessments, vulnerability assessments, and system audits to identify potential security threats to UMCS and EEDRS baseline systems at the ISEC lab at Fort Huachuca. Provide recommendations to mitigate identified risks and ensure compliance with applicable regulations and standards
Provide support for and where necessary to create security documentation as required in support of obtaining Authority to Operate (ATO) approvals of UMCS and EEDRS systems
Analyze and report on security findings identified during assessment
Create Plan of Action & Milestones (POAMs) for identified security control findings
Evaluate security control implementations for all UMCS and EEDRS baseline system boundaries on an annual basis
Act as the primary eMASS editor for all UMCS baselines, working in close coordination with the ISEC staff and CP Marine team on site
Strong understanding of Tenable Security Center, Nessus Scanners, and Agent configurations
Skilled in analyzing and reporting scan data for vulnerability management
Perform other duties as assigned

Qualification

Risk Management FrameworkNIST guidanceVulnerability assessmentsEMASSSecurity documentationAnalytical skillsQuality control skillsSecurity+ certificationCommunication skillsTeam collaborationProblem-solving skills

Required

Must possess a Bachelor Degree cybersecurity, computer science, informational technology, or related fields; additional (4) four years of experience may be substituted for a degree
Minimum 5 years of experience in managing the inventory, categorization, selecting and monitoring security controls for the information systems in preparation of the ATO and/or RMF process for new and existing systems
Experienced in implementing NIST guidance related to the Risk Management Framework and supporting Plan of Action and Milestone (POAMs) review. Must have experience also in conducting interviews with application and system developers to document system operations surrounding security controls
Minimum of four (4) years of cybersecurity experience
US citizen
Must have a Secret clearance
Excellent communication and interpersonal skills
Ability to work collaboratively in a team environment and lead initiatives
Strong analytical and problem-solving skills
Excellent quality control skills, absolutely minimizing errors in eMASS records

Preferred

Certifications: Security+ or other relevant certifications are highly desired

Benefits

Medical, dental, and vision insurance
401(k) plan with company matching
Tax-deferred savings options
Supplementary benefits
Paid time off
Professional development opportunities

Company

CP Marine LLC

twitter
company-logo
In 2017, Goldbelt identified a new mission for CP Marine: to become a Pacific Northwest-based federal government contractor.
location
Tacoma, WA, US
people-size2-10 employees
web-link
http://www.CPMGB.com

Funding

Current Stage
Early Stage
Company data provided by crunchbase