Senior Cybersecurity Analyst

The Senior Cybersecurity Analyst must be able to provide cybersecurity analysis and support required for Risk Management Framework (RMF) Assessment and Authorization (A&A) packages supporting the Army's Program Executive Office for Aviation.

The candidate will monitor systems for compliance with DoD and Army standards through the analysis of RMF artifacts to include diagrams, HW / SW lists, technical scan data, and other related materials.

The candidate will be able to identify both baseline security requirements based on hardware and software resident in the systems as well as confirm that these baseline requirements are being met.

In addition, they will : Assess system vulnerabilities for security risks and propose or evaluate risk mitigation strategies and be able to perform all functional duties with limited supervision.

• Oversee all aspects of the RMF process from start to finish and support accreditation package development through customer acceptance.
• Fully understand and execute all RMF steps necessary for creating A&A packages in accordance with DoD, Defense Information Systems Agency (DISA), and Army cybersecurity requirements.
• Monitor and manage system Enterprise Mission Assurance Support Service (eMASS) records.
• Conduct cybersecurity testing analysis and provide overall vulnerability and risk assessment reports.
• Analyze Plan of Action and Milestones (POA&Ms).
• Provide Cybersecurity / Information Assurance subject matter expertise throughout the lifecycle of all systems.
• Work closely with internal and external personnel to address unique cybersecurity concerns to include the US Army CIO staff, NETCOM, DISA, and others.
• Communicate up and down within the organization; prepare detailed descriptions of issues, status updates, recommendations, and reports.

Applicants must be well organized with an eye for detail.

• Work well in a team-oriented environment and can self-manage their tasks to ensure success.
• Complete reviews of required A&A documentation and artifacts to include : POA&Ms, SCA-V Reports, MOU, MOA, connection agreements, dataflow diagrams, network diagrams, and other documents and make recommendations to the system owner, O-ISSM, P-ISSM, and AO as appropriate.
• Manages customer relationship with cyber teams, system owners, and customers.

Requirements :

• 10+ years of related experience including both the development and analysis for compliance of RMF packages
• Bachelor's degree in related technical field
• DoD 8570.01M IAM Level III Certification
• US Citizenship
• Active Secret preferred w / ability to obtain TS

Geeks and Nerds is an innovative technology company that encourages ingenuity, defies the norm, fosters teamwork, and defines the future for our community and nation.

We are an Employee-Owned company which means our dedicated team members are also the owners of Geeks and Nerds. When you join GaN, you are not an employee;

you are the future owner of Geeks and Nerds.

Come join the company that develops innovative solutions that makes a positive difference in our community and nation. Come join the exceptionally talented and dedicated co-owners.

Join a company of significance!

GaN Corporation is an Equal Opportunity Employer. We are pleased to consider all qualified applicants for employment without regard to race, color, gender, sexual orientation, gender identity, religion, national origin, age, marital status, veteran status, disability, genetic information, or any other legally protected classifications.

GaN Corporation participates in E-Verify.