Cybersecurity Risk Analyst

Job Description

OVERVIEW :

• Perform security planning, security assessment, risk analysis, risk assessment, and risk management support activities.
• Perform risk assessment and management to support integration of legacy systems into existing IT environment.
• Review and analyze Cybersecurity built into systems to be deployed to operational environments.
• Prepare risk assessment, plan of actions, authorization recommendations, and related security authorization documentation.
• Identify and support overall security requirements for the protection of data to ensure the implementation of information security policies, activities, and controls.
• Ensure Cybersecurity functions are included in the development and risk management process, particularly those focusing on infrastructure protection and defensive IT strategy.
• Facilitate interaction with customers, IT staff, and high-level corporate officers to assist in defining and achieving required risk management objectives for the organization.

Required Skills

REQUIRED QUALIFICATIONS :

Level 2

• Compliance with DoD 8570.01-M with a minimum certification of IAM Level II is required.
• Four years of experience as an IT Risk Assessor, System Security Engineer, Information Systems Security Manager or DAO in programs and contracts of similar scope, type and complexity is required.
• A Bachelor’s degree in Computer Science or IT Engineering is required. In lieu of a Bachelor’s degree, an additional four years of experience for a total of Four (4) years.
• Working knowledge of the following is required : system security design process; defense-in-depth / breadth; engineering life cycle;
• information domains; cross-domain solutions; controlled interfaces; identification, authentication and authorization; system integration;
• ICD 503 (formerly NISCAP); risk management; intrusion detection; contingency planning; incident handling; configuration control;

change management; auditing; security authorization process; principles of Cybersecurity (confidentiality, integrity, non-repudiation, availability, access control), and security testing.

Level 3

• Compliance with DoD 8570.01-M with a minimum certification of IAM Level III is required.
• Eight years of experience as an IT Risk Assessor, System Security Engineer, Information Systems Security Manager or DAO in programs and contracts of similar scope, type and complexity is required.
• A Bachelor’s degree in Computer Science or IT Engineering is required. In lieu of a Bachelor’s degree, an additional four years of experience for a total of 12 years.
• Working knowledge of the following is required : system security design process; defense-in-depth / breadth; engineering life cycle;
• information domains; cross-domain solutions; controlled interfaces; identification, authentication and authorization; system integration;
• ICD 503 (formerly NISCAP); risk management; intrusion detection; contingency planning; incident handling; configuration control;

change management; auditing; security authorization process; principles of Cybersecurity (confidentiality, integrity, non-repudiation, availability, access control), and security testing.

CLEARANCE :

Full Scope Polygraph minimum

About Procession Systems

About us