This site uses cookies. To find out more, see our Cookies Policy

Lead Cyber Security Analyst - 27367 in Alexandria, VA at Alion Science and Technology

Date Posted: 11/26/2018

Job Snapshot

  • Employee Type:
    Full-Time
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:
    11/26/2018
  • Job ID:
    27367

Job Description



Responsibilities/Qualification

Position Summary 

Acts as a Lead Cyber Security Analyst (LCSA) on a project or program that is complex and/or novel in concept and development related to military operations and strategy.  Develops problem resolution options based on thorough knowledge of the situation, globally, as well as internally, utilizing complex quantitative and qualitative theory and principles to develop viable options. 

Under the general direction of a project, program, and/or division manager, and within the scope of work derived from a contract with a government customer, performs multi-faceted assignments requiring the analysis and synthesis of complex cyber systems and projects.  Utilizes effective cyber theory, cyber concepts and principles in the design, development and implementation of analytic models and systems.  Is an expert in the cyber field and in certain client communities.  Anticipates future cyber requirements.  Develops and evaluates cyber plans for various projects or program activities to meet requirements.  Assesses and recommends the feasibility of proposed approaches to solve problems.  Possesses a thorough knowledge of applicable operational mission areas and national defense requirements.  


Duties and Responsibilities           

Applies extensive cyber security knowledge to ensure that systems comply with military Risk Management Framework (RMF) requirements for system protection and monitoring and IAW with DoDI RMF instruction 8510.01 for DoD Information Technology (IT).  Under the DoD RMF guidance the LCSA will be responsible for the RMF life cycle to include RMF step six (6) Continuous Monitoring, which is required for the life-cycle of the system and contract. 

Applies extensive cyber operational and analytical background experience gained from formal education, training, previous positions, and leadership roles, as well as proficiency in advanced analytic theory, management, and principles, during international, US Government interagency, joint, and combined operations at tactical, operational, strategic and national levels to solve current and/or future mission needs and to correct problem areas.  Leads and/or participates in operational coordination and analytical implementation teams, working groups, program development forums, special activities, readiness exercises, training, education and other forums as required to accomplish requirements.

Conducts scheduled, routine, and ad hoc cyber security analysis and produces analytical reports and subject matter expert consultation.  Also provides metric-based, qualitative, and functionally appropriate Quality Assurance and Quality Control (QA/QC) checks, assessments, reviews, audits, and tests to ensure cyber security compliance.  Provides oversight of cyber program processes, activities, and operations.  Looks for and finds cyber security compliance, records these findings, and reports findings.  Performs functionally appropriate analysis to devise potential cyber security compliance solutions.  Maintains a record of all cyber activities to include, but not limited to analysis, inspections, results, meeting notes, travel, site visit locations, expenditures and points of contact. Reports all records to the Program Manager (PM) and designee.  

Coordinates with the program Lead Systems Engineer to ensure all cyber related requirements correlate to system level and component level requirements. 

Reviews of Department of Defense Architecture Framework (DoDAF) and engineering drawings to determine system boundaries and define system configuration. 

Develops and maintains the program System Security Plans (SSP), Plan of Action and Milestone (POA&M) sheet and other cyber related documents. 

Responsible for reviewing Nessus, ACAS and SCAP scan results with the intent on identifying and remediating system vulnerabilities. 

Responsible for identifying applicable Security Technical Implementation Guides (STIGs) and their implementation IAW with DoD Cyber policies.

Responsible for inputting Nessus, ACAS and SCAP scan results into the government Enterprise Mission Assurance Support Service (eMASS) database for long term tracking, system sustainment and ATO certification.

Develops long term road maps for systems to stay compliant with DoD RMF requirements.  Requires system software and firmware updates to ensure that all integrated system have the appropriate attributes to keep the system protected.  

Identifies functional cyber security standards and synchronizes program activities with project goals.  Reviews and designs new process for program cyber security operations.

Advises the PM’s designee and senior Alion managers on cyber security QA/QC findings and solutions as required. 

Operates in multinational, interagency, joint, and service unique environments.

Initiates and develops operational ideas in specialty area, and develops effective implementation schemes.  Plans, develops, coordinates, and may direct (on an ad hoc basis) large projects or several small complex projects.  Prepares or coordinates the preparation of complex proposals as required.


Develops and executes budgets, work breakdown structures and other management procedures as required to monitor and control projects.
 

Demonstrates superior writing and presentation skills to develop briefings, documents, papers, conceptual, and analytical reports for clients.

Maintains and complies with security procedures in the performance of duties.

May provide direction, training, and assistance to other project staff, as a senior expert in a particular field of endeavor. 
 

Responsible for translating cyber related requirements to the PM team to contextualize associated risk.

Qualifications

Education and Experience

Bachelor’s degree in Cyber Security or Information Technology or a related military discipline plus 8 to 10 years of relevant work experience in the DoD Cyber Community.  Or a Master of Arts degree in Cyber Security or Information Technology with 4-6 years of relevant work experience in the DoD Cyber Community.

In some cases, educational requirements may be adjusted or waived for more than 12-16 years applicable work experience. Work experience may be adjusted for highly specialized knowledge or uniquely applicable experience for positions involving complex operations. 

The following certifications are highly desired for this position:

Certified Information Systems Security Professional (CISSP)

Knowledge, Skills, Abilities:

Advanced knowledge of DoD cyber policies and procedures

Familiar with Defense Information Systems Agency (DISA) website and cyber tools

Advanced working experience developing RMF products in support of ATO certification

Advanced working knowledge of Assured Compliance Assessment Solution (ACAS) scanning techniques and software

Advanced working knowledge of DiSA Security Content Automation Protocol (SCAP) tools

Advanced working knowledge of the DoD Enterprise Mission Assurance Support Service (eMASS) database

Knowledge of National Institute of Standards and Technology (NIST)

Knowledge of DoD Systems Engineering practices to include model based system architectures

Knowledge of the DoD acquisition process

Understanding of program management practices (e.g. critical path, driving path, risk, cost, technical performance, etc.)

Ability to read project schedules and identify potential cyber risks

Outstanding communication, interpersonal, and presentation skills in both a face to faces and virtual environment

Ability to chair high level meeting with the customer and sub-contractor on cyber related matters

Ability to develop and maintain a detailed cyber schedule with logic and dependencies 

Ability to lead a diverse team in a dynamic environment

Ability to plan and execute cyber related actions in order to obtain a system ATO

Ability to work independently with little direction or oversight

Ability to follow complex engineering diagrams

Proficient with Microsoft office suite (Power Point, Word, Excel)

Willingness to deploy to and work in austere conditions, proven independent decision making skills, and experience working in the AFRICOM AOR highly desirable. 

Applicants must be fully deployable according to AFRICOM, EUCOM, SOUTHCOM, and CENTCOM’s Theater Entry Requirements.   

Experienced in working overseas with US military commands, staff sections, and foreign nationals and operating independently or as a small team.

Candidates are required to be a US Citizen and hold a TS clearance with SCI eligibility. 

50% travel to OCUNUS locations expected.



Diversity Statement

Women, minorities, individuals with disabilities and veterans are encouraged to apply.  Alion will provide a reasonable accommodation to individuals with disabilities and disabled veterans who need assistance to apply.  Please visit the Alion Careers site for more information

U.S. Citizenship Required.

Next Steps

Join Our Talent Network

Join Our Talent Network

Join the Alion Science and Technology Corporation Talent Network today and stay up-to-date on our openings as they continue to become available! As a member of our network, you will receive alerts with new job opportunities that match your interests and have the ability to share job opportunities through social media or email. Join now!

Whether you choose to apply or just leave your information, we look forward to staying connected
with you.