Cybersecurity Analyst with Security Clearance
Tyto Athene is looking for a Cybersecurity Analyst to support United States Space Force (USSF) Military Satellite Communications (MILSATCOM) programThe Space Systems Command has the collective USSF mission responsibility for the development, deployment, maintenance, and sustainment of space systems providing early missile warning capability; environmental sensing; precision navigation, guidance and timing; nuclear event detection; space launch capability; national and military satellite communications capabilities; launch range and network systems; advanced systems; and technology development programsThis position will work in close collaboration with the Information Systems Security Manager (ISSM) and Information Systems Owner (ISO) to ensure security posture is met and maintained, develops security policies, procedures, plans, and all other evidence of compliance with various security controlsCreates and maintains RMF documentation to include Enterprise Mission Assurance Support Service (eMASS) and Information Technology Investment Portfolio Suite (ITIPS) database entries with System Security Plans (SSP), Security Assessment Reports (SAR), Plans of Action & Milestones (POA&M), all other artifacts and documentation tied to the NIST processesYou will provide support to maintain a strong cybersecurity posture for the system until its disposal
Responsibilities:
o Build, maintain, and track system's cybersecurity baselines via eMASS or equivalent, IAW cybersecurity policies, guidance, and plans;o Review, assess, create, and update enclave documentation in eMASS and any Configuration Management (CM) system for the ISSM review and approval such as:
Security Plan, Security Assessment Plan, Category selection checklist, control results, and POAo Identify, collect, review, and maintain RMF required artifacts IAW cybersecurity policies, guidance, and plans;o Ensure accurate system documentation and configuration logs are maintained to reflect current and prior configuration baselines;o Provide written evaluations portraying system progress on RMF compliance IAW cybersecurity guidance (one evaluation for each system per quarter);o Maintain cybersecurity data for systems registered in the ITIPS IAW FISMA requirements;o Conduct and/or report annual FISMA security reviews, contingency test completion dates, and validation of cybersecurity control compliance, IAW cybersecurity guidance, the organizational cybersecurity strategy, and POA&M;o Conduct annual control validations (ACVs) for all NC3 systems IAW AF Global Strike Command (AFGSC) cybersecurity guidance and for all non-NC3 systems in a similar manner, but in accordance with SMC/ECP policies and schedule;o Create and maintain mission common control packages and serve as the common control provider for each mission systems;o Create and maintain Authority-to-Connect (ATC) guest system packages in eMASS for non-USSF systems connected to SMC/ECP systems;o Ensure the required Cybersecurity functional activities and actions during the systems' O&S phase are conducted IAW Cybersecurity related laws and regulations such as the National Cybersecurity Protection Act, FISMA, OMB A1-30 mandate, and EO 13636;o Improving Critical Infrastructure Cybersecurity and Resilience including policies, standards, special publications, instructions and guidance from the DoD, Military, NIST, CNSS, Defense Information Systems Agency (DISA), and Department of the AF (DAF);o Participate in the system's IPTs and sustainment contractor meetings/teleconferences, change control boards (CCBs) and working groups (WGs) to ensure the continued alignment of cybersecurity requirements in the technical baselines, the system security architecture, information flows, design, and the security controls;o Evaluate system's sources of changes such as Deficiency Reports (DRs), Problem Reports (PRs), Change Requests/Proposals (CRs/CPs), Request For Change (RFC), and AF Form 1067s; determine the security impacts of proposed or actual changes to the system, environment, threats, and vulnerabilities; and if any, update all needed RMF artifacts to reflect the changes/revisions;o Review and provide inputs to modification packages, program/system documents and support agreements updates, and communications and network infrastructure upgrades to ensure proper cybersecurity configuration modification management and planning support are implemented;o Review system's test plans and test results and if necessary, observe system testing for security control implementation IAW cybersecurity policies, guidance, and plan;o Document all findingsPerform security impact analysis on any system change and appropriately prepare letters of assurance, security impact letters, and risk assessment letters to include exceptions, deviations, or waivers to cybersecurity requirements when applicable;o Monitor and adhere to the system's A&A schedule deadlines IAW the Program Office's Cybersecurity Plan and IPT's schedule;o Review annually and provide recommended updates to program cybersecurity policies and plans IAW cybersecurity guidance;o Review and provide advice on RMF related memorandums of agreements/ memorandums of understanding/ service level agreements/ interconnection service agreements (MOA/MOU/SLA/ISA) for RMF compliance IAW cybersecurity policies, guidance, and plans;o Assist with the cybersecurity vulnerability management plan and risk assessment capability;o Receive and review ACAS and SCC reports from the sustainment contractor for each system quarterly and characterize risk for each system semi-annuallyRequired:
o High School diploma with 6
years of experience including 2
years of experience in performing IAT level II or IAM level II functionso Associate degree can be substituted for 2 years of experience and a bachelor's degree may be substituted for 6 years of experienceo Experience with DoD RMF functions and Processes and/or DISA IASEo IAT or IAM Level 2 Certification per DoD 8570.
01Mo Active DoD Secret, TS or TS/SCI Clearance Desired:
o Experience with XACTA, FISMA, eMASS and/or ITIPSo Bachelor's degreeo TS/SCI Clearance Salary:
$80,000.
00 to $90,000.
00 Equal Opportunity Employer:
Disability/Veteran After several strategic acquisitions in 2021, Tyto Athene has experienced enormous opportunity and growthAside from being the leading provider of mission-focused IT and Cyber services and solutions to critical U.
Sgovernment agencies, Tyto is well-positioned to meet the growing demand for network modernization requirements across the federal enterpriseOur employees are the key to the innovation that has made Tyto a successWe provide an environment that is geared to reward potential, innovation, and teamworkIf you would like to unleash your creativity and your career -- it's time to join Team Tyto! Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled Recommended Skills Architecture Communication Computer Security Configuration Management Creativity Databases Estimated Salary: $20 to $28 per hour based on qualifications.
Responsibilities:
o Build, maintain, and track system's cybersecurity baselines via eMASS or equivalent, IAW cybersecurity policies, guidance, and plans;o Review, assess, create, and update enclave documentation in eMASS and any Configuration Management (CM) system for the ISSM review and approval such as:
Security Plan, Security Assessment Plan, Category selection checklist, control results, and POAo Identify, collect, review, and maintain RMF required artifacts IAW cybersecurity policies, guidance, and plans;o Ensure accurate system documentation and configuration logs are maintained to reflect current and prior configuration baselines;o Provide written evaluations portraying system progress on RMF compliance IAW cybersecurity guidance (one evaluation for each system per quarter);o Maintain cybersecurity data for systems registered in the ITIPS IAW FISMA requirements;o Conduct and/or report annual FISMA security reviews, contingency test completion dates, and validation of cybersecurity control compliance, IAW cybersecurity guidance, the organizational cybersecurity strategy, and POA&M;o Conduct annual control validations (ACVs) for all NC3 systems IAW AF Global Strike Command (AFGSC) cybersecurity guidance and for all non-NC3 systems in a similar manner, but in accordance with SMC/ECP policies and schedule;o Create and maintain mission common control packages and serve as the common control provider for each mission systems;o Create and maintain Authority-to-Connect (ATC) guest system packages in eMASS for non-USSF systems connected to SMC/ECP systems;o Ensure the required Cybersecurity functional activities and actions during the systems' O&S phase are conducted IAW Cybersecurity related laws and regulations such as the National Cybersecurity Protection Act, FISMA, OMB A1-30 mandate, and EO 13636;o Improving Critical Infrastructure Cybersecurity and Resilience including policies, standards, special publications, instructions and guidance from the DoD, Military, NIST, CNSS, Defense Information Systems Agency (DISA), and Department of the AF (DAF);o Participate in the system's IPTs and sustainment contractor meetings/teleconferences, change control boards (CCBs) and working groups (WGs) to ensure the continued alignment of cybersecurity requirements in the technical baselines, the system security architecture, information flows, design, and the security controls;o Evaluate system's sources of changes such as Deficiency Reports (DRs), Problem Reports (PRs), Change Requests/Proposals (CRs/CPs), Request For Change (RFC), and AF Form 1067s; determine the security impacts of proposed or actual changes to the system, environment, threats, and vulnerabilities; and if any, update all needed RMF artifacts to reflect the changes/revisions;o Review and provide inputs to modification packages, program/system documents and support agreements updates, and communications and network infrastructure upgrades to ensure proper cybersecurity configuration modification management and planning support are implemented;o Review system's test plans and test results and if necessary, observe system testing for security control implementation IAW cybersecurity policies, guidance, and plan;o Document all findingsPerform security impact analysis on any system change and appropriately prepare letters of assurance, security impact letters, and risk assessment letters to include exceptions, deviations, or waivers to cybersecurity requirements when applicable;o Monitor and adhere to the system's A&A schedule deadlines IAW the Program Office's Cybersecurity Plan and IPT's schedule;o Review annually and provide recommended updates to program cybersecurity policies and plans IAW cybersecurity guidance;o Review and provide advice on RMF related memorandums of agreements/ memorandums of understanding/ service level agreements/ interconnection service agreements (MOA/MOU/SLA/ISA) for RMF compliance IAW cybersecurity policies, guidance, and plans;o Assist with the cybersecurity vulnerability management plan and risk assessment capability;o Receive and review ACAS and SCC reports from the sustainment contractor for each system quarterly and characterize risk for each system semi-annuallyRequired:
o High School diploma with 6
years of experience including 2
years of experience in performing IAT level II or IAM level II functionso Associate degree can be substituted for 2 years of experience and a bachelor's degree may be substituted for 6 years of experienceo Experience with DoD RMF functions and Processes and/or DISA IASEo IAT or IAM Level 2 Certification per DoD 8570.
01Mo Active DoD Secret, TS or TS/SCI Clearance Desired:
o Experience with XACTA, FISMA, eMASS and/or ITIPSo Bachelor's degreeo TS/SCI Clearance Salary:
$80,000.
00 to $90,000.
00 Equal Opportunity Employer:
Disability/Veteran After several strategic acquisitions in 2021, Tyto Athene has experienced enormous opportunity and growthAside from being the leading provider of mission-focused IT and Cyber services and solutions to critical U.
Sgovernment agencies, Tyto is well-positioned to meet the growing demand for network modernization requirements across the federal enterpriseOur employees are the key to the innovation that has made Tyto a successWe provide an environment that is geared to reward potential, innovation, and teamworkIf you would like to unleash your creativity and your career -- it's time to join Team Tyto! Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled Recommended Skills Architecture Communication Computer Security Configuration Management Creativity Databases Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
