The Cyber Security Analyst will be responsible for providing subject matter expertise in the provision of information assurance (IA) support for certification and accreditation (C&A), DIACAP or RMF accreditation package and artifact generation, requirements analysis, security test and evaluation (ST&E) plans and execution, risk assessments, systems analysis and hardening, incident response and policy analysis, trusted product evaluations, IA program assessments, and security posture presentations.
The Cyber Security Analyst will:
Provide analytical support for the development and submission of C&A documentation in compliance with the DIACAP or RMF requirements.
Apply knowledge of technology, analyze the security implications of systems and applications security, and provide recommendations to decision-makers and engineers.
Provide experience-based advice and assistance to facilitate C&A efforts.
Identify Information Protection needs and define System Security Requirements; designing System Security Architecture; developing detailed Security Designs.
Have experience with Defense in Depth principles and technology including access/control, authorization, Identification and authentication, public key infrastructure, network, and enterprise security architecture.
Develop security plans for employing enterprise-wide security architecture.
Have experience assessing and auditing network penetration testing antivirus planning assistance, risk analysis and incident response.
Demonstrate experience applying security risk assessment methodology to system development, including threat model development, vulnerability assessments, and resulting security risk analysis.
Have experience developing systems that process information with different classifications and categories that simultaneously permits access by users with different security clearances and denies access to users who lack authorization.
Evaluate project needs, determine tasks and durations and allocate resources.
BS degree or 4+ years of information assurance and/or cyber security experience required. Must be DoD 8570.01M compliant.
Must be able to maintain a DoD SECRET clearance.
i3 is an EOE/Vets/Disabilities