Information Systems Security Manager/Cyber Analyst
Job Description
Lyn Aerospace has an immediate opening for an Information Systems Security Manager (ISSM)/Cyber Analyst. This position is available at our Santa Maria, CA office.
DUTIES INCLUDE:
Provide support for a system or enclave's information assurance program through security authorization activities in compliance with Risk Management Framework
Perform auditing, vulnerability/risk assessment analysis to support Assessment & Authorization
Provide configuration management for information system security software, hardware, and firmware
Assume ISSO responsibilities in the absence of the ISSO; maintain required IA certifications
Download, apply and mitigate OS updates and Security Technical Implementation Guide for Red Hat Enterprise Linux and Windows Operating Systems
Maintains operational security posture to ensure information systems security policies, standards, and procedures are established and followed
Research, develop, implement, test and review an organization's information security in order to protect information and prevent unauthorized access to computer systems
Conduct a Vulnerability Assessment utilizing approved scanning software
Manages changes to system and assesses the security impact of those changes. Prepares and reviews documentation to include System Security Plans, Risk Assessment Reports, A&A packages, and Security Controls Traceability Matrix
Develop, maintain, and facilitate the appropriate closure of POA&Ms and facilitate with the Agency-designated security Point of Contact /ISSM any related remediation activities
Coordinate IS security inspections, tests, and reviews
Ensure proper measures are taken when an IS incident or vulnerability is discovered
Ensure data ownership and responsibilities are established for each IS, and specific requirements (to include accountability, access and special handling requirements) are enforced
Configuring and maintaining the networked computer system, including hardware, system software, and applications.
Diagnosing and resolving hardware, software, networking, and system issues when they arise.
Must be highly motivated, be able to work independently and be a self-starter
REQUIRED KNOWLEDGE & SKILLS:
Security+ Certification
Be familiar with the DSS Assessment and Authorization Process Manual & NIST 800-53
Experience using Tenable Nessus Scanning Software or equivalent
2+ years of ISSO or ISSM experience (minimum)
Experience with vulnerability scanning and compliance scanning
Must be a US Citizen and able to obtain DoD Top Secret security clearance
PREFERRED KNOWLEDGE & SKILLS:
RHEL Administrator Certification
Certified Information Systems Security Professional
Demonstrated RMF accreditation on RHEL and Windows Operating Systems
Experience with upload and utilization of eMASS
Experience with Cisco managed network switches
Familiarity with Defense Information Systems Agency and Security Content Automation Protocol compliance (desired)
