Back to All Jobs
Wiesbaden, Germany
6 hours ago
Cybersecurity Analyst

GDIT has an opportunity for a Cybersecurity Analyst to support our customer in Wiesbaden, Germany.  The individual will play a critical role in ensuring the confidentiality, integrity, and availability of information and resources to support the warfighter. The Cybersecurity Analyst assists the ISSM to ensure that Risk Management Framework authorization packages are prepared and maintained in accordance with (IAW) the DoDI 8510.01 Risk Management Framework (RMF) for DoD Information Technology (IT). 

The Analyst will register systems in APMS, create and maintain A&A packages in eMASS, tenant security plans, COOP/DRP and SOPs, perform and analyze ACAS scans, review STIGs, and collect artifacts to ensure compliance with NIST SP 800-53 and CNSSI 1253.The Analyst will ensure all RMF controls for accreditation are tested and documented in order to achieve an applicable authorization for all required systems, software and hardware throughout the system lifecycle.


HOW A CYBER SECURITY ANALYST SENIOR WILL MAKE AN IMPACT

Manage Assess Only, Assess and Authorize, and Authority to Connect RMF Authorizations and continuous monitoring efforts in the Enterprise Mission Assurance Support Service (eMASS) system throughout the system lifecycle.

Perform RMF Assessment and Authorization (A&A) Self Assessments and Annual Reviews.

Collaborate with internal and external agency personnel to ensure actions are completed as necessary.

Perform pre-validation A&A testing, documentation and review to validate cybersecurity policy, regulations, Security Technical Implementation Guide (STIG), and Best Business Practice (BBP) compliance.

Lead self-assessments of information systems for program elements.

Partner with security control validation and cybersecurity inspection teams during audits.

Develop and maintain Risk Management Framework (RMF) Body of Evidence (BoE) artifacts to include system security plans, contingency plans, Plan of Actions and Milestones (POAMs) and Standard Operating Procedures for all systems under their responsibility.

Assist with implementation of countermeasures or mitigating controls.

Ensure the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies by monitoring vulnerability scanning devices.

Perform periodic and on-demand system audits and vulnerability assessments including user accounts, application, and file access to determine compliance manually or with automated tools such as EvaluateSTIG, AESS, SCAP and ACAS.

Conduct vulnerability reporting and guidance to administrators for remediation actions for all information system assets under the customer’s responsibility and provide custom reports as necessary.

Provide guidance to and collaborate with team members and staff to achieve greater level of compliance.

Notify the government of any suspected incidents in a timely manner, and assist in the containment, analysis, and reporting of incidents and information spillages as necessary

Maintain current knowledge of relevant technology as assigned.

Advise system owner and ISSM regarding security considerations for new and existing information systems throughout the entire lifecycle.

Perform security impact analysis for configuration changes and attend Change Control Board Meetings to inform stakeholders and board members of findings.

Participate in special projects as required.

May serve as a task leader.​

WHAT YOU’LL NEED TO SUCCEED:

Security Clearance Level:  TS/SCI clearance required.

Education: Equivalent combination of education, professional training or work experience can be substituted for degree requirement.

Required Experience: 5+ years of experience and a bachelor’s degree in computer science or a related technical discipline

Required Technical Skills: Experience with EvaluateSTIG, AESS, SCAP and ACAS. Effective communication skills and technical writing skills are required for this position. Experience performing pre-validation A&A testing, documentation and review to validate cybersecurity policy, regulations, Security Technical Implementation Guide (STIG), and Best Business Practice (BBP) compliance.

Location: Wiesbaden Germany

Certifications: DoD 8570 IAM III required at the time of hiring.

GDIT IS YOUR PLACE:

401K with company match

Comprehensive health and wellness packages

Internal mobility team dedicated to helping you own your career

Professional growth opportunities including paid education and certifications

Cutting-edge technology you can learn from

Rest and recharge with paid vacation and holidays

#DefenseOCONUS

Show More
Save & Apply Later Applying Later... Click to ApplyI AppliedDidn't Apply
Confirm your E-mail: Send Email
Apply for this job
Next Job »
All Jobs from SRA International, Inc., A CSRA Company
9 SRA International, Inc., A CSRA Company jobs in Wiesbaden 2 SRA International, Inc., A CSRA Company jobs in DE
Next Job »
Search Jobs Sra International, Inc., A Csra Company Apply Later
Processing Unique Jobs for You: