Overview:
GovCIO is currently hiring for a Cyber Security Analyst (ISSM) to serve as Cyber Security SME for Cloud Based environments at multiple impact levels (IL2/4/5) hosted in Microsoft Azure or other vendor clouds as well as perform other RMF and cyber security related tasks. This position will be located in Stuttgart, Germany and will be an onsite only position.
Responsibilities:
Correlates threat data from various sources to establish the identity and modus operandi of hackers active in client's networks and posing a potential threat. Provides the customer with assessments and reports facilitating situational awareness and understanding of current cyber threats and adversaries. Develops cyber threat profiles based on geographic region, country, group, or individual actors. Produces cyber threat assessments based on entity threat analysis. May provide computer forensic and intrusion support to high technology investigations in the form of computer evidence seizure, computer forensic analysis, data recovery, and network assessments. Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption.
- Collaborates with intrusion analysts to identify, report on, and coordinate remediation of cyber threats to the client.
- Provides timely and actionable sanitized intelligence to cyber incident response professionals.
- Leverages technical knowledge of computer systems and networks with cyber threat information to assess the client's security posture.
- Conducts intelligence analysis to assess intrusion signatures, tactics, techniques and procedures associated with preparation for and execution of cyber attacks.
- Researches hackers, hacker techniques, vulnerabilities, exploits, and provides detailed briefings and intelligence reports to leadership.
- Serve as Cyber Security SME for Cloud Based environments at multiple impact levels (IL2/4/5) hosted in Microsoft Azure or other vendor clouds.
- Provide expert recommendations for Security and serve as the lead for accrediting Cloud environments through the RMF process to achieve an ATO.
- Provide weekly reports on RMF Assessment and Accreditation (A&A) sustainment activities.
- Participate in RMF A&A related meetings and briefs, to include developing agendas, maintaining minutes and action item lists.
- Performing STIG implementation, validation, and risk mitigation
- Lead Assessment and Authorization (A&A) activities for DoD and Intelligence Systems in accordance with Risk Management Framework and ICD-503 guidelines.
- Support offensive architecture analysis and design of defense-in-depth solutions.
- Develop and assess system security plans including, security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones.
- Verifying and validating vulnerability resolutions and/or mitigations.
- Effectively communicate work plans, milestones (POAM), and obstacles to clients; able to communicate, explain, or defend ideas or information clearly. Listen to others and recognize potential miscommunications, offer clarity.
- Ability to effectively develop system security plans, procedures, and other security documentation.
- May participate in Cyber Security engagements with Partner Nations representing the command as a Cyber Security SME.
Qualifications:
Bachelor's with 8+ years (or commensurate experience)
Required Skills and Experience
- Currently hold an active Top Secret Clearance with the ability to obtain TS/SCI
- BA/BS + 8 years recent specialized or AA/AS + 9 years recent specialized or a major cert + 9 years recent specialized or 13 years of recent specialized experience
- IAM Level III certification (CISSP, CISM, GSLC, CCISO, etc)
- Experience supporting Cyber Security requirements for Cloud based environments (Azure, AWS, etc)
- Experience navigating RMF process to achieve Authority to Operate (ATO)
- Ability to negotiate effectively with higher level Government leads, managers, functional managers, customers, industry partners, and teammates
- Exceptional planning and organizational skills, as well as strong oral and written communications skills.
- Strong interpersonal and mentoring skills, and the ability to effectively build and lead teams.
Preferred Skills and Experience
- Microsoft Azure Cloud Certifications
- Experience with partner nation Cyber Security engagements
- Clearance Required:TS/SCI
Company Overview:
GovCIO is a team of transformers-people who are passionate about transforming government IT. Every day, we ma