Title: Cybersecurity Project Analyst (CSE)/Cyber Security Engineer
Location: Remote, United States
Onsite Flexibility: 100% Remote
Bachelor's with 10 years NIST RMF SECURITY CONTROL
Required Education Level: Bachelors
Required Degree: computer science, electronics engineering or other engineering or technical discipline is required.
Required Years Experience: 10
Substitution Criteria: 8 years of additional relevant experience may be substituted for education
Location: Remote
Core Hours:9a-3p ET
Exciting opportunity for an experienced Cybersecurity Analystlooking to work on strategic initiatives to proactively address cross-cutting issues related to cybersecurity/information security risk management for specialized devices/systems (e.g., medical, research, telehealth, Internet of Things). Utilize your cybersecurity/information security skills to develop cybersecurity work products (e.g., concept of operations (CONOPS), strategic plans, vulnerability use cases, policy gap analyses, recommendation reports, guidance documents, training material, policy updates, best practice documents). This position is open to remote delivery anywhere within the U.S., to include the District of Columbia.
You Have
10+ years' experience with NIST special publications, specificallyRMFand NIST security controls (SP 800-37, SP 800-53), cybersecurity/information security subject matter expertise
Experience as the primary author/contributor to cybersecurity work products (e.g., whitepapers, SOP, checklists, security gap analyses, best practice guidance documents, training material, security policy)
Experience working directly with clients to provide solutions
Experience with Microsoft Office, including Word, Excel, PowerPoint, and Teams
Ability to communicate with key stakeholders, process owners, and customers to manage expectations, eliminate gaps, and ensure success
Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements
Bachelor's degree in computer science, Electronics Engineering, or technical equivalent and 10 years of professional experience or a total of 18 years in lieu of education
Nice If You Have
Experience with federal contracting, including the Department of Veterans Affairs
Experience with IoT and/or Medical Device Cybersecurity
Knowledge of: VHA Handbook 1200, VA 6500 Handbooks and Directives, data security and governance, and/or HIPAA
Knowledge of NIST SP 800-53, Rev 5
Experience with eMASS
Experience with next generation firewall technology
Experience with security architecture framework
Experience with Zero Trust principles
Experience with executive level communications
Experience with technical writing and document reviews
Certifications: CAP, CISSP, CISM, CCSK
