Senior Cyber Security Analyst

Location: Washington, DC
Date Posted: 12-20-2017
Lunarline, Inc. is hiring a Senior Cyber Security Analyst / FISMA Specialist.  We are looking for an enthusiastic professional with 6+ years of hands-on experience in performing and/or participating in FISMA and NIST security assessments, continuous monitoring, and authorization activities, and the ability and proficiency to create and edit NIST/FISMA security documentation including System Categorization documentation, System Security Plans, Security Assessment Reports, etc.
 
Duties and Responsibilities:
  • Develop and assess cyber security documentation for client information systems in accordance with FISMA, NIST RMF, and departmental requirements
  • Participate in continuous monitoring activities
  • Provide support to client ISSM, ISSO, system owners, and assessment team
  • Participate in, and lead, compliance related discussions (this includes in-depth understanding of  security control requirements)
  • Work with customers to resolve concerns and explain how compliance is achieved
  • Produce and deliver project task deliverables on time and within budget
  • Attend and participate in regular project meetings; deliver succinct and accurate status updates
  • Mentor mid-level and junior security assessors
     
Required Skills:
  • 6+ years of experience in performing and/or participating in FISMA and NIST security assessments, continuous monitoring, and authorization activities
  • Knowledge and experience in creating and edit NIST/FISMA security documentation including System Categorization documentation, System Security Plans, Security Assessment Reports, etc.
  • Expert level Microsoft Word and Technical Writing skills
  • Must be a US Citizen and able to obtain  an active SECRET Security Clearance
  • Expert-level knowledge of FISMA, NIST RMF, and NIST SP 800-series publications
  • Exposure to Software Development Lifecycle (SDLC) and related terminology as it relates to Information Security/Information Assurance.
  • Self-motivated and able to work in an independent manner or as part of a team
  • Able to write and talk about technical security issues in a clear, concise manner
  • Exceptional organizational and planning skills
  • Able to work in a fast-paced, deadline-driven environment


Desired Skills:
  • Experience with DOT C&A/A&A process
  • Experience with FedRAMP
  • Other Microsoft, Linux, Cisco, or security certifications
  • Experience working in a service desk environment and supporting customer infrastructure
  • Coding/Programming experience (Python, Perl, Shell, Bash, Batch, etc.)
  • Other testing tool experience (IBM Bigfix, Nmap, Nessus, WebInspect, AppDetective, Metasploit)


Minimum Education and Certifications:
  • Bachelor’s degree required; Master’s preferred
  • The following certifications are preferred: Lunarline, Inc. School of Cyber Security “Certified Expert” certifications, Security+, CISSP, CISM, CEH, Network+, CAP, or SANS security certifications


Location:
  • On site work at Federal government client site; Metro accessible in Washington, DC (Near Navy Yard)
  • Occasional travel may be required, but is not expected
  • The privilege of Telework may be permitted on a periodic basis at the discretion of the client
_____________________________________________________________________________________

Disclaimer
  
Lunarline is an equal opportunity employer. It is the policy of Lunarline that all employees and applicants for employment will be treated in all respects on the basis of their merit and qualifications and without regard to their race, color, national origin, age, disability, sexual orientation, religion, gender, military status, marital status or ancestry.
Lunarline participates in the E-Verify program. Therefore, any employment with Lunarline will also be contingent upon confirmation from the Social Security Administration ("SSA") and/or the Department of Homeland Security ("DHS") of your authorization to work in the United States. 
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal responsibilities from time to time, as needed.
 
 
or
this job portal is powered by CATS