Cyber Analyst - Audits, Inspections and Assessments ( R-00085168 )
The Defense Group at Leidos has an exciting opportunity as a Site Assistance Visit Analyst on our GSM-O II IDIQ contract’s Joint Service Provider (JSP) Cyber Security Task Order in Alexandria, VA. JSP provides a full range of IT products, services, and solutions and customer services to the Office of the Secretary of Defense (OSD), Chairman of the Joint Chiefs of Staff (CJCS) and the Joint Staff (JS), Director of Administration (DA), Pentagon Force Protection Agency (PFPA), Washington Headquarters Services (WHS), and other OSD offices for them to meet mission and business requirements. Through the JSP Cyber Security program, JSP performs a wide variety of services and functions required to secure the information security posture for DoD services.
This role will be based onsite in the Alexandria, VA area and an active TS/SCI security clearance is required prior to start. Some remote work will be allowed (30%).
Conduct cybersecurity related audits, inspections, vulnerability assessments, compliance assessments, Security Readiness Review (SRR), and ensure compliance with Cyber Security Service Provider (CSSP) and Command Cyber Readiness Inspection (CCRI) evaluation criteria.
Execute Site Assistance Visits (SAVs) to ensure regulatory compliance with Command Cyber Operational Readiness Inspection (CCORI), Public Key Infrastructure (PKI), North Atlantic Treaty Organization (NATO), and Balanced Survivability Assessment (BSA).
Manage projects, track and report completion/closure of inspection findings documented in Plan of Actions and Milestones (POA&M) and other action item in the Inspection Findings Reports
Identify systems and assets that are not sufficiently assessed through automated scanning or routine, periodic assessments and recommend and/or conduct customized, manual assessments of systems as required to ensure proper evaluation for compliance
Track and maintain Post Inspection Finding Remediation and POA&M Status Report for all inspections
Validate remediation of the findings or submit the artifacts/or POA&Ms to inspecting organization for approval
Perform technical, operational, and non-technical CCRI evaluation areas including, internal and external network infrastructure, Domain Name System (DNS), internal network vulnerability scan, wireless and mobile security, enclave security, Host Based Security System (HBSS), configuration reviews, traditional/physical security, releasable (REL) networks, database security, cross domain solutions, Voice over Internet Protocol (VoIP), Voice over Secure Internet Protocol (VoSIP), Video Teleconference (VTC), exchange services, different operating systems (specifically UNIX, Windows, Linux), web servers, REL networks and compliance directives.
Bachelor's degree in Science or Engineering Discipline and 8+ years of experience is required. Additional experience may be considered in lieu of degree.
Direct Command Cyber Readiness Inspection (CCRI) experience anywhere in the DoD
DoD 8570 IAT Level II certification.
Active TS/SCI security clearance required.
External Referral Eligible
tn10Pay Range:Pay Range $94,250.00 - $145,000.00 - $195,750.00