Sayres & Associates is hiring: Mid Level Cybersecurity Analyst in Washington

Sayres, a renowned leader in defense support services to the DOD in the shipbuilding industry, is currently seeking a skilled Cybersecurity Analyst with Secret Clearance in Washington, DC. As a key member of our team, the Cybersecurity Analyst will play a vital role in ensuring the security and integrity of shipboard and shore-based operational sites, laboratory/development environments, and land-based test sites in support of the United States Navy.

This position is hybrid in office based in Washington DC area.

Responsibilities:

The Cyber Analyst will be responsible for supporting the technical implementation of the Risk Management Framework (RMF) Assessment and Authorization (A&A) services. They will conduct cybersecurity and risk assessments on Platform Information Technology (PIT) and PIT control systems (Industrial Control Systems) to identify and mitigate technical and non-technical vulnerabilities. Duties include, but are not limited to:

• RMF Package Development: Perform multiple roles in eMASS for RMF package development, providing inputs and maintaining RMF packages.
• Vulnerability Remediation: Collaborate with engineers to remediate existing vulnerabilities or develop mitigations to minimize risks.
• Policy Compliance: Implement and apply DoD, DoN, CNSS, and NIST policy, instruction, and requirements.
• Ad Hoc Data Calls: Participate in ad hoc cybersecurity data calls to support critical assessments.
• Security Compliance Evaluation: Conduct traditional security compliance evaluation activities on shipboard platforms.

Additional Duties:

• Network Mapping and Vulnerability Scanning: Familiarity with network mapping, vulnerability scanning tools (e.g., ACAS, Nessus), and Security Technical Implementation Guides (STIGs) and Security Requirement Guides (SRGs).
• Scripting: Experience scripting in VBA for automation and efficiency in cybersecurity tasks.
• Network Knowledge: Strong understanding of general networking concepts (TCP/IP, OSPF, etc.).

Required:

• BA or BS degree.
• Security+ certification.
• ISSM certification.
• 1-5+ years of experience in cybersecurity performing vulnerability assessments. Experience and understanding of the NIST RMF.
• Minimum of 10 years' experience in cyber security issues at the subject matter expert level.
• Experience with Operating Systems such as RHEL, Unix, Windows, Cisco IOS.
• Good verbal and written communication skills, with the ability to collaborate effectively with a team of government and industry professionals.
• Industry Certifications: Possess relevant certifications such as Network+, CAP, or CEH.
• USN Service Craft Experience: Preferred first-hand experience with USN Service Craft/Auxiliary Ships or Small Boats.
• Ability to obtain a DoD Secret security clearance.

Preferred:

• BS degree in Computer Science/Engineering or related technical discipline.
• Experience in network mapping, vulnerability scanning, STIGs/SRGs.
• Experience scripting in VBA.
• Network+, CAP, or CEH certification.
• NQV Certification.

The position description represents a representative summary of the major responsibilities and accountabilities performed by the incumbents of this position. Additional duties may be assigned to meet specific project needs.