Mid Level Cybersecurity Analyst Job at Sayres & Associates in Washington

Sayres, a renowned leader in defense support services to the DOD in the shipbuilding industry, is currently seeking a skilled Cybersecurity Analyst with Secret Clearance in Washington, DC. As a key member of our team, the Cybersecurity Analyst will play a vital role in ensuring the security and integrity of shipboard and shore-based operational sites, laboratory/development environments, and land-based test sites in support of the United States Navy. This position is hybrid in office based in Washington DC area. Responsibilities: The Cyber Analyst will be responsible for supporting the technical implementation of the Risk Management Framework (RMF) Assessment and Authorization (A&A) services. They will conduct cybersecurity and risk assessments on Platform Information Technology (PIT) and PIT control systems (Industrial Control Systems) to identify and mitigate technical and non-technical vulnerabilities. Duties include, but are not limited to: RMF Package Development: Perform multiple roles in eMASS for RMF package development, providing inputs and maintaining RMF packages. Vulnerability Remediation: Collaborate with engineers to remediate existing vulnerabilities or develop mitigations to minimize risks. Policy Compliance: Implement and apply DoD, DoN, CNSS, and NIST policy, instruction, and requirements. Ad Hoc Data Calls: Participate in ad hoc cybersecurity data calls to support critical assessments. Security Compliance Evaluation: Conduct traditional security compliance evaluation activities on shipboard platforms. Additional Duties: Network Mapping and Vulnerability Scanning: Familiarity with network mapping, vulnerability scanning tools (e.g., ACAS, Nessus), and Security Technical Implementation Guides (STIGs) and Security Requirement Guides (SRGs). Scripting: Experience scripting in VBA for automation and efficiency in cybersecurity tasks. Network Knowledge: Strong understanding of general networking concepts (TCP/IP, OSPF, etc.). Required: BA or BS degree. Security+ certification. ISSM certification. 1-5+ years of experience in cybersecurity performing vulnerability assessments. Experience and understanding of the NIST RMF. Minimum of 10 years' experience in cyber security issues at the subject matter expert level. Experience with Operating Systems such as RHEL, Unix, Windows, Cisco IOS. Good verbal and written communication skills, with the ability to collaborate effectively with a team of government and industry professionals. Industry Certifications: Possess relevant certifications such as Network+, CAP, or CEH. USN Service Craft Experience: Preferred first-hand experience with USN Service Craft/Auxiliary Ships or Small Boats. Ability to obtain a DoD Secret security clearance. Preferred: BS degree in Computer Science/Engineering or related technical discipline. Experience in network mapping, vulnerability scanning, STIGs/SRGs. Experience scripting in VBA. Network+, CAP, or CEH certification. NQV Certification. The position description represents a representative summary of the major responsibilities and accountabilities performed by the incumbents of this position. Additional duties may be assigned to meet specific project needs. #J-18808-Ljbffr