The Cyber Analyst, Mid-Level, applies expertise and work experience executing cyber risk assessments to perform duties assigned by the Security Control Assessor (SCA) for the Department of the Air Force (DAF) Enterprise Authorizing Official (EAO) systems. The ideal candidate will provide a broad range of information assurance activities and must have a strong knowledge of systems, operating environments, system security, and networking.
*This position requires onsite work in Hampton, VA

REQUIREMENTS

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or Information Systems required. Equivalent work experience may be substituted for Bachelor’s degree. Master’s degree preferred.
• IAM Level II certification in accordance with the DoD approved 8140 baseline certifications is required
• Must have at least 5 years of experience in cyber risk assessment or experience with technologies utilized in AFNET or DoD systems
• Must have familiarization with NIST SP 800-53, AFI 17-130, and DODI 8510.01
• Proficiency with eMASS is highly preferred
• Must possess strong planning, organization, and analytical skills, with attention to detail
• Must be able to take initiative and be self-motivated
• A quick learning, passionate about technology and able to learn new technology areas, as directed
• Must be able to elicit, identify, and research information assurance requirements and perform as a member of an assessment review team
• Must be an effective team player with good interpersonal skills
• Must be able to work independently with minimal supervision
• Must have excellent written and verbal communication skills
• Must be able to display professionalism in all situations
• Knowledge in emerging technologies including cloud, AI, and virtualization, networking, system engineering, identity management, web technologies, system administration, and/or system security preferred
• This position requires onsite work. Must be flexible to be able to work in the office, as assigned.Must have an active DoD security clearance

• Determines system vulnerabilities and residual risk based on analysis of technical artifacts, interviews, and evaluation of current system state
• Evaluates effectiveness of proposed mitigations
• Contributes toward recommendations on technical/policy changes, processes and methodologies to assess and mitigate cybersecurity risk on information technology within the SCA’s appointed authorization boundary
• Works with other Cyber Analysts, SMEs, and SCARs to ensure that all cybersecurity analysis and cybersecurity risk assessments are completed with time and quality standards established by Division leadership and Task Lead
• Supports program and projects with security and information assurance requirements elicitation based on customer and subject matter expert communication and independent researchPerforms all other duties, as assigned