We are launching people to the Moon and Mars. If you want to be part of this amazing mission and enjoy working in a great team environment, we would love to have you as part of our team that is making history, today. It takes big ideas and determination to take NASA’s vision and make it reality. That’s what we do every day.
The COMET contract provides overall management and implementation of ground systems capabilities, flight hardware processing, and launch operations at NASA’s Kennedy Space Center (KSC) in Florida. These tasks will support the International Space Station, Ground Systems Development and Operations, and the Space Launch System, Orion Multi-Purpose Crew Vehicle, and Launch Services programs.
You will work as part of the Cybersecurity Governance, Risk and Compliance (GRC) Analyst Team which supports the Consolidated Operations, Management, Engineering and Test (COMET) contract on the Kennedy Space Center. Primarily your function will be maintaining an effective risk posture and Authorization to Operate (ATO) for NASA systems supporting the Artemis Program.

QUALIFICATIONS - EXTERNAL

Bachelor’s degree in related field with at least four years IT experience or six years of IT experience.

• 4 years of governance, risk and compliance experienceDoD Approved 8570 Baseline Certification in the Information Assurance Technician (IAT) or Identity and Access Management (IAM) Level II or III category.

DEPENDING ON THE CANDIDATE’S EXPERIENCE, REQUIREMENTS, AND BUSINESS NEEDS, WE RESERVE THE RIGHT TO CONSIDER CANDIDATES AT ANY LEVEL FOR WHICH THIS POSITION HAS BEEN ADVERTISED.

• Extensive knowledge of NIST’s Risk Management Framework (RMF) and the SP 800 series, with a focus on implementing and assessing security controls for unclassified government systems.
• Experience with system administration and flaw identification tools (vulnerability scanning, benchmark/policy compliance, STIGs, endpoint management and security platform, vulnerability management, etc.).
• Outstanding proficiency in communication skills (both written and oral), as well as building and sustaining relationships needed to achieve security objectives.
• Problem Solving - by identifying problems and determining accuracy and relevancy of related information and the ability to recommend a solution, or a compensating alternative.
• Expertise in delivering innovative solutions that align with organizational strategies, goals, and objectives.
• Be detail oriented with the ability to thoroughly read relevant specifications, requirements, and knowledge articles to determine applicability to your assigned systems.Experience evaluating new and emerging IT and cybersecurity technologies, threats, and requirements.

PHYSICAL REQUIREMENTS

• Position may involve extended periods of sitting, walking, standing and use of stairs.
• Position may involve extended periods of sitting or standing.Physical requirements are sitting, walking, standing, extensive use of stairs, and access to remote structures.

RESPONSIBILITIES

• Serve as a Cybersecurity GRC Analyst maintaining all system authorization requirements as defined by NASA and NIST.
• Work with the ISSM, ISSEs, stakeholders, users, and system administrators to ensure compliance with NASA/NIST 800-53 cybersecurity requirements for all responsible systems which are located in various types of computing environments and facilities.
• Track, review, and update all System Security Plan (SSP) requirements to include Control Implementation, POAMs, RBDs, Network Diagrams, Interconnection Agreements, System Inventories, Software Inventories, Contingency Plans, Configuration Management Plans, Privacy Data, Risk Assessments, and any other Security Assessments or Findings.
• Maintain multiple sources of reporting metrics for vulnerability management, scan compliance, and configuration specifications.
• Subject matter expert for all NASA/NIST Risk Management Framework (RMF) guidelines and requirements for all assigned systems.Conduct cybersecurity assessments, audits, and reviews for all assigned systems and utilize a risk-based approach to develop mitigation plans and to make recommendations to all NASA and COMET stakeholders.

OTHER ESSENTIAL FUNCTIONS

• If offered a position, proof of U.S. Citizenship or Legal Permanent Resident/Green Card holder of the United States is required.
• Needs to have clear, concise, and accurate communication skills.
• Must have ability to work well with office staff and customer representatives.
• Government security clearance may be required in the future.
• Must be able to travel to support position requirements. This may include travel to and from customer location, which may involve airline travel. In some cases, accommodations can be made for POV, if necessary.
• Grooming and dress must be appropriate for the position and must not impose a safety risk/hazard to the employee or others.
• Must maintain a positive work atmosphere by behaving and communicating in a manner that fosters good relations with customers, clients, co-workers, and management.
• Must pass a federal background investigation.Must comply with all “drug free workplace” requirements as mandated by directives issued by the appropriate federal contracting officer and the company, which requires drug testing for use of illegal drugs by employees in sensitive positions.
• 
  
  
  
• Must be able to drive tasks to completion; self-starter and proactive follow-through on assigned tasks is a must

• Able to manage multiple tasks and set personal priorities; willing to reset priorities when they change and adapt to a dynamic environment
• Must be able to travel to support position requirements. This may include travel to and from customer location, which may involve airline travel. In some cases, accommodations can be made for POV, if necessary.