[ref. l26299501] Cybersecurity Specialist
Overview:
Must be US Citizen with the ability to obtain a clearanceOnsite at NASA's Kennedy Space Center in Merritt Island, FL
Ongoing fully benefitted W2 position
The US pay for this full-time position is $36-$40 per hour. Salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position across all US locations.Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training.
Senior-level Cybersecurity support. Applies comprehensive knowledge of concepts, processes, practices, and procedures on technical assignments. Supports enterprise Cybersecurity standards.
The Cybersecurity Specialist will be responsible to implement and execute risk management processes by utilizing National Institute of Standards and Technology (NIST) 800 series special publications, Federal Information Processing Standards (FIPS), and Federal Information Security Modernization Act (FISMA) compliance frameworks.The Cybersecurity Specialist will work in a collaborative unified team environment to monitor, evaluate, and manage the risk posture of systems’ authorization boundary to safeguard information systems by leveraging robust understanding of NIST Risk Management Framework (RMF).
This position will involve working closely with the organization’s IT teams to identify vulnerabilities, conduct security control assessments, perform risk analysis and assessments, develop security strategies for mitigating and resolving findings, provide cybersecurity compliance guidance to IT teams and ensure systems remain compliant with federal standards and regulations.
Responsibilities:
In coordination with Government develops and implements Cybersecurity standards and procedures. Coordinates, development, and recommends security processes for an organization. Recommends Cybersecurity solutions to support customers’ requirements.Identifies and reports security violations. Recommends and satisfies Cybersecurity requirements based upon the analysis of CSPP, policy, regulatory, and resource demands. Supports customers at the highest levels in the development and implementation of processes and policies.
Applies know-how to government and commercial common user systems, as well as to dedicated special purpose systems requiring specialized security features and procedures. Supports analysis, design, and development of security features for system architectures.
Analyzes security requirements for computer systems which may include mainframes, workstations, and personal computers. Designs, develops, engineers, and implements solutions that meet CSPP requirements. Provides integration and implementation of the computer system security solution.
Analyzes general Cybersecurity-related technical problems and provides basic engineering and technical support in solving these problems. Supports vulnerability/risk analyses and makes recommendations on computer systems and applications during all phases of the system development life cycle.
Performs all procedures necessary to ensure the safety of information systems data assets and to protect systems from intentional or inadvertent access or destruction. Ensures that all information systems are functional and secure.
Key Responsibilities:
- Senior Cybersecurity support managing Authorization Packages (AP) to include Privacy Analysis, System Categorizations, Risk Assessment Reports (RAR), System Security Plan (SSP), and general Assessment and Authorization (A&A) oversight to obtain or maintain a system’s Authorization to Operate (ATO)
- Focal point for enterprise SSPs managing the security posture by supporting Information System Owners (ISO) and Information System Security Officials (ISSO) with RMF responsibilities
- Develop and maintain accurate and effective Plans of Action & Milestones (POA&Ms) as part of continuous monitoring for implementing cybersecurity improvements
- Collaborate with Information System Administrators (ISA) and various Engineering teams to integrate security measures into new and existing information systems and major applications
- Stay up to date on general information technology innovations and emerging threats and security technologies to continuously improve security posture.
Qualifications:
- Education: Bachelor's Degree required or Master's Degree in Cybersecurity, Management of Information Technology, or a related field.
- Experience: 8 years minimum, 10 years preferred in information security or related roles.
- Experience with networking ports and protocols, architecture of networked and standalone systems, functionality of various operating systems, cloud computing environments and common security tools.
- Ability to develop information system topology diagrams and Concept of Operations documentation
- Knowledge with federal standards such as NIST, FISMA and FIPS
- Exposure to FedRAMP program and standards
- Experience with Security Control Audits
- Proficient with MS Office
- Active (or held within 3 years) Security Clearance
- Experience with IT projects in a traditional waterfall or Agile frameworkRelevant certifications (e.g., CompTIA Network+, Security+, CySA+) are a plus.
- Position is hybrid remote and candidate must be within commute distance to Kennedy Space Center. Hybrid remote status is at the discretion of the customer and may change to on-premise support.
We are committed to hiring and retaining a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity or expression, marital status, age, national origin, veteran status, disability status, or any other protected class.
EEO/AA/MFDV
Information collected and processed as part of your Columbus Careers profile, and any job applications you choose to submit is subject to Columbus' Applicant and Candidate Privacy Policy.