Precise Systems is a professional services company currently working for the U.S. Navy, U.S. Marine Corps, and U.S. Air Force. Our core competencies include systems engineering, program and project management, logistics, information technology and cyber security, and software development services. We were founded in 1990 and since our establishment we have been providing cutting edge solutions and support to our warfighters. We understand and provide expert consultation on network and weapons systems acquisition programs, maintenance/modernization programs, and sustainment programs.

We are currently seeking a seeking an Information Security Analyst to plan, implement, upgrade, or monitor security measures for the protection of computer networks and information and assess system vulnerabilities for security risks and propose and implement risk mitigation strategies.

Duties:

• Oversees the cybersecurity program of an information system or network; including managing information security implications within the organization, specific program, or other area of responsibility, to include: Strategy, personnel, infrastructure, requirements, policy enforcement, emergency planning, security awareness, and other resources
• Conducts the integration/testing, operations, and maintenance of systems security
• Responsible for the analysis and development of the integration, testing, operations, and maintenance of systems security
• Ensure all systems security operations and maintenance activities are properly documented and updated as necessary
• Mitigate/correct security deficiencies identified during security/certification testing and/or recommend risk acceptance for the appropriate senior leader or authorized representative
• Assess and monitor cybersecurity related to system implementation and testing practices
• Verify minimum security requirements are in place for all applications
• Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures and maintenance training materials)
• Verify and update security documentation reflecting the application/system security de-sign features
• Collect and maintain data needed to meet system cybersecurity reporting
• Ensure that cybersecurity inspections, tests, and reviews are coordinated for the network environment
• Participate in an information security risk assessment during the Security Assessment and Authorization process
• Participate in the development or modification of the computer environment cybersecurity program plans and requirements
• Assist in providing system related input on cybersecurity requirements to be included in statements of work and other appropriate procurement documents
• Identify security requirements specific to an information technology (IT) system in all phases of the System Life Cycle
• Ensure plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc
• Participate in the acquisition process as necessary, following appropriate supply chain risk management practices
• Provide leadership and direction to information technology (IT) personnel by ensuring that cybersecurity awareness, basics, literacy, and training are provided to operations personnel commensurate with their responsibilities
• Track audit findings and recommendations to ensure appropriate mitigation actions are taken
• Oversee policy standards and implementation strategies to ensure procedures and guidelines comply with cybersecurity policies
• Develop and maintain RMF Assess and Authorize documentation required to achieve an Authority to Operate (ATO)
• Prepare and maintain information systems ATO record on the Navy’s Enterprise Mission Assurance Support Service (eMASS)
• Run vulnerability assessment tools; ACAS vulnerability scanner, Security Content Automation Protocol (SCAP), STIG Viewer
• Manage system/network vulnerabilities using the Vulnerability Remediation and Assets Manager (VRAM)
• Adherence to NIST 800-53 Security and Privacy Controls

Required Education:

• BS or BA Degree in in Computer Science, Computer Engineering, or Information Systems.

Required Experience:

• Candidate must have approximately 3 or more years of cyber security experience in secure network and system design, analysis, procedure/test generation, test execution and implementation of computer/network security mechanisms
• U.S. Citizenship required
• Minimum Secret clearance required OR must be eligible to apply and be granted interim DoD interim clearance prior to employment..

Certification Requirements:

• One or more of the following certifications or Prior military Cyber experience. (i.e. CompTIA Advanced Security Practitioner (CASP) or Certified Authorization Professional (CAP) or Security+(CE) or Systems Security Certified Practitioner (SSCP) or Committee on National Security Systems Instruction (CNSSI) 4012-4016 Certificate or National Defense University (NDU) Chief Information Security Office (CISO) certificate, or prior Navy military with NEC 2780 or 2779 or 2781

Precise Systems, Inc. is an Affirmative Action/Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability or protected veteran status. Precise Systems, Inc. participates in E-Verify. Precise Systems, Inc. encourages and supports workplace diversity.