Massachusetts Veterans Jobs

Cyber Information Assurance Specialist

Lexington, MA

Job Type: Contract

Recruiter: Peter Roos (https://digitalprospectors.com/our-team/peter-roos)

Phone: 603-772-2700

Position: Cyber Information Assurance Specialist

Location: Lexington, MA (Hybrid – 3 days onsite)

Length: 3+ years

Covid Requirements: N/A

Job Description:

Our client is looking for a Cyber Information Assurance Specialist to assess, analyze, and implement information assurance and security engineering systems. The Cyber Information Assurance Specialist will define requirements for business continuity, operations security, cryptography, forensics, regulatory compliance, internal counterespionage (insider threat detection and mitigation), and physical security analysis (including facilities analysis and security management) to best protect company assets. The Cyber Information Assurance Specialist will assess and mitigate system security threats and risks throughout the program life cycle. The Cyber Information Assurance Specialist will validate system security requirements, definition, and analysis. The Cyber Information Assurance Specialist will implement and validate security designs in hardware, software, data, and procedures. The Cyber Information Assurance Specialist will verify security requirements, perform system certification, accreditation planning and testing, and liaison activities. The Cyber Information Assurance Specialist will support secure systems operations and maintenance.

Essential Duties and Responsibilities (but not limited to):

• Develop policies, plans, and procedures for IAW Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012,Safeguarding Covered Defense Information and Cyber Incident Reporting, and Cyber Maturity Model Certification (CMMC).

• Perform risk analysis and reporting on DFARs and NIST compliance.

• Audit information systems according to NIST SP 800-37, 800-171, CMMC, and DFARs frameworks.

• Assess requirements for compliance with government regulations and prepare documentation and policy IAW requirements.

• Perform complex analysis of risk of security exceptions through the data security plan process.

• Recommend and develop mitigations to facilitate continued research despite exceptions from traditional security controls.

• Develop and enforce information security policy.

• Conduct staff security outreach and engagement.

• Assess security risks of cutting-edge technology.

• Support vulnerability management operations through documentation and reporting of findings to lab leadership.

• Support incident response and remediation efforts.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, Computer Information Systems, or related field of study, technical experience and skills, course work completed toward a degree, and industry IT certifications (i.e., CISSP and CISA) may be considered substitutes for education and experience (Master's degree is preferred).

• Demonstrated knowledge of the Defense Federal Acquisition Regulation Supplement, contract clause 252.204-7012, Safeguarding Covered Defense Information and Cyber Incident Reporting and Cybersecurity Maturity Model Certification (CMMC) for cybersecurity framework requirements and security controls.

• General knowledge of enterprise security tools, such as vulnerability scanners, log aggregators, networking and firewalls, and VPNs.

• Experience and familiarity with multiple operating systems such as Windows Server, Windows 10, Red Hat Enterprise Linux, Ubuntu, Mac, etc.

• Familiarity with NIST SP 800-53, NIST SP 800-171, and CIS Controls.

• Demonstrated capabilities in presenting ideas written and orally.

• Some local and overnight travel may be required (less than 10%).

• Thorough knowledge of risk assessment methodology, such as NIST SP 800-30, Factor Analysis of Information Risk (FAIR), Operationally Critical Threat, Asset, and Vulnerability Evaluation (OCTAVE), or other risk assessment practices is preferred.

• Prior experience in a DoD Industrial Security environment is preferred.

• Due to the nature of the work, an Interim clearance is required, however an active Secret clearance is highly preferred.

POST-OFFER BACKGROUND CHECK IS REQUIRED. Digital Prospectors is an Equal Opportunity Employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Make this your next career move as one of our many long-term contractors or employees!

• Work as our full-time employee with full benefits (Medical, Dental, Vision, Life, STD, LTD, PTO, etc.) - OR - work as a W2 hourly contractor at a higher pay rate if you don't need the benefit package.

Come see why DPC has achieved:

• 4.9/5 Star Glassdoor rating and the only staffing company (< 1000 employees) to be voted in the national Top 10 ‘Employee’s Choice - Best Places to Work’ by Glassdoor.

• Voted ‘Best Staffing Firm to Temp For’ five times by Staffing Industry Analysts as well as a ‘Best Company to Work For’ by Forbes, Fortune and Inc. magazine.

www.LoveYourJob.com