Role:IA Reporting and Compliance Analyst
NetCentrics is looking for an experienced Information Assurance Reporting and Compliance
Analyst to support our US Coast Guard contract working at the Coast Guard base in Alexandria, VA.
This position is open only to candidates with an active or recently inactive DOD Security Clearance.
Day-to-day responsibilities include:
Examine datasets and use investigative techniques to determine
what systems are in compliance with or deviating from the known standard
Filter a dataset and conduct analysis in order to provide the Customer with
an explanation based on potential scenarios proposed by the Government or the
Analyze data contained within multiple tools (e.g. HBSS, ACAS, etc.) and determine
the potential attack surface of a vulnerability based on their understanding of the
exploitability of the vulnerability and active and passive defenses used by the network
Perform audits of privileged users and end users to ensure recurring training
requirements are completed in a timely manner, and provide reports detailing metrics on compliant/noncompliant users to CGCYBER.
Maintain datasets related to information systems and related data used by the field.
Disseminate IAVM/ISVM notices and track compliance as directed by USCYBERCOM or CGCY
Assist with the coordination of and implementation of the IA program with a
specific emphasis on the reporting, tracking and compliance of KPIs
Analyze a large dataset to generate reports required to comply with DHS Data
Feed Continuous Monitoring requirements
Responsible for drafting management level reports detailing vulnerabilities
released, compliant, and non-compliant at minimum as well as trending information
across the enterprise
Minimum of 2 years Information Assurance (IA) experiencerequired
Experienced with the MS Office Suite, especially analyzing large data sets
with MS Excel; Must be proficient in MS Excel formulas
Knowledge of tools such as HBSS, SCCM, SQL and databases, and SharePoint plus
Knowledge of following is preferred but not required: DISA CMRS program, web
site vulnerabilities, Telos XACTA, Telos Continuum,
Compliance with DODI 8570 IAT Level II. One of the following certifications
required: Security+ CE, GSEC, SSCP.
If you do not have one of the following certifications, you must
be able to obtain it within the first 3 months of employment. NetCentrics
Compliance with DODI 8570 CND Auditor. One of the following certifications
required: CEH, CISA, GSNA. If you do not have one of the following certifications,
you must be able to obtain it within the first 3 months of employment.
NetCentrics provides reimbursement
This position requires an active DoD Secret Clearance or higher.