Scientific Research Corporation

Cyber Security Analyst III (ISSE)

Scientific Research Corporation$119K — $198K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Active Top Secret/SCI clearance with CI Poly or willingness to obtain CI Poly
  • 2-5 years of cybersecurity experience
  • Proficiency in Risk Management Framework (RMF) processes
  • Experience with validation of security artifacts including POA&Ms, ACAC/Nessus, DISA STIGs
  • Strong communication skills with the ability to convey ideas clearly
  • Team player capable of multitasking and managing diverse tasks
  • Self-starter requiring minimal supervision

Responsibilities

  • Develop and update security assessment documentation for information systems
  • Perform ongoing compliance assessments using tools like ACAS and McAfee
  • Verify system patches and antivirus definitions using automated tools
  • Adhere to configuration and change management policies for all software
  • Conduct security audits to identify unusual or inappropriate activity
  • Perform security assessments following NIST and NAVINTEL IA guidance
  • Collaborate with system engineers to resolve security issues
  • Report incidents according to the command incident response plan

Benefits

  • Opportunities for professional development and continuous learning
  • Engagement with cutting-edge technologies and security frameworks
  • Part of a team dedicated to national security initiatives
  • Flexibility with team-oriented work environments
  • 10% travel for on-site assessments and audits
Full Job Description
Salary Statement
Estimated Starting Salary Range: USD $119,100.00/Yr. - USD $198,450.00/Yr. Salary to be determined by the education, experience, knowledge, skills, and abilities of the applicant, internal equity, and alignment with market data. Description

As a Carry-on Special Technologies Engineering and Integration (STEI) Information Systems Security Engineer (ISSE), this position is responsible for supporting the Information System Owner to complete security assessment, continuous monitoring, and configuration management responsibilities.

Responsibilities include, but are not limited to:

  • Developing and updating assessment and authorization documentation (Body of Evidence) for management and continuous monitoring of information systems
  • Performing ongoing compliance assessments using tools, such as Assured Compliance Assessment Solution (ACAS), Secure Content Automation Protocol (SCAP), and McAfee Virus Scan Enterprise, while reviewing, documenting, and maintaining all results
  • Verifying patches and virus definitions to the systems using existing automated tools
  • Adhering to pre-defined configuration management and change management policies and procedures for authorizing software prior to its implementation on systems
  • Performing security audits to track multiple events including any signs of inappropriate or unusual activity, intrusion events, data transfers, etc.
  • Performing security assessments of NCS Family of Systems in accordance with NIST, Navy, NSA and NAVINTEL IA guidance
  • Working with system engineers to take corrective action to resolve identified problems
  • Performing Site Based Security Assessments (SBSAs) of systems and recommending authorization to the Designated Authorizing Official (DAO) as a certified trusted agent
  • Reporting security incidents in accordance with the command incident response plan
  • Ensuring systems are operated, used, maintained, and disposed of in accordance with all applicable security policies and practices

#LI-LL1

Requirements
  • Must possess an active Top Secret/SCI clearance w/CI Poly (or willing to sit for CI Poly)
  • Must be able to be appointed ISSE for NCS systems within 6-months of employment
  • Experience in validation of POA&Ms, ACAC/Nessus, Jfrog Xray, SCAP, DISA STIGs and general RMF artifacts
  • Experience in applying STIG and security control hardening along with reverse engineering potential systematic operational functionality breaks with potential compensating risk management approaches
  • 2-5 years of cybersecurity experience
  • Experience with Risk Management Framework (RMF) processes
  • Have developed communication skills and the ability to express thoughts and ideas clearly and concisely
  • Must be a team player, dedicated to program support, capable of multitasking and working several complex and diverse tasks with simultaneous or near simultaneous deadlines
  • Be a self-starter who is accountable and requires minimal direction and supervision
  • Be open to new and innovative ideas
Desired Skills
  • Proficiency in a scripting language such as JavaScript, PHP, Python, Bash, Powershell, etc.
  • Proven experience with container technologies (e.g., Docker, Podmon, Kubernettes)
  • Familiarity with the CI/CD tools such as BitBucket, Jenkins, SonarQube, Artifactory, and JFrog Xray
  • Experience developing custom automation scripts, specifically within a containerized CI/CD pipeline
  • Experience withAmazon EKS or other container orchestration platforms
  • Knowledge of data flows and the ability to work up readable network topology and data flow diagrams
  • Experience with the following systems/platforms/tools: XACTA, XACTA 360 (preferred), eMASS, HBSS, ACAS, Nessus, SPLUNK
  • Experience with NAVINTEL IA and NSA Enterprise Services, like Continuous Monitoring
  • Knowledge of the following web servers: Apache Web Server, Apache Tomcat, Red Hat JBOSS, nginx, MS IIS
  • Knowledge of VMWare ESXi
  • Knowledge of configuration of the following SQL databases: MS SQL, PostgreSQL, MongoDB, MariaDB, MySQL, Elasticsearch
  • Extensive training or experience with Windows and UNIX based Information Systems standards with a working knowledge of networking devices
Clearance Information

SRC IS A CONTRACTOR FOR THE U.S. GOVERNMENT. THIS POSITION WILL REQUIRE U.S. CITIZENSHIP AS WELL AS A U.S. GOVERNMENT SECURITY CLEARANCE AT THE TOP SECRET / SCI LEVEL with CI POLY ELIGIBILITY

Travel Requirements
  • 10% travel

About Scientific Research Corporation

Scientific Research Corporation provides innovative solutions to the U.S. Government, private industry, and international markets. Scientific Research Corporation was founded in 1988 and was headquartered in Atlanta, Georgia.

Scientific Research Corporation Careers

Joining Scientific Research Corporation means becoming part of a world-class team of professionals who are committed to pioneering scientific and technological innovations. This esteemed company offers a plethora of job opportunities that pave the way for personal and professional growth in numerous cutting-edge fields.

Explore Career Opportunities

Scientific Research Corporation is actively hiring and continually seeks talented individuals who are eager to drive innovation and lead in their respective fields. With a variety of positions available, candidates can find the perfect match for their skills and career ambitions.

Internship Programs

For those starting their career journey, Scientific Research Corporation provides robust internship programs designed to offer hands-on experience in a dynamic environment. Internships are a cornerstone of the company's commitment to nurturing new talent and fostering leadership skills among the future leaders of the industry.

Professional Growth and Development

At Scientific Research Corporation, the growth of its team members is a priority. The company supports career advancement through comprehensive professional development and diversity training programs. These initiatives ensure that every employee has the opportunity to excel and innovate within their roles.

Culture and Benefits

The culture at Scientific Research Corporation is built on a foundation of diversity and inclusion, where every team member’s contribution is valued. Employees enjoy a range of benefits designed to support their professional and personal lives, including competitive health benefits, retirement plans, and flexible working conditions.

Networking and Leadership

Employees at Scientific Research Corporation are encouraged to engage in networking opportunities within and beyond the company. This fosters a culture of collaboration and continuous learning. Leadership within the company is not just about guiding others but also about driving forward the mission of innovation and excellence.

Applying for a Position

To apply for a position at Scientific Research Corporation, candidates should prepare their resume to highlight relevant experience and skills. The interview process is designed to assess not only professional qualifications but also a candidate's alignment with the company’s values and culture.

Stay Connected with Scientific Research Corporation Careers

Prospective candidates are encouraged to stay informed about new job opportunities and company news by subscribing to job alert emails. This ensures that they do not miss out on exciting and rewarding employment opportunities at Scientific Research Corporation.

Join the Team

Search open positions that match your skills and interests. Scientific Research Corporation looks for passionate, curious, creative, and solution-driven team players.

SEARCH SCIENTIFIC RESEARCH CORPORATION JOBS

Keep Up to Date

Stay ahead with career tips, insider perspectives, and industry-leading insights you can put to use today—all from the people who are part of Scientific Research Corporation.

READ CAREERS BLOG

Job Alert Emails

Personalize your subscription to receive job alerts, latest news, and insider tips tailored to your preferences. Discover what exciting and rewarding opportunities await at Scientific Research Corporation.
Learn more about Scientific Research Corporation

Similar Jobs

More Jobs at Scientific Research Corporation

  • Scientific Research Corporation
    Cyber Security Analyst III (ISSE)
    $119K — $198K *
    Virginia Beach, VA 23464 (Virginia Beach City County)
    Information Technology
    In-Person
  • Scientific Research Corporation
    Network Engineer
    $70K — $95K *
    Charleston, SC 29406 (Charleston County)
    Information Technology
    In-Person
  • Scientific Research Corporation
    Cyber Security Engineer (Red Team)
    $111K — $185K *
    Patuxent River, MD 20670 (Saint Marys County)
    Information Technology
    In-Person
  • Scientific Research Corporation
    Network Engineer
    $70K — $95K *
    North Charleston, SC 29405 (Charleston County)
    Telecommunications & Hardware
    In-Person
  • Scientific Research Corporation
    Full Stack Developer
    $80K — $110K *
    Charleston, SC 29406 (Charleston County)
    Information Technology
    In-Person

More Information Technology Jobs

Find similar Cyber Security Analyst III (ISSE) jobs: