Position Overview
QinetiQ is looking Cybersecurity Analyst to support our Lorton, VA location.
The selected candidate will provide Cybersecurity Analyst support in coordination with QinetiQ CISO to achieve, manage and maintain secure cybersecurity posture across QinetiQ Enterprise.
Responsibilities
- Responsible for designing, implementing, and maintaining the organization's cyber security assurance controls and processes.
- Contributes to incident response planning and post-incident analysis
- Prepares risk reports and present findings to senior management
- Stays abreast of the latest cyber security trends, threats, and technologies
- Provide vulnerability analysis and reporting on accredited information systems
- Scans information systems using scanning tools such as Nessus
- Creates documentation such as SOPs, internal process documents, and input into cyber policies that support the continuous monitoring of accredited information systems
- Coordinates with information system POCs for plan updates and mitigation strategies to ensure overall health of IT systems, networks and applications
- Develop continuous monitoring and plans of actions and milestones (POA&Ms)
- Assess and validate configuration files from various technologies according to DISA’s Security Technical Implementation Guides (STIGs) and National Institute of Standards and Technology (NIST) guides
- Develop and implement security policies and procedures, conducting security assessments, and monitoring the organization's cyber security posture in accordance with DFARS 252.204-7012
- Must develop and maintain a System Security Plan (SSP) and a Plan of Action and Milestones (POA&M) to address any gaps.
- Responsbile for conducting DoD NIST 800-171 assessment
- Will cooperate with DoD audits and provide access to evidence demonstrating compliance
Required Qualifications
- at least 6 years of Cyber Security experience managing system security controls, Accreditations and ATOs
- Bachelor's degree may be substituted for 2 years of experience, master’s may be substituted for 4 years of experience.
- Demonstrated strong and effective verbal, written, and interpersonal communication skills
- Relevant certifications: CompTIA Security+, Cybersecurity Analyst +, Certified in Governance, Risk and Compliance (CGRC), CMMC Certified Professional (CCP), CISSP, a plus
Pay Transparency
The salary range for this role is $90,000 - $115,00 USD. The salary range provided is a good faith estimate representative of all experience levels. QinetiQ US considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate’s work experience, location, education/training, and key skills.