Cyber Security Analyst

Peachtree City, GA

Active Secret Clearance Required

Talent Orchard LLC, a boutique workforce solutions company, has been engaged by a strategic solutions firm serving customers in the US Government to assist in their search to identify highly skilled talent for a brand new contract award supporting the DoD. This work will be performed in Peachtree City, GA.

The Cybersecurity Analyst will be responsible for supporting a team of Risk Management Framework (RMF) governance, risk, and policy analysis professionals focused on improving the implementation of the RMF for a large program team.

Key Responsibilities:

• Use Federal Security Assessment and Authorization (SA&A) processes to research, verify and document information security controls in order for the "systems" to be accredited.
• Responsible for planning, developing, finalizing, and reviewing key deliverables in each stage of the SA&A process for Major Applications (MAs) and General Support Systems (GSS).
• Create and prepare Security Plans (SPs) and other Security Authorization (SA) documents, successfully ensuring required documents, and enforced compliance of internal security requirements with industry publications such as National Institute of Standards and Technology (NIST), Department of Defense (DoD) and Federal Information Security Management Act (FISMA).
• Support a client as an assessment and authorization (A&A) analyst, including A&A efforts for various agency systems.
• Maintain responsibility for supporting federal clients obtaining the authority to operate (ATO) for new and modernized systems.
• Assemble all client documentation and supporting materials to assessment packages for the government for approval.
• Ensure all supporting artifacts and results will be documented in Enterprise Mission Assurance Support Service (eMASS)
• Support the development of requirements and develop recommendations for a Risk Dashboard implementation
• Support the implementation of comprehensive security controls consistent with risk
• Formulate the appropriate actions that support the completion of the Plan of Action and Milestone (POA&M) tasks, effectively works towards the mitigation of findings for the networks and systems under the division purview.
• Coordinate the development of Contingency Plans and ensures that the plans are tested and maintained on an annual basis.
• Provide ongoing gap analysis of current policies, practices, and procedures as they relate to established guidelines outlined by NIST, OMB, FISMA, etc.
• Create and compile Authorization packages to include: Designation Letters, Security Plans, Contingency Plans, and etc.
• Analyze and assist in the application of Security Technical Implementation Guides (STIGs) and Information Assurance Vulnerability Alerts (IAVAs), and Independent Validation and Verification (IV&V) Assessments.

Required Skills:

• Five or more years of Information Security experience in realms of RMF and A&A.
• Certified Information Systems Security Professional (CISSP), and other applicable certifications preferred or be IAT Level III compliance within 90 days
• Deep knowledge/experience with NIST special publications (SPs) regarding the SA process, including SP 800-53, SP 800-137, and SP 800-37
• Demonstrated experience with all phases of the NIST RMF
• Expertise in consulting with clients to define needs and issues, develop requirements, and analyze findings to recommend solutions to clients
• Strong interpersonal, communication, presentation, and writing skills
• Experience with continuous monitoring and plans of action and milestones (POA&M) management.
• Ability to adhere to the NIST Risk Management Framework (RMF) to support the A&A process, including analyzing the development of supporting policies, procedures, and plans, designing and implementing security controls, testing and validating security controls, and analyzing and tracking corrective action plans.
• Ability to work independently and also collaborating closely with application developers, engineers and other
• Demonstrated proficiency in interpersonal, analytical, oral and written communication skills.

Required Qualifications:

Active DoD Secret Clearance or be able to obtain a DoD Clearance

Bachelor's degree in a business-oriented or computer science field preferred

CISSP or an IAT Level III Certification within 90 days of hire

Established in 2010, Talent Orchard has an exceptional reputation, providing staffing solutions to time-sensitive, talent scarcity issues to deliver better talent management ROI.  Our specialty lies in the critical area of program talent acquisition and resource management, not in one narrow skillset, but across many areas of technical and functional delivery. To learn more about our other exciting opportunities, visit our Jobs Page at www.talentorchard.com.

@talentorchard #cyberanalyst @secretjobs @gajobs #cyberroles