Semper Valens Solutions Cyber Security Analyst in Ft. Huachuca, Arizona

Position Details: Cyber Security Analyst

Location:

Ft. Huachuca, AZ

Openings:

1

Salary Range:

Based on years of experience and education

Description:

Cyber Security Analyst

Engineer

(Information Security)

Fort

Huachuca, AZ

Clearance:

TS/SCI

Minimum

Years of Experience: 5 - 13 years

Education:

Bachelor’s degree or substitution of experience in lieu of Bachelor’s degree

Location:

Sierra Vista, AZ and Fort Huachuca, AZ (Ragatz Hall) On-site mandatory (no

telework)

Travel:

Required 30%

General

responsibilities:

· Actively participate/lead efforts in

relationship to baseline develop and accreditation under the Risk Management

Framework

· Review and update Information Security

documentation, POAM, Scans, STIGs, SSAA, SRTM, etc.

· Provide customer support in solving

all phases of complex INFOSEC - related technical problems

· Review and recommend INFOSEC solutions

to customer problems based on an understanding of products/systems test results

· Conduct systems security analysis and

implementation, system engineering, electrical design, design assurance, testing,

software engineering, program design, configuration management, integration and

testing of INFOSEC products and techniques.

· Solutions are based on a firm

understanding of government/industry policy, practices, procedures, and

customer requirements

· Ensure INFOSEC solutions are fully

compatible with or engineered into the customer’s network design

· Ensuring all information systems are

functional and secure in operations and poly knowledge of IA policy, procedures

and structure to develop, implement, and maintain a secure information system.

· Develop, implement, and integrate

information security standards and procedures through the IA process as

required.

· Write comprehensive security analysis

reports including assessment-based findings, outcomes and enter this data into

DoD Information Assurance Management data bases for evaluation by Authorizing

Officials to support the receipt of an Authority to Operate (ATO) for the

systems.

· Describe, test and validate security

measures active on security infrastructure devices for the protection of

computer systems, networks and information system

Minimum Qualifications:

· DoD 8570 IAM Level II Certification

· Required Certifications upon hiring:

CISSP

· JWICS, SIPR, and/or CENTRIXS

accreditation experience and Risk Management Framework (RMF) knowledge

· In lieu of RMF experience, hands-on

DIACAO Life Cycle (cradle to grave) experience will be considered:

System

Classification

System

decommission/sustainment

System

Categorization

Control

Selections

Accessing

the controls

Tailoring

the controls (In and Out)

Experience

in DIACAP events

Security

Test and Evaluation

Certification

Test and Evaluation

· Experience in heterogeneous computer

networking technology and work in protocol and/or interface standards

specification

· Experience analyzing and resolving

INFOSEC technical problems

· Familiarity with network and

information system security principles and test practices

· Familiarity with applicable NRO, IC,

DoD policies, procedures and operating instructions related to IT, IA and IM

· Experience developing security

accreditation/certification documentation, and creating and maintaining

security policy and procedures

· Vast knowledge of Government security

policies and familiarity with security-related technologies and auditing tools

· Experience providing security

engineering analysis on a variety of information systems

· Advance skills at developing security

accreditation/certification documentation, and creating and maintaining

security policy and procedures

· Experience performing security

certification engineering analysis, vulnerability assessments, and risk

assessments

· Must be capable of designing and

configuring security tools

· Experience developing test procedures,

establishing test environments, executing security certification

test/demonstrations/evaluations, documenting results, and developing reports,

conclusions, and recommendations

· Must be capable of conceptualizing and

implementing security systems and architectures

· Must be willing to travel up to 30%,

both statewide and overseas

S3 Labor Qualification Criteria

Experience in heterogeneous computer networking technology

and work in protocol and/or interface standards specification. Analyzes and

resolves INFOSEC technical problems. Configures testbeds and conducts testing,

records and analyzes results, and provides recommendations for improvements for

the products/systems under test. Areas

of focus include Guard, Firewall, Secure Network Server, PCMCIA format security

solutions, "Smart Cards", and emerging technologies and future

trends. Supports the integration of

INFOSEC solutions and technologies into networks with particular attention to

protocols, interfaces, and system design.

General experience includes system engineering; electrical design,

software engineering; program design and implementation; configuration

management; or maintenance. Must have knowledge of TCP/IP, information

security/authorization profiles, or security administration of Unix or NT

network/systems. Must have knowledge of

Government security policies and familiarity with security-related technologies

and auditing tools. Must be capable of providing security engineering analysis

on a variety of information systems.

Must be capable of developing security accreditation/certification

documentation, and creating and maintaining security policy and procedures.

Must be capable of performing security certification engineering analysis,

vulnerability assessments, and risk assessments. Must be capable of designing and configuring

security tools. Must be capable of

developing test procedures, establishing test environments, executing security

certification test/demonstrations/evaluations, documenting results, and developing

reports, conclusions, and recommendations. Must be capable of conceptualizing

and implementing security systems and architectures.

About Semper Valens Solutions:

Semper Valens Solutions, Inc. is a Service Disabled Veteran

Owned Small Business (SDVOSB) providing Cost Effective Software and Systems

Engineering, Field Support, Training and Full Life cycle Support Management to

the DOD community

At Semper Valens, our vision is to remain a creative,

cutting edge and cost effective solutions provider where our shared intellect,

industry experience, and technology excellence, make a positive difference in

our customer's success. Our solutions help bridge the gap between IT and

business prioritizations to optimize budgets, risks and operational processes.

We search for outstanding technical professionals, hiring at

all levels of the experience spectrum; intermediate, journeyman and senior.

Consider us for your career plan.

Semper Valens Solutions is an Equal

Opportunity Employer

Semper Valens Solutions, proactively fulfills its role as an

equal opportunity employer. We do not discriminate against any employee or

applicant for employment because of race, color, sex, religion, age, sexual

orientation, gender identity and expression, national origin, marital/parental

status, pregnancy/childbirth or related conditions, physical or mental

disability, genetic information, status as a Disabled Veteran, Recently Separated

Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services

Medal, or any other characteristic protected by law.

If you require a reasonable accommodation to apply for a

position with Semper Valens Solutions through its online applicant system,

please contact Semper Valens Solutions Human Resources Department at (520)

378-1545.

Semper Valens Solutions is an affirmative action/equal

opportunity employer - minorities, females, disabled and protected veterans are

urged to apply. Applicants have rights under Federal Employment Laws.