Senior/Principal Cyber Security Analyst

Company: Mission Support and Test Services, LLC
Location: Las Vegas
Posted on: March 17, 2023

Job Description:

Overview Mission Support and Test Services, LLC (MSTS) manages and operates the Nevada National Security Site (NNSS) for the U.S. National Nuclear Security Administration (NNSA). Our MISSION is to help ensure the security of the United States and its allies by providing high-hazard experimentation and incident response capabilities through operations, engineering, education, field, and integration services and by acting as environmental stewards to the Site's Cold War legacy. Our VISION is to be the user site of choice for large-scale, high-hazard, national security experimentation, with premier facilities and capabilities below ground, on the ground, and in the air. (See NNSS.gov for our unique capabilities.) Our 2,750+ professional, craft, and support employees are called upon to innovate, collaborate, and deliver on some of the more difficult nuclear security challenges facing the world today. In this environment, the best ideas need to be voiced and every opinion matters. As such, MSTS places great value on Diversity, Equity, and Inclusion and is committed to a diverse and equitable workforce, with an inclusive culture that values and celebrates the diversity of our people, talents, ideas, and perspectives. + MSTS offers our full-time employees highly competitive salaries and benefits packages including medical, dental, and vision; both a pension and a 401k; paid time off and 96 hours of paid holidays; relocation (if located more than 75 miles from work location); tuition assistance and reimbursement; and more. + MSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc. NNSS COVID-19 attestation requirements:https://www.nnss.gov/pages/nfo/WorkingForMSTS.html Responsibilities Serve as a Senior/Principal Cyber Security Analyst for the Emergency Communications and Services Division (ECSD), Emergency Communications Network (ECN) Cyber Security Department located at the Remote Sensing Laboratory, Nellis (RSLN) on Nellis Air Force Base in Nevada and/or Albuquerque, NM. Key Responsibilities Senior Cyber Security Analyst: + Assist in researching, compiling, and analyzing technical data. + Perform Security Test and Evaluations of information systems in support of a security plan. + Write basic information system security plans (ISSPs) for unclassified systems. + Complete assessment and authorization of information systems on unclassified systems and networks, assist with the completion and mitigation of security testing and evaluations results. + Design networks and systems with a security focus, ensuring systems are developed in accordance with federal law, customer requirements, assessment and authorization requirements, and industry best practices. + Assist the ISSM and ISSOs with the execution of their assigned duties. + Review current Cyber Security threat information and assists the Threat Evaluation Team with mitigating vulnerabilities identified. + Collaborate with other outside Cyber Security interests such as Counterintelligence, other DOE sites, US-CERT, and law enforcement. + Conduct a variety of Cyber Security policy compliance tasks such as discovering unauthorized devices, conducting site surveys for non-compliance, and ensuring network access requirements are met. + Assist with data calls, FISMA reporting, compliance scanning and reporting, continuous monitoring and compiling reports for auditors. + Provide Cyber Security advice and support throughout the IT system lifecycle. + Ensure configuration compliance of workstations, servers, network devices and other information technology components through the use of approved baselines and compliance scanning tools. + Implementation, management, and maintenance of new and existing security tools. + Continuous monitoring in accordance with the approved Continuous Monitoring Strategy. + Incident response in accordance with the approved incident response plan developed to meet requirements outlined in NNSA SD 205.1. + Uses established standards, practices and procedures as well as an increasing technical knowledge to solve problems and complete projects. + Contribute to an overall productive and respectful work environment by providing excellent customer service and working in a positive, collegial manner at all times. Maintains cooperative and respectful working relationships with Cyber Security Staff, other divisions, and other customers. + Promote project management best practices and continuous improvement. Principal Cyber Security Analyst: + Assist in researching, compiling, and analyzing technical data. + Perform Security Test and Evaluations of information systems in support of a security plan. + Write basic information system security plans (ISSPs) for unclassified systems. + Complete assessment and authorization of information systems on unclassified systems and networks, assist with the completion and mitigation of security testing and evaluations results. + Design networks and systems with a security focus, ensuring systems are developed in accordance with federal law, customer requirements, assessment and authorization requirements, and industry best practices. + Assist the ISSM and ISSOs with the execution of their assigned duties. + Review current Cyber Security threat information and assists the Threat Evaluation Team with mitigating vulnerabilities identified. + Collaborate with other outside Cyber Security interests such as Counterintelligence, other DOE sites, US-CERT, and law enforcement. + Conduct a variety of Cyber Security policy compliance tasks such as discovering unauthorized devices, conducting site surveys for non-compliance, and ensuring network access requirements are met. + Assist with data calls, FISMA reporting, compliance scanning and reporting, continuous monitoring and compiling reports for auditors. + Provide Cyber Security advice and support throughout the IT system lifecycle. + Ensure configuration compliance of workstations, servers, network devices and other information technology components through the use of approved baselines and compliance scanning tools. + Implementation, management, and maintenance of new and existing security tools. + Continuous monitoring in accordance with the approved Continuous Monitoring Strategy. + Incident response in accordance with the approved incident response plan developed to meet requirements outlined in NNSA SD 205.1. + Uses established standards, practices and procedures as well as an increasing technical knowledge to solve problems and complete projects. + Contribute to an overall productive and respectful work environment by providing excellent customer service and working in a positive, collegial manner at all times. Maintains cooperative and respectful working relationships with Cyber Security Staff, other divisions, and other customers. + Promote project management best practices and continuous improvement. + Write complex information system security plans (ISSPs) for classified and unclassified systems. + Complete assessment and authorization (A&A) of information systems on unclassified and classified networks, assists with the completion and mitigation of security testing and evaluations results,and is a resource for MSTS and other NNSA enterprise organizations for the A&A process. + Provide training in the area of Cyber Security to non-technical and technical individuals. + Oversee the Cyber Security annual training for information system access and privilege level access. + Participate in business development by defining customer needs, developing proposals and planning projects that will produce results meeting customer needs. + Develop standards, practices and procedures as well as an increasing technical knowledge to solve problems and complete projects. Qualifications Senior Cyber Security Analyst: + Bachelor's degree or equivalent training and experience in a computer-related field and at least 5 years of related experience. + The perspective candidate should meet or be working towards compliance with DoD 8570 certification requirements for Information Assurance Manager (IAM) Level II & III in accordance with DOE requirements preferred. + Demonstrate a thorough understanding of basic principles, theories, standards, practices, protocols, and procedures used in Cyber Security. Understand the Windows operating system and command line tools, network protocols, and TCP/IP fundamentals. + Knowledge of network-based services and client/server applications, familiarity with intrusion detection systems, familiarity with network architecture and security infrastructure placement. + Ability to use network scanning and vulnerability tools and interpret the results. + Ability to review and validate remediation efforts of vulnerability scan results. + Knowledge of packet inspection, IDS/IPS, HBSS operations, firewall policies, creation of custom host-based and perimeter IDS/IPS signatures. + Knowledge of Windows Active Directory and how to configure GPO settings and various information assurance tools. + Understanding of encryption technologies, identity and authentication technologies. + Ability to maintain strict confidentiality. + Ability to multitask as required between responsibilities. + Ability to communicate effectively in English, both verbally and in writing, sufficient to communicate with co-workers, customers, testify, write clear and concise reports, gather information, and collect information. + Ability to use multiple electronic devices including standard office machines, cellular phones, and security appliances. + Knowledge of Cyber Security vulnerabilities, mitigation strategies, network architecture, and how to apply security controls. + Ability to articulate highly technical processes and information to a non-technical audience. + Ability to meet the physical requirements necessary to safely and effectively perform all assigned duties. + Ability to pass a federal background and obtain a "Q" Clearance. + The primary work location will be based at the Remote Sensing Laboratory at Nellis Air Force Base, Las Vegas, NV (RSL-N). + Travel as part of an installation or restoration team when directed and participate as a deployed member of the National Emergency Response Groups when required. + Work schedule for this position will either be 4/10's, 9/80, or 5/8's (per management discretion). Must be willing to perform on-call duty and ensure availability to work non-standard hours. + Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing. + Must possess a valid driver's license. Principal Cyber Security Analyst: + Bachelor's degree or equivalent training and experience in a computer-related field and at least 8 years of related experience and ll of the above plus the following. + The perspective candidate should meet or be working towards compliance with DoD 8570 certification requirements for Information Assurance Manager (IAM) Level II & III in accordance with DOE requirements preferred. + Has command of a broad range of the most advanced Cyber Security principles, protocols, concepts and theories in a broad range of disciplines. + Ability to integrate work of specialized personnel to produce the desired results. + Knowledge of network-based services and client/server applications, familiarity with intrusion detection systems, familiarity with network architecture and security infrastructure placement. + Knowledge of Cyber Security vulnerabilities, mitigation strategies, network architecture, and how to apply security controls. + Ability to analyze network traffic, identify misconfigurations of information systems and networks, troubleshoot security appliances, independently identify network and host security vulnerabilities. + Understand the Windows operating system and command line tools, network protocols, and TCP/IP fundamentals. + Ability to maintain strict confidentiality. + Ability to communicate effectively in English, both verbally and in writing, sufficient to communicate with co-workers, customers, testify, write clear and concise reports, gather information, and collect information. + Ability to use multiple electronic devices including standard office machines, cellular phones, and security appliances. + Ability to articulate highly technical processes and information to a non-technical audience. + Ability to meet the physical requirements necessary to safely and effectively perform all assigned duties. + Ability to pass a federal background and obtain a "Q" Clearance. + The primary work location will be based at the Remote Sensing Laboratory at Nellis Air Force Base, Las Vegas, NV (RSL-N). + Travel as part of an installation or restoration team when directed and participate as a deployed member of the National Emergency Response Groups when required. + Work schedule for this position will either be 4/10's, 9/80, or 5/8's (per management discretion). Must be willing to perform on-call duty and ensure availability to work non-standard hours. + Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing. + Must possess a valid driver's license. MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. ReferenceDOE Order 472.2 (https://www.directives.doe.gov/directives-documents/400-series/0472.2-BOrder-chg1-pgchg) , "Personnel Security". If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted. Department of Energy Q Clearance (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in10 CFR Part 707.4 (http://www.ecfr.gov/cgi-bin/text-idx?SID=14b1c770db022992d237769fbe9fc519&mc=true&node=se10.4.707\_14&rgn=div8) , "Workplace Substance Abuse Programs at DOE Sites," will be conducted. Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference10 CFR Part 709 (http://www.ecfr.gov/cgi-bin/text-idx?tpl=/ecfrbrowse/Title10/10cfr709\_main\_02.tpl) , "Counterintelligence Evaluation Program." MSTS is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or other characteristics protected by law. MSTS is a background screening, drug-free workplace. Annual salary range for this position is: $90,563.20- $168,396.80. Starting salary is determined based on the position market value, the individual candidate education and experience and internal equity. Posted Date7 days ago(3/6/2023 4:58 PM)Job ID2023-5148# of Openings1CategoryInformation TechnologyTypeFull-TimeLocation : CityLas VegasLocation : State/Province (Full Name)Nevada

Keywords: Mission Support and Test Services, LLC, Las Vegas , Senior/Principal Cyber Security Analyst, Professions , Las Vegas, Nevada