DSA is seeking a highly qualified Senior Cyber Security Specialist with an active secret clearance to join our team at Ft Belvoir, VA

Required Qualifications

• 8+ years of security experience in either the defense industry or Info Systems Security, or a combination of both
• Knowledge of information systems security components and best practices including; firewalls, intrusion detection systems, anti-virus software, data encryption, and other Industry standard techniques and practices
• Experience developing/contributing to C4ISR guidelines/plans/policies, analyses and reviews that require CS expertise in the areas of Risk Management Framework (RMF) Assessments, review and processing of Authority To Operate (ATO)/Interim Authority To Test (IATT)/Assess Only documentation, accreditation and certification procedures and documentation, PPP evaluations, and Cyber Security assessments.
• Responsible for reviewing and validating the author generated documents for the A&A effort to include all the information connected with the assessment of the Information System (IS). This includes but is not limited to the Security Plan (SP), Security Assessment Plan (SAP), Security Assessment Report (SAR) and Plan of Action and Milestones (POA&M).
• Perform comprehensive assessments of the organization's package, particularly focusing on cybersecurity controls, policies, and procedures.
• Evaluate compliance with established standards and communicate actionable recommendations.
• Identify weaknesses, vulnerabilities, and areas of non-compliance within the organization's GRC landscape, conducting thorough assessments to gain a holistic understanding.
• Recommend prescriptive strategies to address identified compliance gaps, vulnerabilities, and risks, aligning with industry standards and regulatory requirements.
• Provide guidance and expertise on the interpretation and application of relevant standards and frameworks, ensuring alignment with organizational objectives and best practices.
• Conduct regular reviews and audits to monitor compliance with established frameworks, identify areas for improvement, and enhance overall compliance posture.
• Army IA Training and Certification BBP are required.
• Current Security + Certification
• IAM III with IAT I or II
• Understanding and hands-on working knowledge of the RMF implemented within eMASS
• Current knowledge of security tools, trends, analysis and reporting. The use and operation of these tools used within the DoD and Army is required for mid-level support. Analysis and interpretive ability of reports generated from these tools is also a requirement for all levels of support.
• Experience developing or editing a variety of organizational and system policies and procedures required show compliance with RMF security controls and System Development Life Cycle sustainment.
• Ability to effectively communicate with technical, management and administrative personnel to ensure government IA requirements are understood and implemented to the greatest extent possible.
• Demonstrable knowledge and direct, recent DoD Cybersecurity experience including familiarity with Federal, DoD and Army IT security requirements is essential.
• Knowledge of an experience in performing Security Technical Implementation Guides (STIG) and conducting scans and analysis
• Experience with and knowledge of:
  • Authority to Connect requirements and Risk Management Framework
  • MS Office Suite to include proficiency in Visio & Project; virtual computing both at the PC & server levels

• Department of Defense (DoD) courses related to government security
• NIST and ISO27
• Knowledge of the Risk Management Framework
• Experience with Security Directives, Policies, Publications and Regulations including but not limited to the NIST 800-171, NIST 800-53, JSIG and/or ICD 503
• Contract Data Requirements List (CDRL) experience
• Technical knowledge/background in router, switches, servers, databases and their operational interdependencies (IP addressing and port connections).
• Experience creating, tracking and updating Plan of Action and Milestones (POA&M items for non-compliant security controls)

Many of DSA's positions require the ability to obtain a security clearance. Security clearances may only be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment may be subject to government security investigation(s) and must meet eligibility requirements for access to classified information. DSA is proud to be an Affirmative Action/Equal Opportunity Employer. DSA is committed to treating all employees and applicants for employment with respect and dignity and maintaining a workplace that is free from unlawful discrimination. All applicants will be considered for employment without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender (including pregnancy, childbirth, breastfeeding, or other related medical conditions), gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, characteristic or membership in any other group protected by federal, state, or local laws. DSA requires background checks, where permitted, by law. DSA is an E-Verify Employer.
#LI-JE1
#DSA209