Cyber Security Analyst

Acuity Innovations LLC is a small, woman-owned defense contracting company that provides enterprise architecture, solution design, digital engineering, defensive cyberspace operations, system integration, and test and evaluation products and services that improve performance and decrease decision timelines. Our fundamental, repeatable service offering is bound in architecting, designing, securing, integrating, and verifying the operational readiness of data ecosystems.

Do you want to be part of a unique, small business that differentiates itself by:

Delivering the best products, integrated systems, and mission capabilities for the warfighter Building long-term relationships and treating its employees as family Deploying small but powerful High-Performance Teams, like elite Special Forces teams to each task Collaborating within and across the Acuity Innovations teams as well as with the customer Providing a growth path to partnership/ownership opportunities If you have this type of passion and desire to be part of a collaborative team environment with the innovation, initiative, and confidence to make things better, then Acuity Innovations may be the right place to realize your personal and professional goals.

Package includes: Competitive salary 3 weeks paid time off 11 Federal Holidays Flexible Hours Benefits Career Development/Mentorship Opportunities Company Sponsored Social Events We seek technical individuals who will succeed in a highly collaborative work environment.

Acuity Innovations LLC: Overview | LinkedIn

www.acuityinnovationsllc.com

Brief Job Description:

Acuity Innovations is seeking a Cyber Security Analyst to join our team in El Segundo, CA. You must be authorized to work in the US and able to obtain and maintain a Secret clearance for this position.

The MSEIT (MILSATCOM Systems Engineering, Integration and Test) team in support of SSC (Space Systems Command) in El Segundo is seeking an individual to provide Cybersecurity support for the MILSATCOM Capability area. The MILSATCOM portfolio of programs has an ongoing need for Cybersecurity support, to meet the needs of our emerging next-generation protected SATCOM.

The MSEIT effort provides leading edge Systems Engineering & Integration (SE&I) for the Air Force's Space and Missiles System Center. We support the Air Force's acquisition of state of the art Military Satellite Communications systems, providing global secure, survivable, and protected communications for our nation's warfighters. We seek technical individuals who will thrive in a highly collaborative work environment of small teams, using the most modern tools and methodologies to tackle the challenges of integrating complex space and ground communications systems.

Responsibilities: Proposing, coordinating, implementing, and enforcing all Department of the Air Force information system security policies, standards, and methodologies. Performing vulnerability assessments using the Assured Compliance Assessment Solution (ACAS), Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG), and the Security Content Automation Protocol (SCAP) Compliance Checker, incorporating automated Benchmarks. Evaluating operating systems and network devices security configuration in accordance with Defense Information Systems Agency (DISA) approved Security Technical Implementation Guides. Performing security control continuous monitoring, security audits, risk analysis and developing mitigation strategies for DoD information systems. Ensures software, hardware, and firmware complies with appropriate security configuration guidelines (e.g., security technical implementation guides /security requirement guides). Ensures proper configuration management procedures are followed prior to implementation and contingent upon necessary approval. Coordinate changes or modifications with the system-level Information System Security Manager (ISSM), Security Control Assessor (SCA), and/or the Wing Cybersecurity office. During system development, recommends protective or corrective measures, in coordination with the ISSM, when a security incident or vulnerability is discovered. During system development, reports security incidents or vulnerabilities to the system-level ISSM and wing cybersecurity office according to AFI 17-203, Cyber Incident Handling. Recommends exceptions, deviations, or waivers to cybersecurity requirements. Preparing certification letters and Memoranda of Agreement (MoA), Authorization to Connect (ATC) packages, Interconnection Security Agreement (SIA), and Security Impact Assessments with system owners for interface and networking implementations. Support the SSC with ensuring security, quality, timeliness, mission partner support, completeness, and regulatory compliance of ATO RMF documentation. Support the following responsibilities: security control assessor (SCA) and Security Technical Implementation Guide (STIG) curated to DOD/DAF/USSF baselines, audit standards, and plan of actions and milestones (POAM). Attend cleared expert threat briefings; have oversight of security program design, incident response plans, cyber risk assessments, and attack surface assessments; investigate security breaches, perform red, blue, purple, ethical hacking, orchestrate vulnerability assessment, develop security protocols, conduct tabletop exercises, and breach readiness reviews. Completes and maintains required cybersecurity certification in accordance with (IAW) AFMAN 17-1303. Individuals in this position must be U.S. citizens. Required Skills & Experiences: BA or BS degree in engineering, physics, chemistry, mathematics, computer science, network, and telecommunications; information systems, information technology, or computer information systems Minimum 2 years of continuous Information Systems, Information Assurance/Cybersecurity (IA/CS) experience. Understanding and working knowledge of Risk Management Framework (RMF) DODI 8510.01. 2 continuous years of experience with security controls and implementation delineated in Committee of National Security Systems Instruction (CNSSI) 1253, National Institute of Standards and Technology (NIST), Special Publication (SP) 800-53, and the Joint Special Access Program Implementation Guide (JSIG). 2 continuous years of experience with performing vulnerability assessments using Assured Compliance Assessment Solution (ACAS), Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG), the Security Content Automation Protocol (SCAP) Compliance Checker, incorporating automated Benchmarks. 2 continuous years of experience using SolarWinds and Splunk or other network analysis tools. Extensive experience working with Linux/Unix Command Line Interface and using regular expression queries. Ability to read and extract Cisco configuration files. 2 continuous years of experience implementing operating systems and network devices security configuration in accordance with Defense Information Systems Agency (DISA) approved Security Technical Implementation Guides. 2 continuous years of experience performing security control continuous monitoring, security audits, risk analysis and developing mitigation strategies for DoD information systems. Experience identifying Common Criteria and National Information Assurance Partnership (NIAP) certified technologies and the DISA Approved Products List (APL). Familiarity with Intelligence Community Directive (ICD) 705, DoDD 5205.07, and DOD 5205.07-M Volumes 1-4, Special Access Program (SAP) Policy, and the Joint Special Access Program Implementation Guide (JSIG). Experience working in a military organization in a cybersecurity role with military tactical or enterprise systems. Possess DoD Approved Baseline Certification as Information Assurance Manager Level II in accordance with DoDM 8140.03. (i.e., CompTIA CASP+, CISSP). You must be authorized to work in the US and hold and maintain a Secret clearance for this position Preferred Skills & Experiences: Master's degree in Computer Science/Engineering with emphasis in Cyber Security 5+ years of work experience in Cyber Security 5+ years of work experience in System Engineering Architecture/Design Linux and Cisco certifications DoD Space program experience Security Test and Evaluation (ST&E) TS/SCI Clearance Clearance: All applicants selected will be subject to a background check and a security investigation and will need to meet eligibility requirements for access to classified information.