Tyto Athene, LLC
Overview
Tyto Athene is searching for a
Cyber Security Analyst
to join our Warner Robins, GA team. The Cyber Security Analyst is responsible for AFRC cybersecurity functions as Chief, Logistics Support Branch authority and focal point responsible for developing and maintaining the HQ AFRC local cybersecurity program. The primary service is the creation and maintenance of RMF Authority-To-Operate (ATO) packages (including annual reviews) to achieve and/or retain an ATO for AFRC systems. This includes authoring/reviewing Standard Operating Procedures (SOPs) and Ports, Protocols & Services maintenance.
Responsibilities
AFRC Basing and Logistics Geospatial Information and Services (AFRC B&L GI&S) - NIPR RMF Package
AFRC Civil Engineering Planning Tool (CEPT) - NIPR RMF Package
AFRC Support Agreement Management Tool (SAM) - NIPR RMF Package
Perform ISSM duties as required IAW AFI 17-101, Risk Management Framework (RMF) for Air Force IT and AFI 17-130, Cybersecurity Program Management
Ensure Federal Information Security Management Act (FISMA) compliance requirements are met for the packages
Conduct annual security reviews of all IA controls and a test of selected IA controls IAW AFI 17-101 RMF for Air Force IT
Manage the systems COMPUSEC Program for HQ AFRC/A4
Address all AF COMPUSEC requirements IAW AFMAN 17-1302-O
Implement and enforce all AF cybersecurity policies, procedures, and countermeasures
Complete/annual review of SOPs
Comply with continuous monitoring — update asset/hardware/software inventory, upload vulnerability scan reports, POAMs, STIG checklists
Coordinate/facilitate annual Tabletop or Live Contingency/Incident Response Plan
Provide CCRI support services to Vulnerability Management office & CCRI PM
Monitor STIG compliance and remediation of vulnerabilities
Ensure POAMs are being accomplished for non-compliant items; review POAMs periodically to ensure milestones and estimated completion dates are met
Participate in Change Approval Board for changes to systems
Upload monthly hardware/software asset inventories
Provide/upload artifacts required for authority to operate and other A&A requirements as per CDRL A008, ATO/A&A Artifacts, DI-MGMT-82000, PWS Appendix C
Provide input to on-site contract manager to support deliverables in section 2.3.1
Required qualifications
Previous ISSM/ISSO experience
Experience with Risk Management processes and RMF requirements
Knowledge of IT security assessment, monitoring, detection, and remediation tools and procedures, using standards-based concepts
Knowledge of server administration and systems engineering theories, concepts, and methods
Knowledge of cloud computing service models (SaaS, IaaS, PaaS)
Knowledge of basic system administration, network, and operating system hardening techniques
Knowledge of cybersecurity principles
Onsite presence at Warner Robins, GA
Active 8570 Certification; CompTIA Security+ certification
Clearance
Active DoD Secret level clearance
Compensation
Compensation is unique to each candidate and based on skills and experience. Typical salary range is $75,000.00 to $85,000.00, and may fall outside this range based on education, experience, certifications, and other requirements.
Benefits
Health/Dental/Vision
401(k) match
Paid Time Off
STD/LTD/Life Insurance
Referral Bonuses
Professional development reimbursement
Parental leave
Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation. We support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide. We are an Equal Opportunity Employer; all qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any characteristic protected by law.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
IT Services and IT Consulting
#J-18808-Ljbffr
Tyto Athene is searching for a
Cyber Security Analyst
to join our Warner Robins, GA team. The Cyber Security Analyst is responsible for AFRC cybersecurity functions as Chief, Logistics Support Branch authority and focal point responsible for developing and maintaining the HQ AFRC local cybersecurity program. The primary service is the creation and maintenance of RMF Authority-To-Operate (ATO) packages (including annual reviews) to achieve and/or retain an ATO for AFRC systems. This includes authoring/reviewing Standard Operating Procedures (SOPs) and Ports, Protocols & Services maintenance.
Responsibilities
AFRC Basing and Logistics Geospatial Information and Services (AFRC B&L GI&S) - NIPR RMF Package
AFRC Civil Engineering Planning Tool (CEPT) - NIPR RMF Package
AFRC Support Agreement Management Tool (SAM) - NIPR RMF Package
Perform ISSM duties as required IAW AFI 17-101, Risk Management Framework (RMF) for Air Force IT and AFI 17-130, Cybersecurity Program Management
Ensure Federal Information Security Management Act (FISMA) compliance requirements are met for the packages
Conduct annual security reviews of all IA controls and a test of selected IA controls IAW AFI 17-101 RMF for Air Force IT
Manage the systems COMPUSEC Program for HQ AFRC/A4
Address all AF COMPUSEC requirements IAW AFMAN 17-1302-O
Implement and enforce all AF cybersecurity policies, procedures, and countermeasures
Complete/annual review of SOPs
Comply with continuous monitoring — update asset/hardware/software inventory, upload vulnerability scan reports, POAMs, STIG checklists
Coordinate/facilitate annual Tabletop or Live Contingency/Incident Response Plan
Provide CCRI support services to Vulnerability Management office & CCRI PM
Monitor STIG compliance and remediation of vulnerabilities
Ensure POAMs are being accomplished for non-compliant items; review POAMs periodically to ensure milestones and estimated completion dates are met
Participate in Change Approval Board for changes to systems
Upload monthly hardware/software asset inventories
Provide/upload artifacts required for authority to operate and other A&A requirements as per CDRL A008, ATO/A&A Artifacts, DI-MGMT-82000, PWS Appendix C
Provide input to on-site contract manager to support deliverables in section 2.3.1
Required qualifications
Previous ISSM/ISSO experience
Experience with Risk Management processes and RMF requirements
Knowledge of IT security assessment, monitoring, detection, and remediation tools and procedures, using standards-based concepts
Knowledge of server administration and systems engineering theories, concepts, and methods
Knowledge of cloud computing service models (SaaS, IaaS, PaaS)
Knowledge of basic system administration, network, and operating system hardening techniques
Knowledge of cybersecurity principles
Onsite presence at Warner Robins, GA
Active 8570 Certification; CompTIA Security+ certification
Clearance
Active DoD Secret level clearance
Compensation
Compensation is unique to each candidate and based on skills and experience. Typical salary range is $75,000.00 to $85,000.00, and may fall outside this range based on education, experience, certifications, and other requirements.
Benefits
Health/Dental/Vision
401(k) match
Paid Time Off
STD/LTD/Life Insurance
Referral Bonuses
Professional development reimbursement
Parental leave
Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation. We support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide. We are an Equal Opportunity Employer; all qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any characteristic protected by law.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
IT Services and IT Consulting
#J-18808-Ljbffr