CRL Technologies
UMCS System Security Analyst
CRL Technologies, Lexington Park, Maryland, United States, 20653
***Security Clearance Required: Secret Clearance***
Primary Responsibilities:
This position will support UMCS program protection efforts required by the UMCS Program Office Information System Security Manager (ISSM) and System Security Engineer (SSE). Primary responsibilities include support of the UMCS Program Office Information System Security team with analysis of system vulnerabilities, system risk assessments, and the development/ maintenance of Risk Management Framework (RMF) artifacts in accordance with DoD/DON policies and standards.
Primary tasks include: Support of Program Office Information Systems Security Team with documentation and analysis of system security requirements, design, implementation, integration, verification, and fielding. Support documentation and mitigation planning to address Information System Security Risk. Support System Security Team with administrative and programmatic efforts to include maintenance of Cyber-Dashboard, vendor documentation reviews, and tracking of team Cost/Schedule/Performance metrics. Tasks Performed:
Demonstrated Knowledge:
Support the development and review of Author and oversee implementation of system Risk Management Framework (RMF) artifacts within eMASS. Support the development and coordination of RMF Plan of Action and Milestones (POA&M). Track and report on Information System Security metrics, including vulnerability mitigation status, POA&M progress, authorization timelines, and compliance milestones using Power BI or equivalent tools. Support system security audit/control tests with preparation and execution including developing artifacts and remediation planning. Support Information System Security meetings, briefings, and decision-making sessions, providing leadership with data-driven insights, metrics, and risk recommendations. Support system vulnerability management process in order to comply with OPORD, TASKORD, and POA&M guidance. Education/Experience:
Security + (or equivalent certifications). Enterprise Mission Assurance Support Service (eMASS) experience. Power BI experience. JUNIOR: A Junior level person within a labor category has less than 3 years of experience related to the functional duties for that labor category and a BA/BS degree.
JOURNEYMAN: A Journeyman level person within a labor category has 3 to 10 years of experience related to the functional duties for that labor category and a BA/BS degree.
Allowable Education/ Experience Substitutions:
Six (6) years additional relevant work experience may be substituted for a Bachelor's Degree. Associate's Degree plus four (4) years additional relevant work experience may be substituted for a Bachelor's Degree.
Desired Experience:
Experience with unmanned aerial system mission control systems is desired. Demonstrated experience supporting cyber-security within complex, multi-stakeholder DoD programs. Knowledge of NIST 800-53, DODI 8510, and SECNAV M-5239.3 processes. Proficiency in Microsoft Office Suite (Excel, PowerPoint, Word), Google Suite, and SharePoint. Strong organizational and analytical skills, with attention to detail and commitment to data accuracy. Communication skills, including the ability to explain technical data processes to non-technical stakeholders. Ability to work both independently and collaboratively in a fast-paced, team-oriented environment.
Security Clearance Required:
Secret Clearance.
Estimated Travel:
15%
Location:
On-site Lexington Park, MD. Remote Potential.
CRL Technologies is an Equal Employment Opportunity (EEO) employer and welcomes all qualified applicants. Applicants will receive fair and impartial consideration without regard to race, sexual orientation, color, religion, national origin, age, disability, veteran status, genetic data, or religion or other legally protected status.
Primary Responsibilities:
This position will support UMCS program protection efforts required by the UMCS Program Office Information System Security Manager (ISSM) and System Security Engineer (SSE). Primary responsibilities include support of the UMCS Program Office Information System Security team with analysis of system vulnerabilities, system risk assessments, and the development/ maintenance of Risk Management Framework (RMF) artifacts in accordance with DoD/DON policies and standards.
Primary tasks include: Support of Program Office Information Systems Security Team with documentation and analysis of system security requirements, design, implementation, integration, verification, and fielding. Support documentation and mitigation planning to address Information System Security Risk. Support System Security Team with administrative and programmatic efforts to include maintenance of Cyber-Dashboard, vendor documentation reviews, and tracking of team Cost/Schedule/Performance metrics. Tasks Performed:
Demonstrated Knowledge:
Support the development and review of Author and oversee implementation of system Risk Management Framework (RMF) artifacts within eMASS. Support the development and coordination of RMF Plan of Action and Milestones (POA&M). Track and report on Information System Security metrics, including vulnerability mitigation status, POA&M progress, authorization timelines, and compliance milestones using Power BI or equivalent tools. Support system security audit/control tests with preparation and execution including developing artifacts and remediation planning. Support Information System Security meetings, briefings, and decision-making sessions, providing leadership with data-driven insights, metrics, and risk recommendations. Support system vulnerability management process in order to comply with OPORD, TASKORD, and POA&M guidance. Education/Experience:
Security + (or equivalent certifications). Enterprise Mission Assurance Support Service (eMASS) experience. Power BI experience. JUNIOR: A Junior level person within a labor category has less than 3 years of experience related to the functional duties for that labor category and a BA/BS degree.
JOURNEYMAN: A Journeyman level person within a labor category has 3 to 10 years of experience related to the functional duties for that labor category and a BA/BS degree.
Allowable Education/ Experience Substitutions:
Six (6) years additional relevant work experience may be substituted for a Bachelor's Degree. Associate's Degree plus four (4) years additional relevant work experience may be substituted for a Bachelor's Degree.
Desired Experience:
Experience with unmanned aerial system mission control systems is desired. Demonstrated experience supporting cyber-security within complex, multi-stakeholder DoD programs. Knowledge of NIST 800-53, DODI 8510, and SECNAV M-5239.3 processes. Proficiency in Microsoft Office Suite (Excel, PowerPoint, Word), Google Suite, and SharePoint. Strong organizational and analytical skills, with attention to detail and commitment to data accuracy. Communication skills, including the ability to explain technical data processes to non-technical stakeholders. Ability to work both independently and collaboratively in a fast-paced, team-oriented environment.
Security Clearance Required:
Secret Clearance.
Estimated Travel:
15%
Location:
On-site Lexington Park, MD. Remote Potential.
CRL Technologies is an Equal Employment Opportunity (EEO) employer and welcomes all qualified applicants. Applicants will receive fair and impartial consideration without regard to race, sexual orientation, color, religion, national origin, age, disability, veteran status, genetic data, or religion or other legally protected status.