TekFive is looking to hire a Cybersecurity Analyst III who will work directly with the Center Chief Information Security Officer (CISO) at Langley Research Center (LaRC) to oversee and support cybersecurity vulnerability management and compliance activities. The Cybersecurity Analyst III will provide reporting and analysis of vulnerability trending and identifies anomalies that may impact the security posture of the Center. Performs as the primary interface between LaRC ISOs and ISSOs regarding questions related to vulnerability mitigation. Assists Center system administrators in identifying corrective actions which mitigate findings from vulnerability assessments. Provides tracking of mitigation activities by Information System Owners (ISOs) and Information System Security Officials (ISSOs) and provides quarterly analysis of resolution statistics. Provides support to LaRC CISO and Cybersecurity Risk Manager (CSRM) to for various compliance-driven programs and projects including Enterprise Cyber Logging (ECL), mandated technical implementations derived from Federal Directives, and the official system-of-record for risk management for compliance and reporting. Supports technical implementation of remediation actions for known vulnerabilities. Manages content on internal SharePoint site creating and maintaining a Knowledgebase commonly used by LaRC system owners for system risk and vulnerability compliance.
Basic Qualifications:
- Experience managing and remediating cyber vulnerabilities on IT systems
- Experience producing reports or work products for cybersecurity related information and presenting them to C-Suite clients
- Knowledge of NIST Cybersecurity Framework (CSF)
- Knowledge of Binding Operation Directives (BOD) or Emergency Directives released by the Cybersecurity Infrastructure Security Agency (CISA)
- Ability to serve as liaison between executive level client and customers managing GRC IT systems
- Bachelor’s Degree in technical cybersecurity field plus 7 years of experience in related field
- Security+ Certification or similar cybersecurity certification
- Preferred - Previous experience at NASA
- Familiar with RISK Based Alerting and Splunk
Additional Qualifications:
- CISSP Certification
- Secret Clearance OR existing NASA level of confidence of 50 or above
Job Type: Full-time
Pay: $85,000.00 - $92,000.00 per year
Benefits:
- 401(k)
- 401(k) matching
- Dental insurance
- Flexible schedule
- Health insurance
- Life insurance
- Paid time off
- Retirement plan
- Vision insurance
Compensation package:
Experience level:
Schedule:
Experience:
- Linux: 6 years (Preferred)
- Cybersecurity: 7 years (Preferred)
- Information security: 1 year (Preferred)
Security clearance:
Ability to Commute:
- Hampton, VA 23666 (Required)
Ability to Relocate:
- Hampton, VA 23666: Relocate before starting work (Required)
Work Location: Hybrid remote in Hampton, VA 23666