VNSFS is looking for a highly motivated Cybersecurity Specialist to join our team in the Piketon, OH. The candidate will rely on their cybersecurity background to support our customers in meeting the DOE requirements set forth in our contracts.
The candidate will: • rely on their cybersecurity and technical background to perform security analysis of operational and development environments, threats, vulnerabilities and internal interfaces to define and assess compliance with accepted government standards; • contribute to the Risk Managed Framework (RMF) for new and existing information systems, to include facilitating Memorandums of Understanding (MOU), Interconnection Security Agreements (ISA), Risk Acceptance Letters (RAL) and Continuous Monitoring (CONMON); • conduct compliance review of operating systems (i.e., Windows, Linux) to governing requirements; • assess test/analysis data to document state of compliance with security requirements; • Conduct risk assessments and investigations, execute appropriate risk mitigations, and incident response activities. • Interface with the appropriate customers, and company personnel to implement protective mechanisms and to ensure understanding of and compliance with cybersecurity requirements. Expectations for candidate include: • Communication Skills: The candidate should have demonstrated leadership qualities, strong verbal/written communication skills, communicate clearly at both one-on-one and group levels, communicate with team leaders, managers and internal employees in the decision-making process to obtain needed information, make the most appropriate decisions, and ensure buy-in and understanding of resulting decisions. • Task Management Skills: The candidate is expected to proactively determine project or
assignment requirements by breaking them down into tasks and identifying types of equipment, materials needed. The candidate consistently and proactively identifies more critical and less critical activities and assignments and effectively adjust priorities when appropriate. • Team Coordination Skills: The candidate is expected to set high expectations for oneself, has the courage to raise the bar continuously. The candidate hold oneself and others accountable for continuous improvement and communicate expectations directly, openly and effectively. The candidate conveys sense of purpose and mission that motivates others, maintains direction, and balances big-picture concerns with day-to-day issues. The candidate guide others in creating relevant options for addressing problems/opportunities and achieving desired outcomes. • Base of Knowledge Skills: The candidate must have complete knowledge of verification, validation, certification and qualification processes and procedures, including knowledge of current governing regulations and compliance requirements; advanced level of understanding and proficiency in the use of networking computing hardware and software applications; extensive knowledge of processes and tools needed to maintain, archive, and retrieve digital files; as it relates to cybersecurity, ability to read and understand contracts, Statements of Work.
Relocation Assistance Available No. Relocation assistance is not a negotiable benefit.
Requirement: • Security Clearance: Candidate must be able to secure and maintain a Q Clearance. Candidate may be required to sit for a Counter Intelligence (CI) polygraph and/or Full Scope polygraph with a favorable outcome required. • Position is contingent upon clearance verification and program/customer concurrence. Desired Skills and Experience: • Experience with policies and implementation of Risk Management Framework (RMF): DOE and NIST 800 series required publications. • Experience in assessing and documenting test or analysis data to show cybersecurity compliance. • Demonstrated knowledge of processes and tools to maintain, archive, sanitize, and retrieve digital files. • Demonstrated knowledge with security relevant tools, systems, and applications in support of RMF to include: NESSUS, SPLUNK, VARONIS, IronPort, etc. • Demonstrated experience with performing security compliance monitoring and security policy assessments/audits.
Typical Education and/or Experience: Technical Associate’s Degree and 2+ year experience or a technical bachelor's degree with no minimal experience.