- Company Name
- Nevada National Security Sites
- Job Title
- Cyber Security Analyst II
- Job Description
-
**Job Title:** Cyber Security Analyst II
**Role Summary:**
Provide cyber security analysis, compliance, and risk management support for the Emergency Communications Network (ECN) within the Global Mission Communications Programs. Work under senior staff to assess, authorize, and monitor unclassified and classified information systems, support incident response, and ensure adherence to federal, DOE/NNSA, and industry security standards.
**Expectations:**
- Execute assigned tasks with limited scope and basic complexity while following direction from senior analysts.
- Deliver accurate compliance reporting, security testing, and documentation.
- Contribute to incident response and threat mitigation activities.
- Maintain effective communication with internal teams, external partners, and auditors.
**Key Responsibilities:**
- Perform security testing, evaluations, and continuous monitoring of ECN systems.
- Draft and maintain basic Information System Security Plans (ISSPs) for unclassified systems.
- Conduct assessments, authorizations, and remediation of security findings for both unclassified and classified environments.
- Support incident response, forensic analysis, and operation of IDS/IPS, SIEM, endpoint, firewall, and email security tools.
- Assist ISSM/ISSOs with FISMA reporting, compliance scanning, Plan of Action & Milestones (POA&M) management, and audit documentation.
- Review and evaluate technology purchase requests, engineering change requests, and network architecture for security risks.
- Perform policy compliance tasks such as unauthorized device discovery, site surveys, and baseline configuration verification.
- Collaborate with Counterintelligence, DOE sites, US‑CERT, and law‑enforcement agencies on security matters.
- Contribute to development and maintenance of the Cyber Security Program (CSP) and Risk Management Framework (RMF) processes.
**Required Skills:**
- Knowledge of RMF, FISMA, NIST SP 800‑53, and related federal security frameworks.
- Experience with security assessment tools, vulnerability scanners, and compliance reporting.
- Familiarity with IDS/IPS, SIEM, endpoint protection, firewalls, and email security gateways.
- Ability to write and maintain ISSPs and security documentation.
- Basic incident response and forensic analysis capabilities.
- Strong analytical, research, and technical writing skills.
- Effective communication and collaboration with cross‑functional teams and external partners.
**Required Education & Certifications:**
- Bachelor’s degree in Cyber Security, Information Technology, Computer Science, or a related field (or equivalent experience).
- Preferred: DoD 360‑Day Cybersecurity Certification, CompTIA Security+, GIAC Security Essentials (GSEC), or similar.
- Ability to obtain and maintain a DoD Secret (or higher) security clearance.