HiringCafe
Posted 5mo ago

Intermediate Cyber Risk Assessment Analyst

@ Computer World Services
View All Jobs
Fort Meade, Maryland, United States
$80k-$95k/yrHybridFull Time
Responsibilities:draft baselines, evaluate IAVMs, support POA&Ms
Requirements Summary:Bachelor’s degree or equivalent; DoD 8570 IAT II / 8140; TS/SCI; CompTIA Security+ CE; DoD 8570 requirements; onsite Fort Meade.
Technical Tools Mentioned:RMF, ACAS, STIGs, IAVMs, CCRI, SAV, A&A, FISMA, POA&M, DSS
Save
Mark Applied
Hide Job
Report & Hide
Job Description
Job Description
The Cyber Risk Assessment Analyst – Intermediate provides technical and analytical support to the DISA Infrastructure Executive by performing cybersecurity standardization and risk management tasks. This position ensures cybersecurity baselines are developed and maintained across IE1 and IE6, and contributes to risk analysis, accreditation, and reporting functions in support of CCRIs, SAVs, and other inspections.


The offered rate will be based on the selected candidate’s knowledge, skills, abilities and/or experience and in consideration of internal parity.

The posted range is appropriate for a typical candidate meeting, at a minimum, all the core requirements of the position.


Key Tasks & Responsibilities
  • Assist in drafting/maintaining cybersecurity baseline documents including CSSP, CONOPS, PPP, SOPs, and IRPs.
  • Evaluate newly released IAVMs, STIGs, and SRGs for applicability and support preparation of waiver requests when fixes cannot be implemented within required timelines
  • Support development of POA&Ms, ensure submission within 30 days, and update bi-monthly status reports
  • Contribute to the preparation of accreditation packages, due 70–90 days prior to ATO expiration, and ensure all FISMA requirements are met
  • Provide input to FISMA reports, CMRS Risk Status Reports, and ACAS scan results for reporting to the Government ISSM
  • Participate in CCRI, SAV, A&A, and self-assessments, providing documentation/analysis in support of inspections


    • Education & Experience
  • Bachelor’s degree or equivalent experience required
  • Command Cyber Readiness Inspection (CCRI)
  • Site Assistance Visit (SAV)/ Assessment and Authorization (A&A)
  • Cyber Self-Assessments
  • Assist in the preparation of CVPA (Cooperative Vulnerability and Penetration Assessment)
  • AA (Adversary Assessment)
  • DISA Risk Management Executive (RME)
  • Decision Support System (DSS)
  • Auditing and reporting of systems, networks, documentation, RMF controls, DoD 8140.03 requirements, IAVMs, STIGs and DISA Task Order (DTO) and CYBERCOM Task Order (CTO)


    • Certifications
  • DoD 8570 IAT Level II / 8140 Compliance Required after fully in place
  • CompTIA Security+ CE


    • Security Clearance
  • TS/SCI


    • Other (Travel, Work Environment, DoD 8570 Requirements, Administrative Notes, etc.)
  • Onsite at Fort Meade, any remote work must be justified and approved before even considered.


    • Computer World Services is an affirmative action and equal employment opportunity employer. Current employees and/or qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, disability, protected veteran status, genetic information or any other characteristic protected by local, state, or federal laws, rules, or regulations.

    Computer World Services is committed to the full inclusion of all qualified individuals. As part of this commitment, Computer World Services will ensure that individuals with disabilities (IWD) are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact Human Resources at [email protected]