Cyber Security Analyst II

p style="margin: 0in; margin-bottom: .0001pt"spanMission Support and Test Services, LLC (MSTS) manages and operates the Nevada National Security Site (NNSS) for the U.S. National Nuclear Security Administration (NNSA).nbsp; Our MISSION is to help ensure the security of the United States and its allies by providing high-hazard experimentation and incident response capabilities through operations, engineering, education, field, and integration services and by acting as environmental stewards to the Site’s Cold War legacy.nbsp; Our VISION is to be the user site of choice for large-scale, high-hazard, national security experimentation, with premier facilities and capabilities below ground, on the ground, and in the air. (See NNSS.gov for our unique capabilities.) Our 2,750+ professional, craft, and support employees are called upon to innovate, collaborate, and deliver on some of the more difficult nuclear security challenges facing the world today.nbsp; In this environment, the best ideas need to be voiced and every opinion matters.nbsp; As such, MSTS places great value on Diversity, Equity, and Inclusion and is committed to a diverse and equitable workforce, with an inclusive culture that values and celebrates the diversity of our people, talents, ideas, and perspectives./span/p ul lispanMSTS offers our full-time employees highly competitive salaries and benefits packages including medical, dental, and vision; both a pension and a 401k; paid time off and 96 hours of paid holidays; relocation (if located more than 75 miles from work location); tuition assistance and reimbursement; and more. nbsp;/span/li lispanMSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc./span/li /ulh3Responsibilities/h3divp style="margin: 0px;"span style="font-family: 'Calibri',sans-serif !msorm; color: windowtext !msorm;"strongspan style="font-size: 12.0pt; font-family: 'Arial',sans-serif; color: #333333;"spanI/span/span/strong/spanspan style="color: windowtext !msorm;"strongspan style="font-size: 12.0pt; font-family: 'Arial',sans-serif; color: #333333;"spanf yoursquo;re looking for an interesting, fulfilling career, yoursquo;ve come to the right place!/span/span/strong/span/pp style="margin: 0px;"nbsp;/pp style="margin: 0px;"span style="color: #000000;"span style="color: windowtext !msorm;"span style="font-size: 12pt; font-family: Arial, sans-serif;"MSTS is seeking a candidate for the role of /span/spanspan style="font-size: 12pt; font-family: Arial, sans-serif;"Policy and Governance span style="color: windowtext !msorm;"Cyber Security Analyst /span/spanspan style="font-size: 12pt; font-family: Arial, sans-serif;"Ispan style="color: windowtext !msorm;"I for the Global Mission Communications Programs (GMCP), Emergency Communications Network (ECN) Cybersecurity Department. The ECN provides global communications on behalf of DOE/NNSA using mobile technology, to include satellites and additional services such as video-teleconferencing. This position is located at the Remote Sensing Laboratory, Nellis (RSLN) on Nellis Air Force Base in Las Vegas, Nevada.nbsp;/span/span/span/pp style="margin: 0in 0in 0pt;"span style="color: #000000; font-family: Verdana, sans-serif; font-size: 9pt;"nbsp;/span/pp style="margin: 0in 0in 0pt;"span style="color: #000000;"stronguspan style="font-family: Arial, sans-serif; font-size: 12pt;"Key Responsibilities/span/u/strong/span/pullispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Serve as a Cyber Security Analyst for the Emergency Communications and Services Division (ECSD), Emergency Communications Network (ECN) Cyber Security Department located at the Remote Sensing Laboratory, Nellis (RSLN) on Nellis Air Force Base in Nevada./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Perform work of limited scope and basic complexity, taking direction from more senior staff./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Assist in researching, compiling, and analyzing technical data by applying knowledge of technical principles, theories, standards, practices, and procedures./span/span/lilispan style="font-family: arial, helvetica, sans-serif; font-size: 12pt; color: #000000;"Assist the ISSM and ISSOs with the execution of their assigned duties./span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Assist with data calls, FISMA reporting, compliance scanning and reporting, continuous monitoring and compiling reports for auditors./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Assist with the coordination, management, and reporting of Plan of Action and Milestones and Corrective Action Plans./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Performs Security Test and Evaluations of information systems in support of a security plan./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Writes basic information system security plans (ISSPs) for unclassified systems./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Completes assessment and authorization of information systems on unclassified and classified systems and networks, assists with the completion and mitigation of security testing and evaluations results./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Review current Cyber Security threat and assists the Threat Evaluation Team with mitigating vulnerabilities identified./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Identify, report, and assist in the remediation of Cyber Security threats and vulnerabilities.br //span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Participates in the discussions on the architecting of networks and systems with a security focus, ensuring systems are developed in accordance with federal law, customer requirements, assessment and authorization requirements, and industry best practices./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Reviews purchase requests for technology items and provides input to senior level Cyber Security staff regarding the risk associated with purchases./span/span/lilispan style="font-family: arial, helvetica, sans-serif; font-size: 12pt; color: #000000;"Collaborates with other outside Cyber Security interests such as Counterintelligence, other DOE sites, US-CERT, and law enforcement./span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Conducts a variety of Cyber Security policy compliance tasks such as discovering unauthorized devices, conducting site surveys for non-compliance, and ensuring network access requirements are met./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Reviews security configuration reports for compliance with approved enterprise or ECN baselines or hardening guides.br /Assists with attaining authorizations to connect expansion ECN nodes./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Reviews engineering change requests and provide security considerations and conditions for cyber approval./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Duties will include the development, implementation and management of the Cyber Security Program (CSP) and the development and implementation of the Risk Management Framework (RMF) as it applies to ensuring the confidentiality, integrity, availability and privacy of all categories of data in all forms throughout the data life cycle. As a cyber security point of contact for the Policy and Governance team, the Cybersecurity Analyst must have a working knowledge of system functions, cyber security policies, cyber security protection measures, familiarity with DOE, NNSA, Federal and DoD regulations pertaining to cyber security, the formal authorization process and day-to-day operations to include data calls and other short suspense requirements and deliverables. br //span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Contribute in a team environment to evaluate new technologies, provide technical troubleshooting support, and provide recommendations for the direction of future LAN/WAN client server environments. Travel as part of an installation or restoration team when directed and participate as a deployed member of the National Emergency Response Groups when required. Promotes project management best practices and continuous improvement. Accept individual responsibility and accountability for environment, safety, health, and quality processes within personal control, personal safety, and the safety of co-workers./span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Contribute to an overall productive and respectful work environment by providing excellent customer service and working in a positive, collegial manner at all times. Maintains cooperative and respectful working relationships with Cyber Security Staff, other divisions, and other customers./span/span/lilispan style="color: #000000;"span style="font-size: 11.0pt !msorm; font-family: 'Calibri',sans-serif !msorm; color: windowtext !msorm;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Support national emergency response groupsrsquo; emergency response drills, exercises, and real-world events through on-call availability and travel via commercial and military aircraft when required./span/spanspan style="font-size: 11.0pt !msorm; font-family: 'Calibri',sans-serif !msorm; color: windowtext !msorm;"span style="font-size: 12pt; font-family: Arial, sans-serif;"br //span/span/span/lilispan style="color: #000000;"span style="font-size: 12pt; font-family: Arial, sans-serif;"Perform other duties assigned by Management./span/span/li/ul /divh3Qualifications/h3divdiv style="margin: 0px;"ullispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Bachelorrsquo;s degree or equivalent in a computer-related field and at least 2 years of experience in a related field./span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Demonstrates an understanding of principles, theories, standards, practices, protocols, and procedures used in Cyber Security./span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Knowledge of network based services and client/server applications, familiarity with intrusion detection systems, familiarity with network architecture and security infrastructure placement./span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Ability to use network scanning and vulnerability tools and interpret the results./span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Ability to review and validate remediation efforts of vulnerability scan results./span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Understanding of encryption technologies, identity and authentication technologies./span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Ability to maintain strict confidentiality./span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Ability to communicate effectively in English, both verbally and in writing, sufficient to communicate with co-workers, customers, testify, write clear and concise reports, gather information, and collect information./span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Ability to use multiple electronic devices including standard office machines, cellular phones,and security appliances./span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Knowledge of Cyber Security vulnerabilities, mitigation strategies, network architecture, and how to apply security controls./span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Ability to articulate highly technical processes and information to a non-technical audience.br //span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Ability to meet the physical requirements necessary to safely and effectively perform all assigned duties./span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Ability to pass a federal background and obtain a ldquo;Qrdquo;Clearance./span/lilispan style="font-family: arial,helvetica,sans-serif; font-size: 12pt;"Preferred qualifications:br /bull; Microsoft Certified Solutions Associate (MCSA)br /bull; GIAC Security Essentials(GSEC)br /bull; Systems Security Certified Practitioner (SSCP)br /bull; VMware Certified Professional (VCP)br /bull; Certified Information Security Manager (CISM)br /bull; Cisco Certified Technician (CCT)br /bull; Cisco Certified Entry Networking Technician (CCENT)br /bull; Certified Ethical Hacker(CEH)/span/lili style="margin-top: 0; margin-bottom: 0;"span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"The primary work location will be based at the Remote Sensing Laboratory at Nellis Air Force Base, Las Vegas, NV (RSL-N)./span/lili style="margin-top: 0; margin-bottom: 0;"span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"Work schedule for this position will either be 4/10rsquo;s, 9/80, or 5/8rsquo;s (per management discretion). Must be willing to perform on-call duty and ensure availability to work non-standard hours./span/lili style="margin-top: 0; margin-bottom: 0;"span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"Personnel may be requested by leadership to work in excess of 40 hours per week due to projects, activities, and emergences; critical operational demands may occasionally require off-shift work./span/lili style="color: #333333;"span style="font-family: Arial; font-size: 12pt; color: #000000;"Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing./span/lili style="margin-top: 0; margin-bottom: 0;"span style="font-family: Arial; font-size: 12.0pt;"Must possess a valid driverrsquo;s license./span/li/ul/divp style="margin: 0in; margin-bottom: .0001pt;"span style="font-size: 12.0pt; font-family: 'Arial',sans-serif;"MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. Reference a href="https://www.directives.doe.gov/directives-documents/400-series/0472.2-BOrder-chg1-pgchg" target="_blank" rel="noopener"DOE Ordernbsp;472.2/a, ldquo;Personnel Securityrdquo;. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted./span/pp style="margin: 0in; margin-bottom: .0001pt;"span style="font-size: 12.0pt; font-family: 'Arial',sans-serif;"nbsp;/span/pp style="margin: 0in; margin-bottom: .0001pt;"strongspan style="font-size: 12.0pt; font-family: 'Arial',sans-serif;"Department of Energy Q Clearance/span/strongspan style="font-size: 12.0pt; font-family: 'Arial',sans-serif;" (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in a href="http://www.ecfr.gov/cgi-bin/text-idx?SID=14b1c770db022992d237769fbe9fc519amp;mc=trueamp;node=se10.4.707_14amp;rgn=div8" target="_blank" rel="noopener"10 CFR Part 707.4/a, ldquo;Workplace Substance Abuse Programs at DOE Sites,rdquo; will be conducted. nbsp;Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference a href="http://www.ecfr.gov/cgi-bin/text-idx?tpl=/ecfrbrowse/Title10/10cfr709_main_02.tpl" target="_blank" rel="noopener"10 CFR Part 709/a, ldquo;Counterintelligence Evaluation Program.rdquo;/span/pp style="margin: 0in; margin-bottom: .0001pt;"span style="font-family: 'Arial',sans-serif;"nbsp;nbsp;/span/pp style="margin: 0in; margin-bottom: .0001pt;"span style="font-size: 9.0pt; font-family: 'Verdana',sans-serif; color: black;"MSTS is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other characteristics protected by law. MSTS is a background screening, drug-free workplace./span/pp style="margin: 0px;"strongspan style="font-size: 12.0pt; color: #c00000;"nbsp;/span/strongspan style="font-family: 'Verdana',sans-serif;"nbsp;/span/pp style="margin: 0px;"Hourly range for this position is: strong$35.26 - $52.89./strong/pp style="margin: 0px;"nbsp;/pp style="margin: 0px;"Starting salary is determined based on the position market value, the individual candidate education and experience and internal equity.nbsp;/p /div