Cybersecurity Operations Analyst

Job Title: Cybersecurity Operations Analyst
Location: TN - Arnold AFB
Job Family Code: P - IT / Cyber Security / Network Systems
Function/Branch: IS&T / Infrastructure
Directorate: Engineering & Tech Support
Position Type: Full-time
Pay Type: Exempt
Grade: L07

Salary Range or Starting Hourly Rate: $76,000 - $108,000 / year

****Current U.S. Citizenship is required****

****Remote work is not availabe for this position. The employee is expected to work on-site at our Arnold AFB Location.****

Overview

Beyond New Horizons, LLC (BNH) has an exciting opportunity for a Cybersecurity Operations Analyst, supporting TOS II, at Arnold Air Force Base, TN. As a Cybersecurity Operations Analyst, you will be working as a member of an integrated team responsible for Cybersecurity Systems and Peripherals for the United States Air Force Test Operations and Sustainment efforts.

Open to internal and external candidates. The selected candidate for this requisition may be required to occasionally (e.g. application upgrades) work outside normal business hours.

Job Summary

Beyond New Horizons, LLC (BNH) is the team selected by the U.S. Air Force to conduct Test and Operations Sustainment at the Arnold Engineering Development Complex (AEDC) at Arnold Air Force Base in Tennessee. AEDC operates more than 55 aerodynamic and propulsion wind tunnels, rocket and turbine engine test cells, space environmental chambers, arc heaters, ballistic ranges and other specialized units located in six states. Many of the complex's test units have capabilities unmatched elsewhere in the United States; some are unique in the world. AEDC is one of three installations which are part of the Air Force Test Center (AFTC), one of six subordinate commands of the Air Force Materiel Command organization, and an important national resource.

AEDC's mission is to conduct developmental tests and evaluations for the Nation through modeling, simulation, and ground and flight test. Execution of the mission requires a large team of highly qualified and dedicated professionals from multiple technical disciplines to effectively accomplish the objectives of our test customers.

Job Duties:

Support network design, development, and deployment activities and manage defensive cybersecurity capabilities necessary to maintain proper visibility and oversight and ensure defensive alignment with recommended DoD defense in depth best practices.
• Analyze network traffic and aggregated system logs to identify anomalous activity and potential or actual threats.
• Conduct ACAS vulnerability scanning and penetration testing to identify weaknesses in systems and applications, including Linux and Windows server environments.
• Implement and configure Trellix endpoint security solution ensuring system compatibility and adherence to best practices while customizing security policies for organizational needs.
• Provide routine vulnerability collection and reporting to leadership and support the development of plans and actions to remediate or mitigate threats.
• Actively participate in the hardening and securing of Linux and Windows servers, including configuration management and patch management.
• Ensure the security and compliance of IT systems by reviewing vulnerabilities, recommending and implementing improvements, enforcing security policies and safeguards, ensuring consistent documentation and evaluation of cybersecurity requirements, and collaborating with the Information System Security Manager (ISSM) to maintain compliance with information assurance regulations and best practices.
• Support the development and maintenance of required Cybersecurity artifacts required for validation of compliance and certification and accreditation of Government IT system networks including individual components of systems.
• Monitor, detect, and escalate incidents through defined reporting channels and support a directed and coordinated response.
• Participate in incident response activities, including containment, eradication, and recovery.
• Automate security tasks and processes to improve efficiency.
• Develop and maintain security dashboards and reports.
• Collaborate with other IT teams (e.g., network, systems administration) to implement security controls.
• Stay up to date on the latest security threats, vulnerabilities, and attack techniques.
• Ensure compliance with DoD security policies, regulations, and standards (e.g., NIST, DISA STIGs).
• Communicate, coordinate, and validate actions required for vulnerability remediation or mitigation with IT staff.
• Serve as a point of contact for communication with Tier II CSSP/CERT and participate in routine teleconferences to maintain alignment with required reporting and technology updates.
• Implement changes to boundary defenses in accordance with established configuration management policy using a "deny-all, permit-by-exception" blacklisting model.
• Augment server and system administration support during surge efforts or other periods of staff deficiency.
• Willing and able to follow instructions, assist in training of co-workers, and cooperate with other employees, customers and contractors.
• Support and remediate any issues with Government IT system networks outside of normal assigned shift.
• It is a condition of employment to wear PPE (Personal Protective Equipment) in accordance with supervisory direction and company policy.
• Perform other duties as required.

Basic Qualifications:

• Bachelor's degree in IT-related field plus 2 to 7 years of progressively relevant experience, or an equivalent combination of education and experience.
• Must currently possess or commit to obtaining any requisite certifications required for assuming administrative role in accordance with DoD 8140 within 6 months of hiring date.
• Must be able to obtain and maintain a security clearance and access to the AEDC local area network.
• Current US Citizenship required.

Preferred Qualifications

• Active DoD Security Clearance.
• CompTIA Security+ Certification.
• Experience with networking topologies, routing, firewalls, hardware, and cabling.
• IAT Level II (GSEC, Security+, SSCP, or CCNA-Security) certification required.
• Experience with troubleshooting, repairing, specifying, and upgrading computer and networking hardware.
• Experience with SolarWinds and Splunk.
• Experience operating with Windows and Linux workstations and server environments.
• Experience with Risk Management Framework and NIST 800-53 controls.
• DISA ACAS Certification.
• DISA HBSS Certification

What We Offer

• Competitive salaries
• Continuing education assistance
• Multiple healthcare benefits packages
• 401K with employer matching
• Paid time off (PTO) along with a federally recognized holiday schedule

Who We Are

Beyond New Horizons (BNH) is a fully populated joint venture of Astrion and Fluor Federal Services, Inc. formed to provide unmatched Test Operations and Sustainment services for the Arnold Engineering Development Complex.

We chose our name to serve as an enduring reminder of our commitment to AEDC's rich aerospace research and development legacy anchored in AEDC's Toward New Horizons founding study and the unprecedented opportunities to greatly expand AEDC's capabilities and capacity Beyond those existing today. Leveraging the capabilities of our parent companies, BNH specializes in testing and evaluation for military and space systems combined with proven capability in large-scale Government program management, integration, engineering, and construction services for specialized and technically advanced high-hazard facilities.

Join our Team!

BNH is an Equal Employment Opportunity. We provide equal employment opportunities to all employees and applicants for employment and prohibit discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, or any other characteristic protected by federal, state, or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.