Cyber Security Analyst / SOT ISEA

MINIMUM SKILLS & REQUIREMENTS:

• Minimum eight (8) years of experience in relevant technical field, to include:
  
  
  
  • Technology Analysis and Assessment, Design Definition, Development of Systems Specification, Systems Analysis, Systems Architecture, Systems/Equipment Integration, Test & Evaluation Criteria, and Logistics support of C5ISR requirements
  
  
  
  
• Bachelor's degree in relevant field, additional years of experience may be considered in lieu of a degree
• Active DoD Secret Clearance with eligibility to obtain a TS/SCI
• Experience with Windows Server Administration, VMWare infrastructure, Linux/Redhat
• Experience with HBSS, ACAS, VRAM, and cyber security related systems, terminology, and capabilities
• Experience with TACNET Programs of Record systems: CANES, CENTRIX, ISNS
• Experience utilizing DISA STIGs to harden Windows and Linux systems to secure networks and security devices
• Self-motivated with the ability to work both independently and in a collaborative environment
• Position requires SIPR NMCI access as well as access to multiple restricted areas

DESIRED SKILLS & REQUIREMENTS:

• DoD 8570.1 IAT Level II certifications:




• Must have one of the following security certifications: CSEC, Security+, SCNP, SSCP, CISSP
• A Red Hat or Linux Certification is highly recommended




• Be knowledgeable with CND Information Assurance (IA) systems
• Advanced knowledge of IP networking and protocols
• Solid working knowledge of DoD RHEL requirements, vendor recommended best practices and engineering solutions to tailor to DoD requirements
• Understanding of how to design, develop, install, implement and troubleshoot custom RHEL, Yum/Satellite, and Ansible solutions
• Experience with PEO C4I Hosted Applications and Connected Systems
• Experience with Cisco switches and routers
• Experience with CND Programs

SRC IS A CONTRACTOR FOR THE U.S. GOVERNMENT, THIS POSITION WILL REQUIRE U.S. CITIZENSHIP AS WELL AS, A U.S. GOVERNMENT SECURITY CLEARANCE AT THE SECRET LEVEL WITH TOP SECRET / SCI ELIGIBILITY

ABOUT US

Scientific Research Corporation is an advanced information technology and engineering company that provides innovative products and services to government and private industry, as well as independent institutions. At the core of our capabilities is a seasoned team of highly skilled engineers and scientists with multidisciplinary backgrounds. This team is challenged daily to provide cutting edge technology solutions to our clients.

Scientific Research Corporation offers a competitive salary, an extensive benefits package and a work environment that encourages excellence. For positions requiring a security clearance, selected applicants will be subject to a government security investigation and must meet eligibility requirements for access to classified information.

DIVERSITY & INCLUSION

We strongly believe in the abundance of differences among individuals. We value different points of view and appreciate diverse perspectives. We truly believe this is what makes our organization inclusive and more responsive to the needs of our diverse customers.

EQUAL OPPORTUNITY EMPLOYER

Scientific Research Corporation is an equal opportunity and affirmative action employer that does not discriminate in employment.

All qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, age, sexual orientation, gender identity, or national origin, disability or protected veteran status.

Scientific Research Corporation endeavors to make accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact for assistance. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.

SRC is continuing and expanding their support of the Navy's Network Security Integrated Product Team (NS IPT) Computer Network Defense (CND) program. The SRC team provides cutting-edge engineering, analysis, integration and life cycle sustainment support for the NS IPT/CND systems. The purpose of the Navy NS IPT/CND program is to augment CND capabilities and integrate them into the unique environments encountered by Navy forces. Navy CND is an integral part of the cyber defense posture, protecting the Navy's component of the Global Information Grid (GIG) from exploitation and strongly linking to critical infrastructure protection. Naval Information Warfare Center (NIWC) Atlantic requires resources to support the Research, Development, Test & Evaluation (RDT&E) and Integration activities for the Information Technology for the 21st Century (IT-21), and OCONUS Navy Enterprise Network (ONENET) networks, to enhance network and cyber security.

PRIMARY DUTIES & RESPONSIBILITIES:

• Provides Cyber Readiness SOT (Systems Operability Test), Cyber Security Inspections/Assessments, and ISEA (In-Service Engineering Agent) support to the U.S. Navy's Computer Network Defense project in San Diego, CA
• Interfaces with Active Duty Military personnel and US Government employees to provide onboard cyber support to platforms undergoing Cyber Readiness SOT (Systems Operability Test) and Cyber Security Inspections/Assessments
• Under Cyber Readiness lead direction, coordinates with NAVWAR FRD 200 Test Directors on identifying upcoming Cyber Readiness SOT events, providing reports as needed to track progress and to identify any issues onboard supported platforms, and writing Daily Status Reports/After Action Report with lessons learned and changes required to test plan and any other issues from onboard support post-SOT
• Focuses on completing Cyber Readiness SOT checks on Windows, Linux and application-level security patches, vulnerability scanning and reporting, CLO/PKI enforcement, intrusion detection and prevention, proper account authentication and configuration, and IP based communications/browsing filtering; these services are provided by commercial-off-the-shelf (COTS) equipment, including the Windows Security Update Service, Windows Security Center and ACAS (Nessus Scanner by Tenable), Host-Based Security/ePolicy Orchestrator, McAfee point products such as Data Loss Prevention (DLP) Host Intrusion Protection System (HIPS), Microsoft Threat Management Gateway (TMG) or Cisco Web Security Appliance (WSA), as well as Firewall and Router Access Control Lists, account and Group Policy Objects (GPO) requirements, and configuration steps from Multiple DOD, and PMW 160/130 instructions and guidance
• For Cyber Security Inspections/Assessments; finds, remediates, and reports progress of Cyber Security Hygiene on Navy Ships for upcoming inspections/assessments, conduct work with the crew to properly baseline/configure (rebaseline/reconfigure in some cases) and operate network systems, including assisting Ship's Force in properly documenting and requesting assistance from HQ (NOCs, NCTAMS, etc) as needed in accordance with the JFMM; this will include ACAS / Retina scans of all connected systems, upload and verify assets in VRAM, work with ship's force ITs to establish an actual baseline of Program of Records, and assist ship's force ITs with identifying vulnerabilities and where to obtain appropriate remediation (scan / patch / scan)
• Performs troubleshooting, metrics collection, maintenance support, and the timely entry of communication and tasking into the ticket management tool (ITSM/NESD)
• Configures, deploys, maintains, and troubleshoots Host Base Security System (HBSS/McAfee ePolicy Orchestrator (ePO)) and Assured Compliance Assessment Solution (ACAS/Tenable Nessus) for Navy Computer Network Defense (CND) classified and unclassified systems
• Travels to Navy afloat and ashore sites to perform CND software upgrades and installations and provides onsite technical assists in support of CND fielded systems for issues that cannot be resolved via distance support
• Travel: Up to 30% both CONUS and OCONUS; must have or be able to obtain a valid U.S. Passport