Cyber Security Analyst

MINIMUM SKILLS & REQUIREMENTS:

• Technical training in Cyber Security, Information Technology, Network Architecture, Network Design, and/or Strategic Planning
• Fifteen (15) years of hands-on experience with task specific project, to include three (3) of the following areas: Systems Requirements, Operational Requirements, Enterprise Strategic Planning and operations, Enterprise systems incident management, Test & Evaluation, and Training
• Recognized expert who has demonstrated industry and public service leadership in one or more of: advanced system architecture; cyber security; hardware technologies; digital/analog communications technologies; applied physics; human factors engineering; computer simulation; electronic sensor technologies; and Enterprise Resource Planning (ERP)
• Demonstrated experience in at least two of the following areas:
  
  
  
  • Ability to plan and organize work and interact with technical and non-technical personnel translating user requirements into responsive applicatiosn
  • Detailed knowledge of IA concepts and requirements
  • Comprehensive knowledge of DOD military specifications and standards
  • System design integration planning for multiple large-scale installations
  • Application and System Assessments, planning execution and management
  • System requirements planning and oversight
  • Technical development product milestone scheduling
  
  
  
  

DESIRED SKILLS & REQUIREMENTS:

• RMF experience
• USMC Cyber experience
• SAFe (Scaled Agile Framework) experience

SRC IS A CONTRACTOR FOR THE U.S. GOVERNMENT, THIS POSITION WILL REQUIRE U.S. CITIZENSHIP AS WELL AS, A U.S. GOVERNMENT SECURITY CLEARANCE AT THE SECRET LEVEL

ABOUT US

Scientific Research Corporation is an advanced information technology and engineering company that provides innovative products and services to government and private industry, as well as independent institutions. At the core of our capabilities is a seasoned team of highly skilled engineers and scientists with multidisciplinary backgrounds. This team is challenged daily to provide cutting edge technology solutions to our clients.

Scientific Research Corporation offers a competitive salary, an extensive benefits package and a work environment that encourages excellence. For positions requiring a security clearance, selected applicants will be subject to a government security investigation and must meet eligibility requirements for access to classified information.

DIVERSITY & INCLUSION

We strongly believe in the abundance of differences among individuals. We value different points of view and appreciate diverse perspectives. We truly believe this is what makes our organization inclusive and more responsive to the needs of our diverse customers.

EQUAL OPPORTUNITY EMPLOYER

Scientific Research Corporation is an equal opportunity and affirmative action employer that does not discriminate in employment.

All qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, age, sexual orientation, gender identity, or national origin, disability or protected veteran status.

Scientific Research Corporation endeavors to make www.scires.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact srchr@scires.com for assistance. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.

[#CJ #LI-LL1]

The Cyber Security Analyst will ensure the robust cyber security posture of the AWS IL5 Cloud environment through comprehensive measures, policies, and practices.

PRIMARY DUTIES & RESPONSIBILITIES:

• Conducts regular risk assessments to identify potential vulnerabilities and threats within the AWS IL5 environment
• Develops strategies for risk mitigation and implements necessary controls to address identified risks
• Maintains a risk register documenting identified risks and corresponding mitigation actions
• Ensures AWS configurations align with IL5 security requirements, including encryption, access controls, and network segmentation
• Implements and enforces compliance with relevant security standards and regulations, such as NIST SP 800-53 and DoD IL5 requirements
• Monitors AWS configurations for deviations from security baselines and promptly remediates any non-compliant settings
• Implements strong IAM policies to enforce least privilege access across AWS resources
• Regularly reviews IAM roles and permissions to ensure alignment with the principle of least privilege
• Enables multi-factor authentication (MFA) for privileged accounts and sensitive operations
• Deploys robust monitoring tools to detect unauthorized access attempts, suspicious activities, and security breaches
• Establishes incident response procedures to promptly respond to security incidents and minimize their impact
• Conducts post-incident reviews to identify lessons learned and improves incident response processes
• Implements encryption mechanisms to protect data at rest and in transit within the AWS IL5 environment
• Regularly reviews encryption policies and key management practices to ensure effectiveness
• Provides regular security training and awareness programs to AWS IL5 users and administrators
• Educates users about common cyber threats, phishing attacks, and best practices for secure usage of AWS resources
• Encourages a culture of security awareness and proactive risk mitigation among all stakeholders
• Conducts periodic security assessments and audits to evaluate the effectiveness of cyber security controls
• Identifies areas for improvement and implement enhancements to strengthen the security posture of the AWS IL5 Cloud SCCA
• Stays abreast of emerging cyber threats, vulnerabilities, and industry best practices to adapt security measures accordingly
• Travels approximately 3-4 days a quarter, as required