 |
Cybersecurity Analyst II, III - Chesapeake Virginia
Company: Oceaneering International
Location: Chesapeake, Virginia
Posted On: 04/17/2024
Company Profile
Oceaneering Marine Services Division (MSD) has over 30 years of experience providing full-service submarine and surface ship repairs supporting maintenance and alterations aboard commercial and U.S. military vessels. We are SUBSAFE and DDS-SOC certified and perform high-consequence maintenance on assets that operate in demanding environments.
Oceaneering Aerospace and Defense Technologies (AdTech) delivers solutions that enable humans to work safely and effectively in harsh environments - from underwater to the outer reaches of space. Our innovative solutions support the development and application of practical, cost-effective systems that meet our customers' challenges - from routine to extreme. Our experience and expertise across multiple industries uniquely positions us as a leader in the government, space, and maritime services markets. Our products and services meet the rigorous demands of the complex environments in which they operate, delivering results without compromising safety or reliability.
Oceaneering is a global provider of engineered services and products, primarily to the offshore energy industry. We develop products and services for use throughout the lifecycle of an offshore oilfield, from drilling to decommissioning. We operate the world's premier fleet of work class ROVs. Additionally, we are a leader in offshore oilfield maintenance services, umbilicals, subsea hardware, and tooling. We also use applied technology expertise to serve the defense, entertainment, material handling, aerospace, science, and renewable energy industries.
Position Summary
Join Oceaneering as a Cybersecurity Analyst II, III and play a pivotal role in securing our critical systems. You'll oversee security protocols, mentor a junior analyst, and help expand our Marine Services Division Cyber team. Your commitment will advance our cutting-edge security practices. This position requires in-office work.
Responsibilities include administering network devices, servers, desktop systems, and communication hardware/software.
Duties & Responsibilities
ESSENTIAL
- Prepare and edit Certification & Accreditation (C&A) and System Assessment & Authorization (SA&A) as part of NIST SP 800-37 Risk Management Framework (RMF) system. Assist in preparation of application accreditation packages for assigned systems. Assist in maintaining authorization packages by preparing necessary documentation.
- Assist in monitoring authorizations to ensure annual requirements are met. Prepare and update packages as necessary to support re-authorization as needed for assigned systems. Prepare and submit reports on authorization status.
- Assist in performing security system event analysis, investigation, and validation. Assist in ensuring that security measures are implemented, operational, managed and validated as outlined in published security plans, and assist with tasks necessary to ensure system(s) maintain compliance with authorization(s).
- Assist in performing continuous monitoring tasks and prepare documentation for assigned systems in support of Authorizations to Operate (ATOs). Perform Security control assessments as part of Continuous Monitoring NIST SP 800-53 V4 compliance sustainment for application, infrastructure, and network.
- Assist in data gathering to support event analysis and triage (gathering information, deriving conclusions, driving mitigations) and assist in preparing incident reports.
- Assist in the performance of configuration management tasks. Prepare documentation for assigned systems in support of ATOs.
- Maintain required mandatory certifications as necessary to support assignment as a privileged user and sustain DoD IA training and certification requirements IAW DoD 8570.1M.
- Assist in the development, documentation, and support of user training plan(s).
- Proactively look for ways to better apply technology to the organization's primary mission; answer questions, resolve problems, and communicate changes in software and operations.
- Work with lead and senior ISSOs to evaluate the impact of system and network changes; prepare documentation to support re-approval of the security packages as appropriate.
- Assist in performing administrative tasks for systems, including data backup support, system security, and user account management support.
- Assist in providing support for servers, network and desktop hardware, software, and applications. Monitor the day-to-day activities on system and document changes as required.
- Assist with hardware and software roll-out to ensure optimal deployment of resources.
- Provide occasional field installation support. A few one-week trips per year to be expected.
- Assist in hands-on cable routing and hardware maintenance.
- Assist in gathering data pertaining to software packages for assigned systems that will be used to maintain lists of software and hardware and update documentation.
- Teach and mentor junior Cybersecurity team members.
- Undertake additional duties as assigned.
- Additional duties as assigned.
Qualifications
REQUIRED
- Associate degree in computer science, Management Information Systems, or a related field. Equivalent experience may be considered in lieu of a degree.
- Minimum 2-4 of experience as an Administrator on a medium sized network of servers, desktop systems, and communications devices using current technologies.
- Specialized certification and compliance in accordance with DoD 8570.1M. Candidate must achieve certification within 6 months of assignment (MCSE, A+, CISCO, Security +, CISSP for assignment as IAT level I or II). As a condition of privileged access to any information system, personnel performing IA functions must satisfy both preparatory and sustaining DoD IA training and certification requirements in accordance with DoD 8570.1M. All candidates for this position must be able to pass and maintain required training.
- Familiarity with Risk Management Framework (RMF), Authorizations to Operate (ATO) processes, and certifications under RMF.
- Proficiency in current communications devices, protocols, and server/desktop technologies.
- Familiarity with ICD 503, DoD 8570.1M, and the RMF.
- Working knowledge of current communications devices and protocols, and server and desktop technologies.
- Familiarity with auditing processes.
- Facilitation and change management skills.
- Ability to interact with personnel from other engineering and technical disciplines both inside and outside of the company, including systems engineers, electrical engineers, designers, drafters, fabrication shop personnel, and hardware vendors.
- Ability to perform technical surveys and organize/resolve technical issues.
- Ability and willingness to travel as necessary. Travel may include shipboard installation work.
- Willingness to work non-standard work schedules, such as off-hour backups and system upgrades.
- Excellent verbal and written communications skills.
- Proficient in the utilization of the eMass system for effective data management.
- Demonstrated experience with NNPI (Naval Nuclear Propulsion Information) processes and procedures.
- Familiarity and hands-on experience with Controlled Unclassified Information (CUI) and Cybersecurity Maturity Model Certification (CMMC) standards.
- Fitness for special background investigation (SBI).
- U.S. DoD Security Clearance required.
- Must be a U.S. citizen who is not a dual citizen of any other country.
DESIRED
|
 |
RSS Job Feeds