AECOM Cyber Security Analyst in Dahlgren, Virginia

United States of America - Virginia, Dahlgren

Job Summary

Job Summary in this position, candidates will support the Naval Surface Warfare Center, Dahlgren Division (NSWCDD) to provide Engineering and Technical Support for NSWCDD’s. Work will be performed in Dahlgren, Virginia. Specific Engineering and Technical Support is defined as Information Assurance (IA)/Cybersecurity for Assessment and Authorization (A&A) support. This position will be responsible to plan, develop, and execute automated and manual tests to validate security posture/controls in accordance with DOD 8500.2/8510.01. This position will work directly with various Engineering teams to support Risk Management Framework (RMF) and DoD Information Assurance Certification and Accreditation (DIACAP) efforts. The individual will update and maintain core enterprise lifecycle documents, including system security plan, security assessment plan and report, contingency plan, standard operating procedures, remediation plans, and configuration management plan for current and legacy systems. Additionally, the individual will create core enterprise lifecycle documents for future systems as needed.

Responsibilities include:

  • Apply knowledge and understanding of IA/Cybersecurity concepts, practices and procedures using established policies and standards to minimize and/or mitigate cybersecurity risks.

  • Support, coordinate, and conduct workflow activity, and documentation necessary to achieve successful A&A efforts for the program.

  • Develop (either directly, or in coordination with applicable experts), and maintain common RMF artifacts (and/or DIACAP) accreditation package, e.g., system architecture and boundaries, hardware and software inventories, risk assessment reports, POA&Ms, data flows, PPSM accounting, and other necessary system, network, and application documentation.

  • Evaluate information system for compliance with Defense Information Security Agency (DISA) Security Technical Implementation Guideline (STIG) and review measures needed to document and bring systems into compliance.

  • Update/maintain a Plan of Action and Milestone (POA&M) in order to track the resolution of vulnerabilities identified on system.

  • Perform and use vulnerability scanning and assessment tools (e.g., ACAS/Nessus) necessary to identify and document compliance.

  • Review and comment on technical documentation to ensure compliance with cybersecurity standards, regulations, and guidelines.

  • Conduct assessments of the RMF impacts of planned functionality and/or architectural changes.

Minimum Requirements

A Bachelor’s of Science (BS) degree from an accredited college or university in an engineering, scientific, or technical discipline; or ten (10) years of a demonstrated and established knowledge base and subject matter expertise relevant to specific technical disciplines of the SOW, including the qualifications below; or US Naval operational experience at the E7 level or higher.

In addition, ten (10) years professional systems engineering experience with a DoD major platform, weapon, Command and Control (C2), or fire control systems program, with five (5) years concurrent experience as a team leader performing system engineering and mission engineering efforts that include developing requirements, top level designs and system architectures for software intensive systems. This includes experience related to the identification, analysis and resolution of complex systems engineering design issues involving platform, weapon, C2, and fire control systems for Navy/Joint warfighting capabilities.

Must be U.S. Citizen.

Position requires an active Secret SSBI Security Clearance.

Preferred Qualifications

Experience with Naval Weapons Systems such as SLBM, Tomahawk, or USW at NSWCDD is preferred.

What We Offer

AECOM is a place where you can put your innovative thinking and business skills into high gear and work alongside other highly intelligent and motivated people. It's a place where you can apply your skills to some of the world's most challenging, interesting, and meaningful projects worldwide. It's a place that values the diversity of our areas of practice and our people. It's what makes AECOM a great place to work and grow. AECOM is an Equal Opportunity Employer.

At AECOM, employee's safety and security are our top Safeguarding core value. All employees are expected to set the highest level of safety expectation in their work, display the highest level of safe behavior, and actively participate in AECOM's Safety For Life Program. SH&E is a part of our company culture and participation is required for all employees.

NOTICE TO THIRD PARTY AGENCIES: Please note that AECOM does not accept unsolicited resumes from recruiters or employment agencies. In the absence of a signed Recruitment Fee Agreement, AECOM will not consider or agree to payment of any referral compensation or recruiter fee. In the event a recruiter or agency submits a resume or candidate without a previously signed agreement, AECOM explicitly reserves the right to pursue and hire those candidate(s) without any financial obligation to the recruiter or agency. Any unsolicited resumes, including those submitted to hiring managers, are deemed to be the property of AECOM.

Job Category Engineering

Business Line Management Services

Business Group Management Services Group (MS)

Country United States of America

Position Status Full-Time

Requisition/Vacancy No. 197326BR

Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.