Cyber Security Analyst- ISSE

Developing and updating assessment and authorization documentation (Body of Evidence) for management and continuous monitoring of information systemsPerforming ongoing compliance assessments using tools, such as Assured Compliance Assessment Solution (ACAS), Secure Content Automation Protocol (SCAP), and McAfee Virus Scan Enterprise, while reviewing, documenting, and maintaiining all resultsVerifying patches and virus definitions to the systems using existing automated toolsAdhering to pre-defined configuration management and change management policies and procedures for authorizing software prior to its implementation on systemsPerforming security audits to track multiple events including any signs of inappropriate or unusual activity, intrusion events, data transfers, etc.Performing security assessments of NCS Family of Systems in accordance with NIST, Navy, NSA and NAVINTEL IA guidanceWorking with system engineers to take corrective action to resolve identified problemsPerforming Site Based Security Assessments (SBSAs) of systems and recommending authorization to the Designated Authorizing Official (DAO) as a certified trusted agentReporting security incidents in accordance with the command incident response planEnsuring systems are operated, used, maintained, and disposed of in accordance with all applicable security policies and practices#LI-LL1Must possess an active Top Secret/SCI clearance w/CI Poly (or willing to sit for CI Poly)Must be able to be appointed ISSE for NCS systems within 6-months of employmentExperience in validation of POA&Ms, ACAC/Nessus, Jfrog Xray, SCAP, DISA STIGs and general RMF artifactsExperience in applying STIG and security control hardening along with reverse engineering potential systematic operational functionality breaks with potential compensating risk management approaches2-5 years of cybersecurity experienceExperience with Risk Management Framework (RMF) processesHave developed communication skills and the ability to express thoughts and ideas clearly and conciselyMust be a team player, dedicated to program support, capable of multitasking and working several complex and diverse tasks with simultaneous or near simultaneous deadlinesBe a self-starter who is accountable and requires minimal direction and supervisionBe open to new and innovative ideasProficiency in a scripting language such as JavaScript, PHP, Python, Bash, Powershell, etc.Proven experience with container technologies (e.g., Docker, Podmon, Kubernettes)Familiarity with the CI/CD tools such as BitBucket, Jenkins, SonarQube, Artifactory, and JFrog XrayExperience developing custom automation scripts, specifically within a containerized CI/CD pipelineExperience withAmazon EKS or other container orchestration platformsKnowledge of data flows and the ability to work up readable network topology and data flow diagramsExperience with the following systems/platforms/tools: XACTA, XACTA 360 (preferred), eMASS, HBSS, ACAS, Nessus, SPLUNKExperience with NAVINTEL IA and NSA Enterprise Services, like Continuous MonitoringKnowledge of the following web servers: Apache Web Server, Apache Tomcat, Red Hat JBOSS, nginx, MS IISKnowledge of VMWare ESXiKnowledge of configuration of the following SQL databases: MS SQL, PostgreSQL, MongoDB, MariaDB, MySQL, ElasticsearchExtensive training or experience with Windows and UNIX based Information Systems standards with a working knowledge of networking devicesSRC IS A CONTRACTOR FOR THE U.S. GOVERNMENT. THIS POSITION WILL REQUIRE U.S. CITIZENSHIP AS WELL AS A U.S. GOVERNMENT SECURITY CLEARANCE AT THE TOP SECRET / SCI LEVEL with CI POLY ELIGIBILITYMinimal travel may be requiredScientific Research Corporation is an advanced information technology and engineering company that provides innovative products and services to government and private industry, as well as independent institutions. At the core of our capabilities is a seasoned team of highly skilled engineers and scientists with multidisciplinary backgrounds. This team is challenged daily to provide cutting edge technology solutions to our clients.SRC offers a generous benefit package, including medical, dental, and vision plans, 401(k) with a company match, life insurance, vacation and sick paid time off accruals starting at 10 days of vacation and 5 days of sick leave annually, 11 paid holidays, tuition reimbursement, and a work environment that encourages excellence and more. For positions requiring a security clearance, selected applicants will be subject to a government security investigation and must meet eligibility requirements for access to classified information.Scientific Research Corporation is an equal opportunity employer that does not discriminate in employment. All qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other protected characteristic under federal, state or local law.Scientific Research Corporation endeavors to make accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact assistance. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications

Created: 2026-02-06