The Challenge: As Senior Cyber Security Analyst on our team you will coordinate with information technology stakeholders to identify end-user systems, networks, and communication equipment vulnerabilities and maintenance requirements while ensuring information is properly catalogued and coordinated for resolution of technical issues. In this role, you will support the discovery and incorporation of cybersecurity toolsets and associated CONOPS, TTPs, and processes across Marine Corps networks. You will identify and integrate mission essential software applications to provide increased access to open-source data information stores and associated technologies and processes; these applications must be Intelligence Community (IC) compliant and provide timely, relevant, and accurate intelligence products to deployed forces. You must be able to provide on-site cybersecurity support to system administration activities, software installation, and maintenance support, manage requirement prioritization. You will provide technical assessments of emerging technology projects and solutions for integration and assist in installation and administration of emerging capabilities, to include documentation within the risk management framework (RMF). Additionally, you will assist with identification of network vulnerabilities resulting from alerts posted by defense information systems agency (DISA) or cybersecurity and infrastructure security agency (CISA).

Build Your Career: At JCTM, we know the power of knowledge and experience combined with integrity. When you join JCTM, you are joining a team that empowers their people, does what is right, and believes that every ‘JCTMer’ has a role in helping manage our culture.

Meaningful work – Use your skills, knowledge, experience, and drive in a fast-paced intelligence center supporting the DoD, the Intelligence Community, and our country. Your work will directly support the safety and security of our Nation’s service members.

Challenging projects – The successful Senior Cybersecurity Analyst will possess both domain, and expert level technical knowledge that will allow them to provide technical and management leadership on major tasks while interfacing and building lasting relationships with senior DoD management. Your expertise will assist in integrating emerging programs, cyber security hardware, software, and technology on to Marine Corps networks, while working closely with HHQ and MSCs. This integration includes ensuring capability (data integration) with other USMC Programs of Record (PORs) and providing training for hardware and software setup in a deployed environment. Your decision making and domain knowledge will have a critical impact on overall project implementation for efforts that here will have direct and wide-reaching effects across the Department of Defense

State-of-the-art technology – Broaden your capabilities while working directly in support of the DoD optimizing emerging technologies and methodologies for successful employment at multiple echelons.

New skills – Alongside a myriad of both technical and functional experts, you can gain practical experience with advanced technologies, emerging tools and concepts, and strategic level implementation.

Room to grow – You will be inspired to grow your career and become a key contributor to your company’s processes and strategic goals through your alignment with mentors and collaborative colleagues. From the top down, ‘JCTMers’, regardless of position or contract have access to expand their roles within the company in support of special projects and company growth as they desire.

You Have:

• Active TS/SCI Clearance

• DoD 8570.01M / DoDM 8140.3 Cybersecurity Workforce certification (Security+ minimum)

• 10+ years of specialized Information Assurance Experience for Department of Defense IT systems to include a combination of:

• NIST, DISA, and DoD Security Standards and Risk Management Framework (RMF) processes

• Working and documenting Risk Management Framework processing with end results achieving an Authority to Operate (ATO)

• Using compliance scanning tools (ACAS, Fortify); running scans, evaluating results, and determining remediation steps

• Writing POAMs, including detailed justifications for program-required non-compliant items

• Developing and maintaining detailed cybersecurity project plans, identifying all action items necessary to obtain and maintain, system authorization; maintain compliance and implement the system’s continuous monitoring strategy; account for known system inspections, and system milestone events

• Using Marine Corps Certification and Accreditation Support Tool (MCCAST) or similar tool, for the authoritative authorization packages

• Providing Cyber Security guidance at meetings, briefings, and design reviews, and during system development in accordance with prevailing Cyber regulations and policies

• Ensuring Cyber Security system designs properly mitigate identified threats and vulnerabilities

• Analyzing and reviewing the results of network and system vulnerability scans and be able to validate the implementation of IA Controls.

• Assessing C&A impact based on ACAS and STIG results, and identified the strength of the mitigation or remediation

• Producing report package status and risks weekly to senior level government leadership

• Ability to develop the Security Plan, Security Assessment Plan, Security Assessment Report, and Executive Summaries

• Thorough understand of and experience with the Federal Information Security Management Act (FISMA)

• Ability to provide Cyber Security guidance and documentation throughout the system development life cycle for Marine Corp systems and application

Nice if You Have:

• Undergraduate degree in cyber security, IT, Computer Science, or a related field

• DoD 8570.01M / DoDM 8140.3 Cybersecurity Workforce certification (ISC2 CISSP)

• Knowledge of DoD published Security Technical Information Guidance (STIG) requirements and implementation or compliance process

• Firm understanding of DISA CAL boundaries and experience coordinating with the PPSM team to register ports not registered within the latest DISA’s CAL boundary list

• Possess knowledge of current security threats, techniques, and landscape (threat vectors) as well as information systems security requirements to be implemented during system design

• Experience with business/operations solution architectures (i.e. portals, service management, networks, inventory)

• Proficiency in Microsoft Office applications, particularly Teams, Visio, Word, Excel, and PowerPoint

Clearance:

Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information; TS//SCI clearance is required.

JCTM is an equal opportunity employer that empowers our people to fearlessly drive internal and external change while supporting the safety and security of our great nation.