Defense Assessment SME

Location: Ft. Huachuca, AZ
Date Posted: 06-27-2018
Job Title:                    Defense Assessment Analyst
Job Location:             Fort Huachuca, AZ
Salary:                        Competitive, Depends on Qualifications
Clearance:                  Current DoD active Top Secret/SCI
Travel:                        Up to 25% CONUS
 
Purpose:
The purpose of this task is to provide all personnel, equipment, supplies, facilities, transportation, tools, materials, supervision, and other items and non-personal services necessary to support the RCC-C
 
Responsibilities:
The Defense Assessment Analyst (DCO) ensures that internal defense measures are effective against APT threats, assists in the security posture assessment of tools, services, processes and policies.
  • Support Cybersecurity Service Provider (CSSP) accreditation.
  • Develop and maintain an automated library or repository of documentation validating compliance with CSSP accreditation requirements.
  • CSSP evaluations are an on-site evaluation and validation of compliance with mandated CSSP requirements as outlined in DoDI 8530.1, Cybersecurity Activities support to DoD Information Network Operations and DOD O-8530.1-M, Department of Defense Computer Network Defense (CND) Service Provider Certification and Accreditation Program.
  • Evaluate their compliance by using the current version of DoD Cybersecurity Services Evaluator Scoring Matrix.
  • CSSP accreditation requirements and the scoring matrix shall be reviewed biannually and SOPs/TTPs updated within 5 working days of review, if necessary, to ensure SOP/TTPs remain in compliance.
  • Computer Defense Assistance Program. CDAP missions are conducted IAW AR 380-53, Communications Security Monitoring.
  • CDAP missions can be requested by the unit commander or the designated approving authority or can be directed by the DCS, G3/5/7 or CND service provider.
  • CDAP consists of three mission types Network Assistance Visits (NAV), Network Damage Assessments (NDA), and Persistent Penetration Testing (PPT).
  • Conduct Web Assessment of all registered public facing web sites, approximately 3200, in the CONUS Theater.
  • The Web Assessment shall be conducted using approved CDAP tools.
  • Analyze the results to rule out false positives prior to sending to the web assessment report to the site for remediation.
  • Ensure maximum number of adversary attack vectors are addressed but at a minimum address Cross-Site Scripting, SQL inject, embedded passwords and common port vulnerabilities.
  • Provide site owners with remediation assistance if necessary.
  • DCO Solutions: At least twice annually, define current DCO posture and capabilities for supported networks, identify gaps with current DCO posture, generate a detailed analytical report for gaps found, and provide input to implementation plans.
  • DCO posture and capabilities shall be based on event analysis, assessments, incident handling, and third party reporting.
  • Design, document, and maintain the supported DCO-D work site production, test, and laboratory networks. New Technologies, Software Tools, and Network Devices: Upon request from USARCC-C or DCO-D Leadership, or for the purpose of meeting a specific DCO requirement, assess new technologies and devices relevant to DCO.
  • Determine if the technology or device will support, satisfy new threat defense requirements, positively enhance the analysis process and security posture of the network, integrate into existing DCO architecture tools sets, and can be properly accredited and authorized for use in the respective AOR.
  • Upon completion of the assessment, information briefs, white papers, and recommendations will be provided to USARCC-C or DCO-D leadership of final evaluation and determination of a course of action.
  • Defensive Cyberspace Operation Internal Defensive Measures (IDM): Implement mitigation measures in response to general or specific Advanced Persistent Threats (APT), (attempted exploits/attacks, malware delivery, etc.) on the respective networks.
  • Routinely this includes blocking / denying access by hostile sites or restricting access by specific ports / protocols and/or applications.
  • Where the DCO-D does not administratively control the sensor grid, make recommendations to the supporting operations and maintenance organization to take necessary action.
  • If the mitigation action (internal defensive measure) requires approval by a Configuration Control Board (CCB) and /or Designated Approving Authority (DAA), provide justification of internal defensive measure and / or operational impact (employed or accepted risk).
  • If deemed appropriate (or as requested by the technical monitor) the internal defensive measure may involve coordination of a Network Damage Assessment (NDA), Network Assistance Visit (NAV), or other version of Computer Defense Assistance Program CDAP.
  • Conduct coordination with the appropriate team to support that effort.
Education:
  • Bachelor’s Degree in Computer Science, Cyber Security, Information Security or related discipline.
Required Certifications:
 
  • Certified Systems and Network Auditor (GSNA)
  • Certified Ethical Hacker (CEH)
  • Certified Wireless Network Administrator (CWNA),
  • IAT Level II Baseline Certification
                                                                                          
Required Skills/Qualifications:
  • Minimum six (6) years demonstrated/practical hands-on experience performing defense assessment analysis in a DoD network environment
  • Required training: GSNA and CWNA
*****POSITION IS CONTINGENT UPON AWARDING OF A GOVERNMENT CONTRACT*****
About the company:
 
As a Service Disabled, Veteran Owned Small Business (SDVOSB) we are a provider of Information Technology (IT) professional services, software solutions and professional development training. Our core competencies evolved from leveraging IT enablers for knowledge management with an emphasis on Web Based Knowledge Portals and Portal Services, Server/System Services, SharePoint Development and System Administration and SQL Server Services. Our capabilities have expanded to include software development, technical training support and field support services.
 
Guiding Principles
•         Satisfy the customer - "Exceed expectations"
•         Set the Example - "Be out front"
•         Be Responsive - "Timing is everything"
•         Persevere - "Find a way"
 
Benefits
PTP offers a comprehensive benefits program:
•         Medical insurance
•         Dental insurance
•         Vision insurance
•         Supplemental benefits (Short Term Disability, Cancer & Accident).
•         Employer-sponsored Basic Life & AD&D Insurance
•         Employer-sponsored Long Term Disability
•         401(k)
 
Holidays and Annual Leave
•         10 Paid Holidays
•         120 hours PTO accrual


 
 
this job portal is powered by CATS