Job Description

LAWELAWE DEFENSE IS PROUD TO ANNOUNCE WE ARE ACTIVELY SEEKING AN EXPERIENCED CYBER SECURITY ANALYST FOR AT FORT BELVOIR COMMUNITY HOSPITAL, VIRGINIA. PLEASE NOTE: THIS POSITION IS ON-SITE. MUST HAVE OR OBTAIN FAVORABLE DOD CLEARENCE AND SUCCESSFULLY FULFIL BACKGROUND CHECK.  THIS OPPORTUNITY IS NOT REMOTE.  POSITION IS OPEN TO US CITIZENS ONLY.

Cybersecurity Analyst

JOB DESCRIPTION:

The mission of FBCH is a commitment to outstanding patient experience through safe, quality, compassionate care for all served. FBCH is committed to maximize 1.3. +operational readiness and keep the uniformed services fit to fight, deliver quality primary and tertiary care in a customer focused environment, provide distinguished graduate/undergraduate medical education, professional education and research, and to develop and export innovations in healthcare services and informatics.

Scope:

The Cybersecurity Analyst will perform as part of a team supporting a range of cybersecurity and process improvement tasking in support of the Fort Belvoir Community Hospital (FBCH). Services include technical cybersecurity support services and subject matter expertise to a community of approximately 5500 users to maintain the overall security posture across the FBCH computing network. The primary objective is to provide cybersecurity technical, risk analysis, and incident mitigation support to include deliverables through performance of total maintenance management.

RESPONSIBILITIES: Key responsibilities of this position include, yet not limited to the following:

• Provide Cybersecurity support to the Fort Belvoir Community Hospital and process improvement initiatives

• Meet the aggressive timelines and execute the myriad of tasks set forth by the Secretary of Defense, the White House, and Congress.

• Provide support in technical gaps as transformation events unfold withing FBCH under National Capital Region Medical Directorate (NCR-MD) initiatives.

• Provide day-to-day support in technical areas such as, cybersecurity support and cybersecurity RMF Assessment and Analysis.

• Provide the gamut of support resources related to cybersecurity to include but not limited to analyzing new requirements and existing systems to determine and identify separable functions that are common across systems and potentially can be accommodated by Commercial off the Shelf (COTS) software, or alternatively, by custom-developed software.

• Bring to, support, and maintain a level of security compliance that would be acceptable to the DHA Approving Authority (AO).

REQUIRED EXPERIENCE:

Minimum of 5 years hands-on experience working Cybersecurity tasks/duties in a computing environment supporting host-based and network-based security IAW US government guidance and policies.

Experience using the NIST RMF processes for security compliance accreditation and certification experience with Federal or DoD certification and accreditation processes.

Experience with DISA STIGS and NIST Cybersecurity related Special Publications.

Experience with DoD approved vulnerability scanning tools. Experience with writing, formatting, developing, screening and publishing of cybersecurity technical and policy type documents. Possess exceptional communication skills, able to articulate program structure to various professionals.

• Knowledgeable in Risk Management Framework (RMF) experience with facilitating at least two packages from kickoff to approval

• Strong understanding of National Institute of Standards and Technology (NIST) SP 800-53 rev4 Security Controls experience to include, in depth knowledge of individual AP families, difference between an Assessment Procedure (AP) and Control Correlation Identifiers (CCI), be able to comprehend existing DoD Information Assurance Certification and Accreditation Program (DIACAP) documentation and retrofit to address newer requirements IAW NIST RMF requirements

• Experience with performing internal auditing on existing documentation, Systems and significant computing/network components IAW DoD, NIST, and best business practices

• Microsoft Operating System, Networking operations, embedded operating systems, and other related computing components and how they interconnect to support a larger system

• Experience with the following is highly desirable:

• Enterprise Mission Assurance Support Service (eMASS)

• SharePoint 2010 or later

• DISA STIG checklist

• DISA STIG Viewer

• NIST SP 800-53 Security Controls

REQUIRED CAPABILITIES:

• Have proficiency with writing policy and SOP’s and be able to demonstrate this ability.

• ·Excellent writing, grammar, proofreading, editing, and oral communication skills.

• Self-motivated individual that requires little oversight.

• Capable to work in a cohesive team approach.

• Demonstrate the delivery of final set of deliverables within a specified timeframe.

• Manage time and priorities effectively and efficiently.

• Ability to work with complex and abstract knowledge gathered from SME's, System Administrators, and System Owners into clear and coherent writing.

• Take an active role in usability and testing of documents to validate [the system package, policy, SOP, etc.] proper sequence for effective and efficient operation

• General understanding of current computing /networking technologies.

• Experience with vulnerability scanners and other network and host-based security tools

• Create an Accreditation Boundary using Visio or other similar drawing package.

• Validate the hardware and software components within an accreditation boundary

• Create Policies/Procedures or some type of a Core documents from templates format

• Microsoft Excel, PowerPoint, Word, Outlook

Company Description

Our Mission: Our purpose to help create and stimulate Native Hawaiian communities through economic investments made by the nonprofits by providing infrastructure and capacity through common business management services.