Quality & Cybersecurity Analyst Duties include but not limited to:• Supporting and managing an evolving IT infrastructure, computer operations of the production and staging systems.• Advising, investigating and evaluating the selection of solutions used by our customer.• Provide ongoing maintenance and evolution of operational systems and applications.• Propose solutions to customers evolving security issue.• Work with senior team members across Development, QA, and Engineering and Service managers to define product requirements related to security compliance. Requirements definition of back porting/retrofitting and modification of Base Level Support Application (BLSA) specific interfaces, reports, installation programs and utility programs as they relate to security configuration issues and noncompliance issues.• Creating, Managing and delivering applicable Risk Management Framework (RMF) packages that are detailed to the BLSA application to obtain/maintain active accreditation and authority to connect authorizations for each branch of service supported with BLSA. • Executing automated and manual Security Test Scripts as necessary• Manage/utilize automated scanning tools for Database security, Application security, and Network security and penetration vulnerabilities.• Periodic Information Assurance testing as necessary to comply with Security Content Automation Protocol (SCAP) version releases. Application Detective, Assured Compliance Assessment Solution (ACAS), HP Fortify Web Inspect Vulnerability Scanners, Penetration testing and correct document and prepare deployment of corrective methodologies • Manage/create all deployed operating system images per DISA/DoD security compliance measurements.• Develop monthly update packages to be deployed and implemented at standalone facilities to maintain the necessary security posture and IA compliance with DoD Directives and Instructions related to IT systems• Manage/Conduct ongoing testing to verify correct systems operation with Operating System patches, service packs, IAVM/IAVA notifications, DISA/NSA/NIST Security Cert notifications and version releases. Required monthly report covering this process• Provide the necessary controls and data gathering capability to assemble, verify and validate requirements for various ongoing BLSA development efforts. • Serve as an advocate for Security best practices.• Provide technical guidance for quality systems, customer support, Field Technician proficiency assessment, and problem solving facilitation• Deploy to field locations randomly to perform Quality Surveillance Management operation evaluations and reporting. • Resolve all quality problems with product configuration and deployment departments• Implement quality initiatives to reduce/eliminate non-standard implementation• Provide input to support technician qualification to ensure quality product implementation• Continuously update and maintain Quality standards to improve process and product quality• Maintain compliance with all quality requirements for all approved processes and certifications• Manage/Perform internal task order quality assurance inspection both random and scheduled.• Manage, coordinate and/or lead related quality initiatives, activities and programs including implementation strategies and systems integration and alignment.• Periodic Information Assurance testing as necessary to comply with SCAP version releases• Provide Quality Assurance Reports to the COTR within the prescribe timeframe• Validate documentation changes for Quality Assurance related issues for internal/external user documents.
Qualifications• Active certification compliance in accordance with DoD Directive 8140.01 and DOD 5870.01-M IAT Level II Category to include Computing Environment (CE) certification (current supported operating system certification).• Excellent communications skills required• Advanced hardware and software knowledge required• Bachelor's Degree and 2+ years of experience in a related field or 6 yrs of related experience will be considered in lieu of a degree• Government IT security clearance, IT2 minimum with possible requirements for an IT1• Travel approximately 20% to 40%• Experience working with DISA/NSA/NIST security compliance settings for the platforms provided to base level customers, including a full understanding of the operating and system security parameters deployed and utilized in a DoD environmentPreferred Qualifications• Experience with the entire current RMF Process or prior Accreditation methodology • Experience with Enterprise Mission Assurance Support Service (eMASS)• Experience with DoD operating system images and security parameters for each branch of service• Full understanding of IT networking architecture with relation to Client Server configurations and/or thin/thick net configurations• Experience with Host Based Security Systems and Intrusion Detection Systems • Full working knowledge of imaging software and deployment methods and packages