Key Facts

Remote From:

United States

Full time

Senior (5-10 years)

38 - 38K yearly

English

Hard Skills

Other Skills

•
Microsoft Word
•
Microsoft Excel
•
Microsoft PowerPoint
•
Non-Verbal Communication
•
Detail Oriented
•
Report Writing

Roles & Responsibilities

Five years of relevant CA experience with RMF and NIST CA experience
Active DoD Secret Clearance and eligibility for IT-II (or IAM/IAT per DoD 8570.01)
Experience assessing security controls and conducting authorization reviews for large, complex organizations
Certifications such as CISSP, CISM, CCSP; cloud security expertise

Requirements:

Serve as a DoD Authorization/Certification and Accreditation (A&A) Analyst, applying RMF and supporting DoD cybersecurity policy, procedures, and processes
Perform DoD cybersecurity processes to authorize information systems or serve as SME during authorization, including large-scale IT environments with multiple enclaves and outsourced processes
Determine vulnerability severity levels (e.g., non-compliant controls) and assess implications for current or future authorization; brief senior management on progress or results
Provide Cloud Security expertise and utilize tools such as eMASS, ArcSight, Stigviewer, SCAP, RSA Archer, Splunk, and Microsoft Office suite for documentation and reporting

Amyx, Inc.

About Amyx, Inc.

At Amyx, Inc., a wholly owned subsidiary of Tetra Tech, our mission is to exceed our customer's expectations on every contract, to provide an environment that encourages, recognizes and rewards the extraordinary contributions of our employees, and to advance and support the communities in which we work and live. Amyx is a management and technical solutions provider and a "trusted partner" to our Federal Government clients on programs of national importance. We understand that successful programs require superior performance and a level of trust achieved through genuine rapport with the customer. Award-winning results have propelled Amyx to become one of the fastest growing businesses in the Washington Region. Amyx's service offerings include: - Program Management and Acquisition Support - Systems Engineering and Implementation - Enterprise Architecture - Business Process Transformation Amyx is also a Microsoft Certified Partner and a recognized leader in leveraging Microsoft platforms, applications, and associated information systems. Amyx services can be easily retained by using the General Services Administration (GSA) IT and MOBIS schedule contracts, Government Wide Acquisition Contracts (GWACs), Indefinite Delivery/Indefinite Quantity (ID/IQ contracts), and Blanket Purchase Agreements (BPAs).

Company type: SME

Founded: 2018

Company size: 501 - 1000

Website LinkedIn See all jobs →

Job description

Overview:

Amyx, Inc. is seeking to hire an Information Assurance C&A Analyst, to be located within 100 miles of DLA site. Serves as a cybersecurity Subject Matter Expert (SME) with regards to Authorization of information systems and all associated cybersecurity policies and procedures.

Responsibilities:

The Information Assurance C&A Analyst’s primary job responsibilities will include:

• Fully versed in the general tenets supporting the overall DOD implementation of its authorization process, to include supporting cybersecurity policy, procedures and processes.
• Performs a DOD cybersecurity process while either authorizing an information system or serving as a SME for an information system undergoing authorization.
• Possess an understanding of how the security controls identified in the NIST 800-53 apply to the process of assessing and authorizing a large organization’s IT infrastructure, in which there is a compilation of large and small enclaves, AIS applications and outsourced IT processes.
• Determines the applicable severity value for an identified vulnerability (e.g., non-compliant security control), and determines the possible ramifications on the system’s current or future authorization. Required to brief senior management on the progress or results of an information system undergoing the authorization process.Provide expertise in Cloud Security.

• Microsoft Excel and Access
• Microsoft Office suite, to include Word, PowerPoint and SharePoint
• eMASS
• ArcSight
• Stigviewer
• SCAP
• Cloud Computing
• Mobility
• IOT/SCADA/ICS
• RSA Archer
• ACAS/HBSS
• Splunk

Qualifications:

• Five (5) years of relevant C&A experience; Risk Management Framework (RMF) and NIST C&A experience; DOD cybersecurity experience
• DOD Secret Clearance.
• Must be eligible for IT-II
• Relevant certification meeting DOD 8570.01 IAM level III (for non-CERT personnel), or IAT level II (for CERT personnel).
• Experience in assessing security controls and conducting authorization reviews for large, complex organizations.
• Computing Environment: CISSP, CISM, Cloud +, CCSP,
• Expertise in Cloud security

Prefer three (3) years relevant DLA C&A experience; Risk Management Framework (RMF) and NIST C&A experience

Benefits include:

Medical, Dental, and Vision Plans (PPO & HSA options available)
Flexible Spending Accounts (Health Care & Dependent Care FSA)
Health Savings Account (HSA)
401(k) with matching contributions
Roth
Qualified Transportation Expense with matching contributions
Short Term Disability
Long Term Disability
Life and Accidental Death & Dismemberment
Basic & Voluntary Life Insurance
Wellness Program
PTO
11 Holidays
Professional Development Reimbursement

Please contact talent@amyx.com with any questions!

Amyx is proud to be an Equal Opportunity Employer. All qualified candidates will be considered without regard to race, color, religion, national origin, age, disability, sexual orientation, gender identity, status as a protected veteran, or any other characteristic protected by law. Amyx is a VEVRAA federal contractor and we request priority referral of veterans.

Physical Demands

Employee needs to be able to sit at a workstation for extended periods; use hand(s) to handle or feel objects, tools, or controls; reach with hands and arms; talk and hear. Most positions require ability to work on desktop or laptop computer for extended periods of time reading, reviewing/analyzing information, and providing recommendations, summaries and/or reports in written format. Must be able to effectively communicate with others verbally and in writing. Employee may be required to occasionally lift and/or move moderate amounts of weight, typically less than 20 pounds. Regular and predictable attendance is essential.