"Alerted.org

West Point, NY, USA | Salary | 85000-100000 per year | Full Time

| Medical, Dental, Vision, 401K w/matching, Paid Time Off (Sick/Vacation) and Holiday Pay

Oneida Technical Solutions (OTS) is a tribally-owned 8(a) certified IT Network and Telecommunications Services company, wholly owned and operated by the Oneida Nation of New York through Oneida Nation Enterprises, LLC. Headquartered in Oneida, New York, OTS is the direct parent company of Croop-LaFrance, Inc.

We are currently seeking a Cybersecurity Documentation and Reporting Specialist (40% Cyber Analyst 60% cyber documentation Admin ) to join our team at West Point Academy.

The contracted cyber technician assigned to support the Cybersecurity Branch mission must analyze general information assurance-related technical documents and provides support in collecting, creating, reviewing and approving of said documentation in accordance with the NIST RMF framework. The contractor will assist in the review and implementation of solutions that meet security requirements. The contractor will perform vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle.

+ Control documentation in eMASS for requirement compliance.

+ Report on noncompliance and create tickets for remediation.

+ Validate and review documentation for compliance with the team.

+ Regulation review and track through review and approval process.

+ SOP review and track through review and approval process.

+ MFR (risk acceptance, exception to policy, etc.) writing and and track through review and approval process.

+ TTP documentation.

+ Policy review and track through review and approval process. Serve as staffing officer to ensure timely processing for document updates and signatures.

+ Update POA&Ms as documentation is processed for RA or compliance and discontinuation.

+ Provide minutes and/or meeting notes for meetings they attend on behalf of or in coordination w/customer.

The contracted technician will be tasked with the following additional duties within their scope of work:

+ a) Vulnerability Management Evaluate endpoint security posture against configured compliance baselines, make recommendations to G6 Cyber and G6 CTO on changing of baselines to enhance security without compromising mission functionality, provide mission impact and risk analysis for any recommendations. Determine which software packages must be maintained at the enterprise level, through enterprise patching in software center, and make recommendations to Cyber on priority of patching. Assist Enterprise and IT Support branches in defining package requirements and configuration in Software Center if required.

+ b) Develop weekly reports from open-source threat assessment evaluating the current threat landscape against products and services utilized in the WREN computing environment, highlight specific critical or impactful threats. Understand changes in the computing environment and how threats could impact users both at West Point and throughout the world. Utilize Army data analytic and open source or proprietary analytic platforms to provide broad spectrum unclassified intel analysis regarding cyber threats.

+ c) Establish metrics to measure & evaluate information security performance. Define what metrics are indicators of a successful cyber security posture and refine those metrics as technology changes. Create automated measures of metric evaluation to ensure that cyber security configurations and overall security posture is easily understood by Cyber and G6 team. Use metrics to define where additional focus is needed to mitigate existing and future risks. Help maintain metrics and Common Operating Picture used by G6 leadership.

+ d) Monitor Cyber Mailbox and communications for incidents, performs remediation for items authorized by G6 Cyber, tracks DD2875 documents through the process and answers questions regarding Cyber policy and procedures. Answers user-based and leadership-based questions on standards, policies, and procedures. Assists in automation of repetitive tasks and processes to streamline Cyber operations. Track annual re-evaluation of Cyber policies, guidelines, standards and procedures, and perform updates as needed. Track privacy impact assessments and other related documentation and serve as staffing officer to ensure timely processing for document updates and signatures.

Qualified candidates will have a minimum of 3-years of related experience in a Cyber Security role.

Sec+ or equivalent is required.

Strong knowledge of DOD/NIST standards required.

Oneida Technical Solutions is an equal opportunity employer. Qualified candidates will be considered without regard to legally protected characteristics