Senior Cyber Security Analyst / Principal Cyber Security Analyst at World Fuel Services (Las Vegas, NV)

| Las Vegas, NV
Sorry, this job was removed at 6:50 a.m. (CST) on Tuesday, April 26, 2022
Find out who's hiring in Las Vegas, NV.
See all Operations jobs in Las Vegas, NV
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Overview

Mission Support and Test Services, LLC, MSTS, is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and Stoller Newport News Nuclear, Inc. (SN3). With more than 2,500 employees, MSTS manages operations at the Nevada National Security Site and at its related facilities and laboratories for the National Nuclear Security Administration's Nevada Field Office, an agency within the Department of Energy. NNSA maintains and enhances the safety, security, reliability, and performance of the U.S. nuclear weapons stockpile without nuclear testing and works to reduce global danger from weapons of mass destruction.

*We offer highly competitive salaries and great benefits, including 96 hours of holiday pay, tuition assistance and reimbursement, a pension plan & 401K, paid time off and more. (Casual employees are only eligible for 401K)

MSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc.

Responsibilities

Serve as a Cyber Security Analyst for the Emergency Communications Services Division (ECSD) at the Remote Sensing Laboratory, Nellis (RSLN) on Nellis Air Force Base in Nevada. The Cyber Security Analyst is responsible for supporting ECN programs and projects.

Key Responsibilities

Senior Level Cyber Security Analyst (ISSO):
  • Perform the duties of Information System Security Officer (ISSO) and supports the Cyber Security Program Manager (CSPM) and the Information System Security Manager (ISSM) with the execution of their assigned duties.
  • Assist in researching, compiling, and analyzing technical data.
  • Perform Security Test and Evaluations of information systems in support of a security plan.
  • Write basic information system security plans (ISSPs) for unclassified systems.
  • Complete assessment and authorization of information systems on unclassified and classified systems and networks, assists with the completion and mitigation of security testing and evaluations results.
  • Design networks and systems with a security focus, ensuring systems are developed in accordance with federal law, customer requirements, assessment and authorization requirements, and industry best practices.
  • Review purchase requests for technology items and provides input to senior level Cyber Security staff regarding the risk associated with purchases.
  • Review current Cyber Security threat information and assists the Threat Evaluation Team with mitigating vulnerabilities identified.
  • Collaborate with other outside Cyber Security interests such as Counterintelligence, other DOE sites, US-CERT, and law enforcement.
  • Conduct a variety of Cyber Security policy compliance tasks such as discovering unauthorized devices, conducting site surveys for non-compliance, and ensuring network access requirements are met.
  • Assist with data calls, FISMA reporting, compliance scanning and reporting, continuous monitoring and compiling reports for auditors.
  • Review Cyber Security threat information and assists with mitigating vulnerabilities identified.
  • Use established standards, practices and procedures as well as an increasing technical knowledge to solve problems and complete projects.
  • Duties will include the development, implementation and management of the Cyber Security Program (CSP) and the development and implementation of the Risk Management Framework (RMF) as it applies to ensuring the confidentiality, integrity, availability and privacy of all categories of data in all forms throughout the data life cycle. As the cyber security point of contact, the ISSO must have a working knowledge of system functions, cyber security policies, cyber security protection measures, familiarity with DOE, NNSA, Federal and DoD regulations pertaining to cyber security, the formal authorization process and day-to-day operations to include data calls and other short suspense requirements and deliverables.
  • The ISSO, under the ISSM, will report programmatically to a federally appointed Authorization Official (AO) and will be required to interface, report, and brief senior federal, military and corporate leadership. The ISSO will support Enterprise networks with additional duties as required in support of the laboratory environment, other specialized projects and will work closely with the M&O cyber teams.
  • The ISSO management of the CSP will include the coordination and familiarity with operational and security-related organizations such as Business Operations, Corporate Information Technology Operations (IT), Physical Security, Classified Matter Protections and Control (CMPC), Personnel Security, Telecommunications Security (COMSEC), TEMPEST, Technical Surveillance Countermeasures (TSCM), Counterintelligence (CI), Intelligence Community (IC) and Operations Security (OPSEC), and support national emergency response groups' emergency response drills, exercises, and real-world events through on-call availability and travel via commercial and military aircraft when required.
  • Contribute in a team environment to evaluate new technologies, provide technical troubleshooting support, and provide recommendations for the direction of future LAN/WAN client server environments. Travel as part of an installation or restoration team when directed and participate as a deployed member of the National Emergency Response Groups when required. Promote project management best practices and continuous improvement.
  • Contribute to an overall productive and respectful work environment by providing excellent customer service and working in a positive, collegial manner at all times. Maintain cooperative and respectful working relationships with Cyber Security Staff, other divisions, and other customers.

Principal Level Cyber Security Analyst (ISSO):

All of the above Senior Level responsibilities, plus:
  • Write complex information system security plans (ISSPs) for classified and unclassified systems.
  • Complete assessment and authorization (A&A) of information systems on unclassified and classified networks, assists with the completion and mitigation of security testing and evaluations results, and is a resource for MSTS and other NNSA enterprise organizations for the A&A process.
  • Assist the CSPM and ISSM with the execution of their assigned duties, acts as a liaison between the ISSM and other Security Points of Contact (SPOC), and provides training to SPOCs about their Cyber Security role.
  • Provide training in the area of Cyber Security to non-technical and technical individuals.
  • Oversees the Cyber Security annual training for information system access and privilege level access.
  • Participate in business development by defining customer needs, developing proposals and planning projects that will produce results meeting customer needs.
  • Develop standards, practices and procedures as well as an increasing technical knowledge to solve problems and complete projects.
  • Use established standards, practices and procedures as well as an increasing technical knowledge to solve problems and complete projects.


Qualifications

Due to the nature of our work, US Citizenship is required for all positions.

Senior Cyber Security Analyst Level:
  • Bachelor's degree or equivalent training and experience in a computer-related field and at least 5 years of related experience.
  • Demonstrate a thorough understanding of basic principles, theories, standards, practices, protocols, and procedures used in Cyber Security. Understand the Windows operating system and command line tools, network protocols, and TCP/IP fundamentals.
  • Knowledge of network-based services and client/server applications, familiarity with intrusion detection systems, familiarity with network architecture and security infrastructure placement.
  • The prospective candidate should meet or be working towards compliance with DoD 8570 certification requirements for Information Assurance Manager (IAM) Level II & III in accordance with DOE requirements.
  • Ability to use network scanning and vulnerability tools and interpret the results.
  • Ability to review and validate remediation efforts of vulnerability scan results.
  • Knowledge of packet inspection, IDS/IPS, HBSS operations, firewall policies, creation of custom host-based and perimeter IDS/IPS signatures.
  • Knowledge of Windows Active Directory and how to configure GPO settings and various information assurance tools.
  • Understanding of encryption technologies, identity and authentication technologies.
  • Ability to maintain strict confidentiality.
  • Ability to multitask as required between responsibilities.
  • Ability to communicate effectively in English, both verbally and in writing, sufficient to communicate with co-workers, customers, testify, write clear and concise reports, gather information, and collect information.
  • Ability to use multiple electronic devices including standard office machines, cellular phones, and security appliances.
  • Knowledge of Cyber Security vulnerabilities, mitigation strategies, network architecture, and how to apply security controls.
  • Ability to articulate highly technical processes and information to a non-technical audience.
  • Ability to meet the physical requirements necessary to safely and effectively perform all assigned duties.
  • The primary work location will be at the RSLN, but will support operations throughout the Global Security Directorate.
  • Work schedule for this position will be 4/10's, Monday - Thursday (subject to change).
  • May be requested to perform on call work and must be able to work nonstandard hours when required.
  • Personnel may be requested by leadership to work in excess of 40 hours per week due to projects, activities, and emergences; critical operational demands may occasionally require off-shift work.
  • Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing.
  • Must possess a valid driver's license.

Principal Cyber Security Analyst Level:
  • Bachelor's degree or equivalent training and experience in a computer-related field and at least 8 years of related experience.
  • Has command of a broad range of the most advanced Cyber Security principles, protocols, concepts and theories in a broad range of disciplines.
  • Ability to integrate work of specialized personnel to produce the desired results.
  • Knowledge of network-based services and client/server applications, familiarity with intrusion detection systems, familiarity with network architecture and security infrastructure placement.
  • Knowledge of Cyber Security vulnerabilities, mitigation strategies, network architecture, and how to apply security controls.
  • The prospective candidate should meet or be working towards compliance with DoD 8570 certification requirements for Information Assurance Manager (IAM) Level II & III in accordance with DOE requirements.
  • Ability to analyze network traffic, identify misconfigurations of information systems and networks, troubleshoot security appliances, independently identify network and host security vulnerabilities.
  • Understand the Windows operating system and command line tools, network protocols, and TCP/IP fundamentals.
  • Ability to maintain strict confidentiality.
  • Ability to communicate effectively in English, both verbally and in writing, sufficient to communicate with co-workers, customers, testify, write clear and concise reports, gather information, and collect information.
  • Ability to use multiple electronic devices including standard office machines, cellular phones, and security appliances.
  • Ability to articulate highly technical processes and information to a non-technical audience.
  • Ability to meet the physical requirements necessary to safely and effectively perform all assigned duties.
  • The primary work location will be at the RSLN, but will support operations throughout the Global Security Directorate.
  • Work schedule for this position will be 4/10's, Monday - Thursday (subject to change).
  • May be requested to perform on call work and must be able to work nonstandard hours when required.
  • Personnel may be requested by leadership to work in excess of 40 hours per week due to projects, activities, and emergences; critical operational demands may occasionally require off-shift work.
  • Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing.
  • Must possess a valid driver's license.


MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. Reference DOE Order 472.2, "Personnel Security". If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted.

Department of Energy Q Clearance (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in 10 CFR Part 707.4, "Workplace Substance Abuse Programs at DOE Sites," will be conducted. Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference 10 CFR Part 709, "Counterintelligence Evaluation Program."

MSTS is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other characteristics protected by law. MSTS is a background screening, drug-free workplace.
More Information on World Fuel Services
World Fuel Services operates in the Energy industry. The company is located in Miami, FL. World Fuel Services was founded in 2022. It has 5001 total employees. It offers perks and benefits such as Flexible Spending Account (FSA), Disability Insurance, Dental Benefits, Vision Benefits, Health Insurance Benefits and Life Insurance. To see all 42 open jobs at World Fuel Services, click here.
Read Full Job Description
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Similar Jobs

Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView World Fuel Services's full profileFind similar jobs