Cyber Information Assurance Analyst SME

The Cyber Information Assurance Analyst SME provides IT support services for the Marine Corps Logistics Base by independently conducting complex security analyses of classified and unclassified systems for compliance with security requirements. Performs Command Cyber Readiness Inspections, vulnerability evaluations, and utilizing various security technologies and tools to assess the security posture of intricate computer systems and networks. Responsibilities include conducting vulnerability and risk analyses, participation in penetration studies, and defining security requirements for a range of computing systems. Recommends solutions to enhance security, gathers technical information to align with organizational goals, and offers technical analysis and advice to client executive management on system improvements, focusing on areas like information systems architecture, networking, and communication protocols. This position is on-site in the Albany, GA area.  

Chickasaw Nation Industries, Inc. serves as a holding company with multiple subsidiaries engaged in several lines of business (Technology, Infrastructure & Engineering, Health, Manufacturing, Public Safety, Consulting, and Transportation) for the federal government and commercial enterprises. A portion of our profits is used to support Chickasaw citizens. We are proud to support the economic development and long-term viability of the Chickasaw Nation and its people. CNI offers premium benefits eligible on the first day of hire to full time employees; (Medical - Dental – Vision), Company Life Insurance, Short-Term and Long-Term Disability Insurance, 401(K) Immediate Vesting, Professional Development Assistance, Legal Aid Assistance Program, Family Planning / Fertility Assistance, Personal Time Off, and Observance of Federal Holidays.

As a federal contractor, CNI is a drug-free workplace and adheres to the Federal Controlled Substance Act.   

ESSENTIAL REQUIREMENTS

• Secret Clearance is required and must be maintained for employment. Must be eligible for an IT-II upon assignment. 

• Tenable Certified NESSUS Auditor required and must maintain CSSP Auditor Certification.

• IAM III and IAT II level certification is required.

• Proven proficiency performing CCRI / vulnerability assessment / penetration testing on networks, databases, computer applications and IT frameworks  

• Seven (7) years IT experience 

• Five (5) years IA experience  

• Two (2) years of experience with DOD Vulnerability Management System 

• Command Cyber Readiness Inspection certification in at least one of the following areas:  

• Retina scan analysis o Operating Systems (Windows, Unix) 

• Boundary defense (network policy, router, firewall) 

• Internal defense (L2 switch, L3 switch)  

• DNS (policy, BIND/Windows)  

• HBSS (remote console, AV, ABM, PA, HIPS, ePO) 

• Traditional security (Common, Basic, NCV, SCV) 

• Wireless communications (BES, handhelds) 

• Strong analytical and problem solving skills for resolving security issues 

• Strong skills implementing and configuring networks and network components 

• Knowledge and understanding of DOD security regulations, DISA Security Technical Implementation Guides  

• Understanding of SCAP  

• Knowledge of and proficiency with: VULNERATOR; USCYBERCOM CTO Compliance Program; Wireless vulnerability assessment; Web Services (IIS, Apache, Proxy); Database (SQL Server, Oracle); Email Services (Exchange); Vulnerability Scans (NESSUS, SCCM); Knowledge of Phishing exercises; USB Detect; Physical Security.  

• Nice to have: DISA FSO certified CCRI Team Lead and have a certification in penetration testing, such as: Licensed Penetration Tester (LPT); Certified Expert Penetration Tester (CEPT); Certified Ethical Hacker (CEH); Global Information Assurance Certification Penetration Tester (GPEN); Familiarity with AUTOCHECKLIST Tool. 

KEY DUTIES AND RESPONSIBILITIES

Essential Duties and responsibilities include the following. Other duties may be assigned. 

• Independently performs complex security analysis of classified and unclassified applications, systems and enclaves for compliance with security requirements.  

• Performs Command Cyber Readiness Inspections and cybersecurity vulnerability evaluations.  

• Uses a variety of security techniques, technologies, and tools to evaluate security posture in highly complex computer systems and networks. 

• Performs vulnerability and risk analysis, and participate in a variety of computer security penetration studies.  

• Analyzes and defines security requirements for computer and networking systems, to include mainframes, workstations, and personal computers.  

• Recommends solutions to meet security requirements.  

• Gathers and organizes technical information about an organization's mission goals and needs, and makes recommendations to improve existing security posture.  

• Provide enterprise-wide technical analysis and direction for problem definition, analysis and remediation for complex systems and enclaves.  

• Provides workable recommendations and advice to client executive management on system improvements, optimization and maintenance in the following areas: Information Systems Architecture, Automation, Telecommunications, Networking, Communication Protocols, Application Software, Electronic Email, VOIP and VTC. Competent to work at the highest level of all phases of information systems auditing.    

EDUCATION AND EXPERIENCE

Seven (7) years of experience, or an equivalent combination of education/experience.  

PHYSICAL DEMANDS

Work is primarily performed in an office environment. Regularly required to sit. Regularly required use hands to finger, handle, or feel, reach with hands and arms to handle objects and operate tools, computer, and/or controls. Required to speak and hear. Occasionally required to stand, walk and stoop, kneel, crouch, or crawl. Must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, and ability to adjust focus.  Exposed to general office noise with computers printers and light traffic. 

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job. 

EOE including Disability/Vet

CNI offers a comprehensive benefits package that includes:

• Medical

• Dental

• Vision

• 401(k)

• Family Planning/Fertility Assistance

• STD/LTD/Basic Life/AD&D

• Legal-Aid Program

• Employee Assistance Program (EAP)

• Paid Time Off (PTO) – (11) Federal Holidays

• Training and Development Opportunities

Your application submission will be considered for all potential employment opportunities with Chickasaw Nation Industries (CNI).