Cyber Security Compliance Support Analyst

Education Requirement: The Cybersecurity Compliance (CC) Analyst shall have an undergraduate degree in a computer or related technical field.

Certification Requirement: In lieu of the undergraduate degree, the Cyber Security Compliance Analyst must have one or more of the following certifications: CISSP, CISM, CASP, and SEC +. Optional: Project Management experience required and Project Management Professional (PMP) certification preferred. IAT Level I and IAM Level I certifications or higher in accordance with DoD 8570.01M "Information Assurance Workforce Improvement Program.

Experience Requirement: The CC Analyst shall have five (5) years related experience providing cybersecurity and information assurance support similar to functions described under this functional support area.

• Working knowledge and understanding of DoN Cybersecurity technical concepts and practices. Level l or higher is required to perform this function (see section 8.0).
• Effectively demonstrate sufficient knowledge and experience to apply a methodology to projects that have well-defined requirements and deliverables.
• Demonstrated ability to perform security risk and compliance assessments in fast-paced technology environments.
• Overall computer proficiency including proficiency in MS Office (Word, Excel, Outlook, SharePoint).
• Solid knowledge of Information Assurance policies and procedures is required to support COMNAVAIRPAC's (Afloat and Ashore) compliance with Computer Tasking Orders (CTOs), IA Vulnerability Alerts (IAVAs), IA Vulnerability Bulletins (IAVBs), and all higher directives.
• Solid knowledge of network security concepts and technologies, including but not limited to firewalls, IDS / IPS, proxy servers, access control systems and web application firewalls.
• Working knowledge of the Navy's DADMS/DITPR-DON, eMASS and NAV-IDAS online system management and procurement tools.
• Experience developing information security policies and standards.
• Experience developing and managing reporting of security and risk performance metrics and reporting dashboards for executive and technical audiences.
• Strong understanding of DoD and DoN regulatory compliance drivers and requirements relevant to information security and data protection.
• Strong understanding of network, system, application and data protection standards, benchmarks, processes, applications, tools, and techniques.
• Understanding of enterprise, network, system/endpoint, application and data protection issues and security risks.
• Exceptional verbal, presentation and written communication skills.
• Demonstrated ability to develop positive relationships and effectively communicate with senior management, project managers, and IT operations staff.

Security Clearance:

• Must hold an active DoD SECRET clearance.