Information Security Analyst (Journeyman)
Job Description
This information security analyst position supports the US Battlefield Information Collection and Exploitation System eXtended (US BICES-X) program in Hawaii, onsite at Ford Island. The role aids DoD intelligence information sharing on current and emerging global threats and assists government leaders and mission partners in making cyber risk decisions.
Responsibilities
- Lead cybersecurity activities for a large program and collaborate with government program staff, USAF, and other agencies to help create, disseminate, govern, and audit program policy, standards, and operating procedures.
- Leverage available resources to execute cybersecurity tasks and report to senior and government personnel on the program's overall security posture.
- Perform network and system audits for vulnerabilities using Security Technical Implementation Guides (STIGs), the ACAS vulnerability scanner, and DISA SCAP to mitigate findings across Linux, Windows, and related operating systems.
- Develop, track, and review Plan of Action and Milestones (POA&Ms) and identify solutions to support remediation and resolution efforts.
- Communicate tactical and strategic threat information to government leaders, Cybersecurity Operations, and A&A staff to inform cyber risk decisions and threat mitigation.
- Execute DoD Risk Management Framework (RMF) activities in alignment with DoD 8510 guidelines, including security control validation and coordinated security testing.
- Maintain Security Authorization status and document multiple DoD classified networks and interconnected systems.
- Coordinate with OUSDI, USAF, DISA, USN, and other organizations to support audits and inspections, supplying required documentation for SAVs, ST&Es, and CCRI.
- Assess firewall change requests and determine associated organizational risk.
- Conduct Security Impact Analysis consistent with organizational requirements.
- Issue alerts to agencies regarding intrusions or compromises affecting networks, applications, and operating systems.
- Support implementation of countermeasures or mitigating controls as needed.
- Ensure the integrity and protection of networks, systems, and applications by enforcing security policies and monitoring vulnerability scanning tools.
- Perform periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, and file system integrity checks to verify compliance.
- Provide guidance and leadership to less experienced technical staff and stay current with relevant technologies.
- Participate in special projects as required to further program objectives.
Requirements
- Minimum of 5 years of experience in a similar role.
- BA/BS or an equivalent combination of education, technical training, or relevant work or military experience.
- IAM Level II certification, such as CISSP, CASP, CISM, GSLC, or CCIS.
- Active Top Secret/SCI security clearance (must be maintained).
- Additional certifications may be required depending on the specific assignment.
- Ability to collaborate effectively in a team-oriented environment.
- Familiarity with network concepts, user authentication, and digital signatures.
- Understanding of DoD RMF (NIST 800-53 Rev 4 and Rev 5).
- Knowledge of DoD policies and procedures, including FIPS 199, FIPS 200, NIST 800-53, and related policies.
Technologies
- STIGs
- ACAS vulnerability scanner
- DISA SCAP
Benefits
- Medical, dental, and vision coverage
- 401(k) matching
- Generous paid time off
- Paid holidays
- Professional training opportunities
- Pet insurance
Desired Qualifications
- Capacity to manage multiple projects and tasks simultaneously in a dynamic, fast-paced team setting.
- Knowledge of ServiceNow for ticketing, reporting, and dashboards.
Physical Requirements / Work Environment
The role is typically performed in an office setting with standard safety practices; some physical effort may be required to handle light materials, boxes, or equipment.
Travel
Less than 5 percent.
Company Description
Castalia Systems is a proven partner delivering mission critical solutions to the Federal Government. The company offers advanced capabilities spanning data security, systems engineering, and development, and is a leader in artificial intelligence design and application. By applying deep knowledge of customer needs and current technology, Castalia Systems delivers tailored solutions that support critical missions. The organization emphasizes opportunities and wellbeing, with benefits including medical, dental, vision coverage, 401(k) matching, generous PTO, paid holidays, professional training, and pet insurance. Regularly scheduled staff working at least 30 hours per week are eligible for the company’s benefit programs.