ManTech International Corporation

As a Cyber-Risk Analyst on our team, you'll use your experience to work with DoD programs to discover their cyber risks, understand policies, and develop a mitigation plan.. Assessment and Authorization (A&A) in support of DoD and IC programs, including package development, artifact generation, and authority to operate (ATO). Experience with security hardening of Windows and Linux operating systems and security tools, such as ACAS, SCAP, STIG/SRGs, SCC, eMASS/Xacta, ESS, Prisma Cloud, Kubernetes, Rancher, and Docker. Experience with DevSecOps, Path-to-Production, and CI/CD. For all positions requiring access to technology/software source code that is subject to export control laws, employment with the company is contingent on either verifying U.S.-person status or obtaining any necessary license.

risk analyst

Secure our Nation, Ignite your Future At ManTech International Corporation, you will help protect our national security while working on innovative projects that offer opportunities for advancement. Clearance Required: TS/SCI Location: Reston, VA (onsite work) As a Cyber-Risk Analyst on our team, you'll use your experience to work with DoD programs to discover their cyber risks, understand policies, and develop a mitigation plan. You'll get technical, environmental, and personnel details from engineers and SMEs to assess the entire threat landscape. Then, you'll help your team guide your client through a plan of action with presentations, white papers, and milestones. You'll work on translating security concepts for your client so they can make the best decisions to secure their mission critical networks and systems. This is your opportunity to act as an information security subject matter expert while broadening your skills in cybersecurity, security and network tools, systems engineering, and data science. Required: Bachelors Degree and at least 2 years of experience with cybersecurity to include the following (additional years of experience can be substituted in lieu of degree): <ul><li>Assessment and Authorization (A&A) in support of DoD and IC programs, including package development, artifact generation, and authority to operate (ATO)</li><li>Experience with security hardening of Windows and Linux operating systems and security tools, such as ACAS, SCAP, STIG/SRGs, SCC, eMASS/Xacta, ESS, Prisma Cloud, Kubernetes, Rancher, and Docker</li><li>Experience generating and maintaining System Security Plans (SSP), Implementation Plans, Privacy Impact Assessments, Security Assessment Plans (SAP), Risk Assessments, Plan of Action and Milestones (POA&M), and other A&A documentation</li><li>Knowledge of Risk Management Framework (RMF) and the A&A activities needed to obtain and maintain an ATO, including National Institute of Standards and Technology (NIST) and Committee on National Security Systems Instruction (CNSSI), including NIST SP 800-60, NIST SP 800-53, and CNSSI 1253</li><li>Security+ DoD 8570 Level II</li></ul> Nice If You Have: <ul><li>Experience with DoD or IC cybersecurity projects or programs</li><li>Experience with DevSecOps, Path-to-Production, and CI/CD</li><li>Experience with Cloud Authorization and Cloud Migration</li><li>Experience with administering Red Hat Enterprise Linux or Windows Server 2012 or higher</li><li>Ability to provide subject matter expertise to system engineering documents, including technical requirements documents, interface control documents, and system specifications</li><li>Ability to analyze and communicate complex technical challenges to both technical and non-technical clients and stakeholders</li><li>Ability to communicate and integrate between multiple customer stakeholders</li></ul> Clearance Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required. For all positions requiring access to technology/software source code that is subject to export control laws, employment with the company is contingent on either verifying U.S.-person status or obtaining any necessary license. The applicant will be required to answer certain questions for export control purposes, and that information will be reviewed by compliance personnel to ensure compliance with federal law. ManTech may choose not to apply for a license for such individuals whose access to export-controlled technology or software source code may require authorization and may decline to proceed with an applicant on that basis alone. ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law. If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services. If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click careers@mantech.com and provide your name and contact information.

START NEW SEARCH