Cybersecurity Analyst II, III
Company: Oceaneering International
Location: Chesapeake
Posted on: April 17, 2024
Job Description:
Company Profile
Oceaneering Marine Services Division (MSD) has over 30 years of
experience providing full-service submarine and surface ship
repairs supporting maintenance and alterations aboard commercial
and U.S. military vessels. We are SUBSAFE and DDS-SOC certified and
perform high-consequence maintenance on assets that operate in
demanding environments.
Oceaneering Aerospace and Defense Technologies (AdTech) delivers
solutions that enable humans to work safely and effectively in
harsh environments - from underwater to the outer reaches of space.
Our innovative solutions support the development and application of
practical, cost-effective systems that meet our customers'
challenges - from routine to extreme. Our experience and expertise
across multiple industries uniquely positions us as a leader in the
government, space, and maritime services markets. Our products and
services meet the rigorous demands of the complex environments in
which they operate, delivering results without compromising safety
or reliability.
Oceaneering is a global provider of engineered services and
products, primarily to the offshore energy industry. We develop
products and services for use throughout the lifecycle of an
offshore oilfield, from drilling to decommissioning. We operate the
world's premier fleet of work class ROVs. Additionally, we are a
leader in offshore oilfield maintenance services, umbilicals,
subsea hardware, and tooling. We also use applied technology
expertise to serve the defense, entertainment, material handling,
aerospace, science, and renewable energy industries.
Position Summary
Join Oceaneering as a Cybersecurity Analyst II, III and play a
pivotal role in securing our critical systems. You'll oversee
security protocols, mentor a junior analyst, and help expand our
Marine Services Division Cyber team. Your commitment will advance
our cutting-edge security practices. This position requires
in-office work.
Responsibilities include administering network devices, servers,
desktop systems, and communication hardware/software.
Duties & Responsibilities
ESSENTIAL
- Prepare and edit Certification & Accreditation (C&A) and
System Assessment & Authorization (SA&A) as part of NIST SP
800-37 Risk Management Framework (RMF) system. Assist in
preparation of application accreditation packages for assigned
systems. Assist in maintaining authorization packages by preparing
necessary documentation.
- Assist in monitoring authorizations to ensure annual
requirements are met. Prepare and update packages as necessary to
support re-authorization as needed for assigned systems. Prepare
and submit reports on authorization status.
- Assist in performing security system event analysis,
investigation, and validation. Assist in ensuring that security
measures are implemented, operational, managed and validated as
outlined in published security plans, and assist with tasks
necessary to ensure system(s) maintain compliance with
authorization(s).
- Assist in performing continuous monitoring tasks and prepare
documentation for assigned systems in support of Authorizations to
Operate (ATOs). Perform Security control assessments as part of
Continuous Monitoring NIST SP 800-53 V4 compliance sustainment for
application, infrastructure, and network.
- Assist in data gathering to support event analysis and triage
(gathering information, deriving conclusions, driving mitigations)
and assist in preparing incident reports.
- Assist in the performance of configuration management tasks.
Prepare documentation for assigned systems in support of ATOs.
- Maintain required mandatory certifications as necessary to
support assignment as a privileged user and sustain DoD IA training
and certification requirements IAW DoD 8570.1M.
- Assist in the development, documentation, and support of user
training plan(s).
- Proactively look for ways to better apply technology to the
organization's primary mission; answer questions, resolve problems,
and communicate changes in software and operations.
- Work with lead and senior ISSOs to evaluate the impact of
system and network changes; prepare documentation to support
re-approval of the security packages as appropriate.
- Assist in performing administrative tasks for systems,
including data backup support, system security, and user account
management support.
- Assist in providing support for servers, network and desktop
hardware, software, and applications. Monitor the day-to-day
activities on system and document changes as required.
- Assist with hardware and software roll-out to ensure optimal
deployment of resources.
- Provide occasional field installation support. A few one-week
trips per year to be expected.
- Assist in hands-on cable routing and hardware maintenance.
- Assist in gathering data pertaining to software packages for
assigned systems that will be used to maintain lists of software
and hardware and update documentation.
- Teach and mentor junior Cybersecurity team members.
- Undertake additional duties as assigned.
- Additional duties as assigned.
Qualifications
REQUIRED
- Associate degree in computer science, Management Information
Systems, or a related field. Equivalent experience may be
considered in lieu of a degree.
- Minimum 2-4 of experience as an Administrator on a medium sized
network of servers, desktop systems, and communications devices
using current technologies.
- Specialized certification and compliance in accordance with DoD
8570.1M. Candidate must achieve certification within 6 months of
assignment (MCSE, A+, CISCO, Security +, CISSP for assignment as
IAT level I or II). As a condition of privileged access to any
information system, personnel performing IA functions must satisfy
both preparatory and sustaining DoD IA training and certification
requirements in accordance with DoD 8570.1M. All candidates for
this position must be able to pass and maintain required
training.
- Familiarity with Risk Management Framework (RMF),
Authorizations to Operate (ATO) processes, and certifications under
RMF.
- Proficiency in current communications devices, protocols, and
server/desktop technologies.
- Familiarity with ICD 503, DoD 8570.1M, and the RMF.
- Working knowledge of current communications devices and
protocols, and server and desktop technologies.
- Familiarity with auditing processes.
- Facilitation and change management skills.
- Ability to interact with personnel from other engineering and
technical disciplines both inside and outside of the company,
including systems engineers, electrical engineers, designers,
drafters, fabrication shop personnel, and hardware vendors.
- Ability to perform technical surveys and organize/resolve
technical issues.
- Ability and willingness to travel as necessary. Travel may
include shipboard installation work.
- Willingness to work non-standard work schedules, such as
off-hour backups and system upgrades.
- Excellent verbal and written communications skills.
- Proficient in the utilization of the eMass system for effective
data management.
- Demonstrated experience with NNPI (Naval Nuclear Propulsion
Information) processes and procedures.
- Familiarity and hands-on experience with Controlled
Unclassified Information (CUI) and Cybersecurity Maturity Model
Certification (CMMC) standards.
- Fitness for special background investigation (SBI).
- U.S. DoD Security Clearance required.
- Must be a U.S. citizen who is not a dual citizen of any other
country.
DESIRED
- Specialized certification and compliance in accordance with DoD
8570.1M. Candidate must achieve certification within 6 months of
assignment (MCSE, A+, CISCO, Security + for assignment as IAT level
I or II).
- Experience with large-scale commercial and/or military
systems.
- Knowledge of Windows desktop products.
- Familiarity with networked printers and photocopiers.
***Application Note: Please, spell out if/ how you have the
following experience in your resume: RMF, CMMC/ CUI, eMass,
NNPI.
Equal Opportunity Employer
All qualified candidates will receive consideration for all
positions without regard to race, color, age, religion, sex
(including pregnancy), sexual orientation, gender identity,national
origin, veteran status,disability, genetic information, or other
non-merit factors
Keywords: Oceaneering International, Virginia Beach , Cybersecurity Analyst II, III, Professions , Chesapeake, Virginia
Didn't find what you're looking for? Search again!
Loading more jobs...