Job Description
cFocus Software seeks a Consultant/Analyst 3 to join our program supporting the United States Coast Guard (USCG). This position is on-site in Washington, DC. This position requires TS/SCI Clearance
Qualifications: - Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Information Assurance, or a related field.
- Active TS/SCI clearance.
- 6-8 years of demonstrated experience
- Active DoD 8570/8140 IAM Level 2 Certification or higher
Duties: - Analyze science, engineering, business, and other data processing problems to implement and improve computer systems.
- Analyze user requirements, procedures, and problems to automate or improve existing systems and review computer system capabilities, workflow, and scheduling limitations.
- Analyze or recommend commercially available software.
- Facilitate and coordinate organizational meetings, strategic planning and working group sessions, off-sites for CG-2 leadership, and across IC and USCG collaboration Integrated Planning Teams (IPTs) such as Intelligence & information Sharing (IIS) portfolio execution planning, and STORMFORCE.
- Support includes developing project charters, defining requirements, support budget planning (cost and risk analysis), operational analysis, program prioritization and coordination with the C5I Resource Council.
- Assist with developing after action reports, action item tracking and effort summary reports; attending and supporting meetings and briefings; recording action items and meeting minutes; preparing multi-media presentations, briefings and reference materials; updating project plans and documentation; reviewing and drafting documents and reports.
- Provide meeting management support and collaboration support for process development, such as the ISR Systems and Technology Service Catalog, Budget Execution, Hybrid Planning processes and strategic and technical documentation such as Concept of Operations (CONOPS), Standard Operating Procedures (SOPs), Requirements Documents, project charters, risk plans, and strategic documents.
- Coordinate logistics, communications, and metrics supporting training programs for data analysts.
- Develop training briefs for accessing, handling, and safeguarding CGI-managed data
- Determine business requirements and provide support to modernize CG Intelligence Data services.
- Assist with developing partnerships with Data Services providers, including development of documentation, such a memorandum of agreements, to obtain data cloud services.
- Collaborate with CG-26, Command, Control, Communications, Computers, Cyber, and Intelligence Service Center (C5ISC) Intelligence Systems Product Line (ISPL), and other CGI
- stakeholder to define data service needs, ensure compliance to DHS Data standards, and assist with the adoption of the DHS data framework, and compliance to IC data mandates
- Support dataset registration and identifying future state and CONOPs for data services.
- Support creation, submission, processing, and timely implementation of data ingest requests.
- Assist in research and development of technical integration solutions with available Identity, Credential, and Access Management (ICAM) services across all three domains (Unclassified, Secret, and Top Secret/SCI).
- Develop requirement, process, informational artifacts supporting data stewardship (distribution, accessibility, handling, and archiving).
- Develop use cases for datasets to identify sequence of interactions between systems and users in a specific environment and related to specific goals defined by CG-26.
- Develop and implement IT initiatives that align to IC and National Intelligence Strategies, and the USCG ISR Systems & Technology Strategy.
- Collaborate with the USCG Foreign Disclosure Office (FDO) to ensure Disclosure and Approval decisions associated with data sharing agreements align with USCG, DHS, and other federal policies.
- Conduct system administration duties and to support Coast Guard Cyber Command requirements, as appropriate, update relevant systems, address security breaches, and troubleshoot issues relative to the systems and their functionality.
- Duties include but are not limited to: troubleshooting and replacing workstations, telecommunications, and user peripheral equipment; assisting users with account access tickets; inspecting and tracking IT equipment entering/exiting classified spaces as per Information System Security Officer guidance; assisting users with completion of annual security training requirements.
- Participate in the Risk Management Framework (RMF) process for assigned programs, organizations, systems, or enclaves.
- Gather or generate, assess, and maintain the RMF documentation package that meets all Department of Defense (DoD) requirements and is tailored to a specific system.
- Documentation may include but is not limited to; Security Categorization Determination, Implementation Plan, System Security Plan (SSP), Configuration Management Plan (CMP), Incident Response Plans (IRP), Contingency Plans (CP), Authorization documentation, IT Security Plans of Action & Milestones (POA&Ms), Scorecards, Security Assessment Reports (SAR), Continuous Monitoring Strategy, Vulnerability Scans, Hardware/Software lists, Threat Models, Cybersecurity Strategy, Network Topology, Network Cybersecurity Boundary Diagrams, and Data Flow Diagrams using Government prescribed tracking and processing tools.
- Ensure that all DoD Information System (IS) cybersecurity-related documentation is current and accessible to properly authorized individuals.
- Interpret system designs and diagrams for the purposes of identifying data interconnections, interfaces, protocols, and data types in order to select appropriate controls to remediate or minimize Cybersecurity risk exposure to the Coast Guard.
- Develop plans and perform testing and control assessments to evaluate compliance with all applicable DoD and industry security requirements, standards, and best practices.
- Utilize Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIG)/Secure Requirements Guides (SRG) assessments including leveraging automation as much as possible to gain efficiencies.
- Perform Security Readiness Reviews (SRR) for the Operating Systems an applications.
- Collaborate with multiple government stakeholders to develop documentation that may include USCG Memos; Process Guides, Interconnection Security Agreements (ISAs), and Memorandums of Understanding (MOU).
- Develop and update the Portal webpage with relevant stakeholder information derived from DoD, IC, and CG policies that will support SCI cybersecurity operations.
- Support the USCG SCI Networks Information System Security Manager (ISSM) with the development and management of a centralized training tracking system.
- Assist Information System Security Officers (ISSO) with the review and update of Information System management guides, policy development, and Standard Operating Procedures (SOP) required for accreditation.
Job Tags
Full time,