Today
Secret
Unspecified
Unspecified
IT - Security
robins, GA (On-Site/Office)
Tyto Athene is searching for a Cyber Security Analyst Level III to join our Warner Robins, GA team. Tyto Cyber Security Analyst will support HQ AFRC/A4PL with responsibilities of Cybersecurity functions to include Logistics Support Branch authority and focal point responsible for developing and maintaining the local cybersecurity program.
Responsibilities:
The primary service associated with A&A support to include creation and maintenance of Risk Management Framework (RMF) Authority-To-Operate (ATO) packages (To include annual reviews) to achieve and/or retain an ATO for AFRC/A4 systems. These activities include authoring/reviewing Standard Operating Procedures (SOPs), and Ports, Protocols & Services maintenance.
Representative systems include Major effects:
* AFRC Basing and Logistics Geospatial Information and Services (AFRC B&L GI&S) - NIPR RMF Package
* AFRC Civil Engineering Planning Tool (CEPT) - NIPR RMF Package
* AFRC Support Agreement Management Tool (SAM) - NIPR RMF Package
Additional services provided will include but are not limited to the following:
* Perform ISSM duties as required IAW AFI 17-101, Risk Management Framework (RMF) for Air Force Information Technology (IT) and AFI 17-130, Cybersecurity Program Management.
* Ensure Federal Information Security Management Act (FISMA) compliance requirements are met for the packages.
* Conduct annual security reviews of all IA controls and a test of selected IA controls IAW AFI 17-101, Risk Management Framework (RMF) for Air Force Information Technology.
* Manage the systems COMPUSEC Program for HQ AFRC/A4
* Address all AF COMPUSEC requirements IAW AFMAN 17-1302-O
* Implement and enforce all AF cybersecurity policies, procedures, and countermeasures.
* Completion/ annual review of SOPs.
* Comply with continuous monitoring - update asset/hardware/software inventory, upload vulnerability scan reports, POAMs, STIG checklists.
* Coordinate/facilitate annual Tabletop or Live Contingency/Incident Response Plan.
* Provide CCRI support services to Vulnerability Management office & CCRI PM. · Monitor STIG compliance and remediation of vulnerabilities.
* Ensure POAMs are being accomplished for those items that are non-compliant.
* Review POAMs periodically to ensure estimated completion date is met, milestones documented.
* Participate in Change Approval Board for changes to systems.
* Upload monthly hardware/software asset inventories.
* Provide/upload artifacts required for authority to operate and other A&A requirements, as required in accordance with CDRL A008, ATO/A&A Artifacts, DI-MGMT-82000, PWS Appendix C.
* Provide input to on-site contract manager as required to support deliverables identified in section 2.3.1.
* Provide services necessary to provide Information Systems Security Management support for HQ AFRC/A4 systems - AFRC Basing and Logistics GI&S, CEPT, and SAM. All services provided and products delivered must comply with the Government security and architecture requirements. Specifically, the scope of services required includes:
* Complete RMF ATO documentation to ensure current and viable ATO for the GIS, CEPT, and SAM systems.
* Maintenance and updates of system Approvals TO Operate (ATOs) and System Security Plans (SSPs)
* Creation of risk management processes and policies for AFRC B&L GI&S
* Creation, maintenance, and implementation of a disaster recovery/continuity of operations plan for all supported systems
* Creation and maintenance of Ports, Protocols, and Services document
* Creation and maintenance of system diagrams and architectures
* Maintain Hardware and Software listings.
* Liaison between Civil Engineering Authorizing Official (CE AO) and AFRC A4
Required:
* 5 or more years' experience
* Demonstrated corporate experience, providing support staff meeting the position requirements.
* RMF experience
* Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.
* Knowledge of server administration and systems engineering theories, concepts, and methods.
* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).
* Knowledge of basic system administration, network, and operating system hardening techniques
* Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.
* Knowledge of cybersecurity principles.
* Provide onsite at Warner Robins in GA.
* Active 8570 Certification; Comp TIA Level II Security Plus+ certification
Clearance:
* Active DoD "Secret" level clearance
Compensation:
* Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically $75K-$90K. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.
Benefits:
* Highlights of our benefits include Health/Dental/Vision, 401(k) match, Flexible Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and maternity/paternity leave
Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation that drives measurable success. Our expertise spans four core technology domains-Network Modernization, Hybrid Cloud, Cybersecurity, and Enterprise IT-empowering our clients with cutting-edge solutions tailored to their evolving needs. With over 50 years of experience, Tyto Athene proudly support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide.
At Tyto Athene, we believe that success starts with our people. We foster a collaborative, innovative, and mission-driven environment where every team member plays a critical role in shaping the future of technology. Are you ready to join #TeamTyto?
Tyto Athene, LLC is an Equal Opportunity Employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, [sexual orientation, gender identity,] national origin, disability, status as a protected veteran, or any characteristic protected by applicable law.
Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled
Responsibilities:
The primary service associated with A&A support to include creation and maintenance of Risk Management Framework (RMF) Authority-To-Operate (ATO) packages (To include annual reviews) to achieve and/or retain an ATO for AFRC/A4 systems. These activities include authoring/reviewing Standard Operating Procedures (SOPs), and Ports, Protocols & Services maintenance.
Representative systems include Major effects:
* AFRC Basing and Logistics Geospatial Information and Services (AFRC B&L GI&S) - NIPR RMF Package
* AFRC Civil Engineering Planning Tool (CEPT) - NIPR RMF Package
* AFRC Support Agreement Management Tool (SAM) - NIPR RMF Package
Additional services provided will include but are not limited to the following:
* Perform ISSM duties as required IAW AFI 17-101, Risk Management Framework (RMF) for Air Force Information Technology (IT) and AFI 17-130, Cybersecurity Program Management.
* Ensure Federal Information Security Management Act (FISMA) compliance requirements are met for the packages.
* Conduct annual security reviews of all IA controls and a test of selected IA controls IAW AFI 17-101, Risk Management Framework (RMF) for Air Force Information Technology.
* Manage the systems COMPUSEC Program for HQ AFRC/A4
* Address all AF COMPUSEC requirements IAW AFMAN 17-1302-O
* Implement and enforce all AF cybersecurity policies, procedures, and countermeasures.
* Completion/ annual review of SOPs.
* Comply with continuous monitoring - update asset/hardware/software inventory, upload vulnerability scan reports, POAMs, STIG checklists.
* Coordinate/facilitate annual Tabletop or Live Contingency/Incident Response Plan.
* Provide CCRI support services to Vulnerability Management office & CCRI PM. · Monitor STIG compliance and remediation of vulnerabilities.
* Ensure POAMs are being accomplished for those items that are non-compliant.
* Review POAMs periodically to ensure estimated completion date is met, milestones documented.
* Participate in Change Approval Board for changes to systems.
* Upload monthly hardware/software asset inventories.
* Provide/upload artifacts required for authority to operate and other A&A requirements, as required in accordance with CDRL A008, ATO/A&A Artifacts, DI-MGMT-82000, PWS Appendix C.
* Provide input to on-site contract manager as required to support deliverables identified in section 2.3.1.
* Provide services necessary to provide Information Systems Security Management support for HQ AFRC/A4 systems - AFRC Basing and Logistics GI&S, CEPT, and SAM. All services provided and products delivered must comply with the Government security and architecture requirements. Specifically, the scope of services required includes:
* Complete RMF ATO documentation to ensure current and viable ATO for the GIS, CEPT, and SAM systems.
* Maintenance and updates of system Approvals TO Operate (ATOs) and System Security Plans (SSPs)
* Creation of risk management processes and policies for AFRC B&L GI&S
* Creation, maintenance, and implementation of a disaster recovery/continuity of operations plan for all supported systems
* Creation and maintenance of Ports, Protocols, and Services document
* Creation and maintenance of system diagrams and architectures
* Maintain Hardware and Software listings.
* Liaison between Civil Engineering Authorizing Official (CE AO) and AFRC A4
Required:
* 5 or more years' experience
* Demonstrated corporate experience, providing support staff meeting the position requirements.
* RMF experience
* Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.
* Knowledge of server administration and systems engineering theories, concepts, and methods.
* Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).
* Knowledge of basic system administration, network, and operating system hardening techniques
* Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.
* Knowledge of cybersecurity principles.
* Provide onsite at Warner Robins in GA.
* Active 8570 Certification; Comp TIA Level II Security Plus+ certification
Clearance:
* Active DoD "Secret" level clearance
Compensation:
* Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically $75K-$90K. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.
Benefits:
* Highlights of our benefits include Health/Dental/Vision, 401(k) match, Flexible Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and maternity/paternity leave
Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation that drives measurable success. Our expertise spans four core technology domains-Network Modernization, Hybrid Cloud, Cybersecurity, and Enterprise IT-empowering our clients with cutting-edge solutions tailored to their evolving needs. With over 50 years of experience, Tyto Athene proudly support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide.
At Tyto Athene, we believe that success starts with our people. We foster a collaborative, innovative, and mission-driven environment where every team member plays a critical role in shaping the future of technology. Are you ready to join #TeamTyto?
Tyto Athene, LLC is an Equal Opportunity Employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, [sexual orientation, gender identity,] national origin, disability, status as a protected veteran, or any characteristic protected by applicable law.
Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled
group id: 91085617
