Cyber Security Analyst Level III

Job Description

Tyto Athene is searching for a Cyber Security Analyst Level III to join our Warner Robins, GA team. Tyto Cyber Security Analyst is responsible for AFRC/A4 Cybersecurity functions as Chief, Logistics Support Branch authority and focal point responsible for developing and maintaining the HQ AFRC/A4's local cybersecurity program.

The primary service associated with A&A support is the creation and maintenance of Risk Management Framework (RMF) Authority-To-Operate (ATO) packages (To include annual reviews) to achieve and/or retain an ATO for AFRC/A4 systems. These activities include authoring/reviewing Standard Operating Procedures (SOPs), and Ports, Protocols & Services maintenance.

Responsibilities:

Representative systems include:

Major efforts:

• AFRC Basing and Logistics Geospatial Information and Services (AFRC B&L GI&S) - NIPR RMF Package
• AFRC Civil Engineering Planning Tool (CEPT) - NIPR RMF Package
• AFRC Support Agreement Management Tool (SAM) - NIPR RMF Package

Additional services provided will include, but are not limited, to the following:

• Perform ISSM duties as required IAW AFI 17-101, Risk Management Framework (RMF) for Air Force Information Technology (IT) and AFI 17-130, Cybersecurity Program Management.
• Ensure Federal Information Security Management Act (FISMA) compliance requirements are met for the packages.
• Conduct annual security reviews of all IA controls and a test of selected IA controls IAW AFI 17-101, Risk Management Framework (RMF) for Air Force Information Technology.
• Manage the systems COMPUSEC Program for HQ AFRC/A4
• Address all AF COMPUSEC requirements IAW AFMAN 17-1302-O:
  • Implement and enforce all AF cybersecurity policies, procedures, and countermeasures.
  • Completion/ annual review of SOPs.
• Comply with continuous monitoring - update asset/hardware/software inventory, upload vulnerability scan reports, POAMs, STIG checklists.
• Coordinate/facilitate annual Tabletop or Live Contingency/Incident Response Plan.
• Provide CCRI support services to Vulnerability Management office & CCRI PM. • Monitor STIG compliance and remediation of vulnerabilities.
• Ensure POAMs are being accomplished for those items that are non-compliant.
  • Review POAMs periodically to ensure estimated completion date is met, milestones documented.
• Participate in Change Approval Board for changes to systems.
• Upload monthly hardware/software asset inventories.
• Provide/upload artifacts required for authority to operate in addition to other A&A requirements, as required in accordance with CDRL A008, ATO/A&A Artifacts, DI-MGMT-82000, PWS Appendix C.
• Provide input to on-site contract manager as required to support deliverables identified in section 2.3.1.

Required:

• Experience working with Risk Management processes and requirements per the Risk Management Framework (RMF)
• Experience processing Risk Management Framework
• Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.
• Knowledge of server administration and systems engineering theories, concepts, and methods.
• Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).
• Knowledge of basic system administration, network, and operating system hardening techniques
• Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.
• Knowledge of cybersecurity principles
• Onsite support, Warner Robins in GA.
• Active 8570 Certification; Comp TIA Level II Security Plus+ certification

Clearance:

• A ctive DoD Secret level clearance required

Compensation:

• Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically $75K-$85K. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.

Benefits:

• Highlights of our benefits include Health/Dental/Vision, 401(k) match, Flexible Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and maternity/paternity leave

Clearances Required

Secret

Additional Information

Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation that drives measurable success. Our expertise spans four core technology domains-Network Modernization, Hybrid Cloud, Cybersecurity, and Enterprise IT-empowering our clients with cutting-edge solutions tailored to their evolving needs. With over 50 years of experience, Tyto Athene proudly support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide.

At Tyto Athene, we believe that success starts with our people. We foster a collaborative, innovative, and mission-driven environment where every team member plays a critical role in shaping the future of technology. Are you ready to join #TeamTyto?

Tyto Athene, LLC is an Equal Opportunity Employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, [sexual orientation, gender identity,] national origin, disability, status as a protected veteran, or any characteristic protected by applicable law.