Cybersecurity Analyst - Planning

Company Overview:

ANSER enhances national and homeland security by strengthening public institutions. We provide thought leadership for complex issues through independent analysis, and we deliver practical, useful solutions. ANSER values collaboration, integrity, and initiative and we are client focused in all that we do. Because we were established for the purpose of public service and not for profit, we measure our success in the impact of our service.

Position Summary:

ANSER is seeking a Cybersecurity Analyst to support a federal program in cybersecurity planning, analysis, development, and promulgation of cybersecurity strategies. You will design, develop, implement and recommends cybersecurity control solutions that ensure protection of information and systems.

Day to Day Responsibilities:

• Establish and satisfy complex enterprise-wide cybersecurity requirements based upon the analysis of user, policy, regulatory, and resource demands.
• Identify security risks, threats, and vulnerabilities of networks, systems, applications, and new technology initiatives and recommends mitigation measures.
• Apply expertise to government and commercial common user systems and dedicated special purpose systems requiring specialized cybersecurity features and procedures.
• Support the development, implementation, and maintenance of strategy, doctrine, standards, policies, and procedures.
• Provide cybersecurity expertise during policy, initiative, manual, and instruction development to identify vulnerabilities and enhance security engineering and cyber defense across DoD networks and capabilities.
• Support the Program’s commitment to evolve the Digital Modernization framework for enhancing IT capabilities and processes that enhance a secure joint information environment comprised of shared IT infrastructure, enterprise services, a single security architecture, and information assurance for Chairman of the Joint Chiefs of Staff Instructions (CJCSI’s) and Manuals (CJCSM’s).
• Advise and assist during collaborations with the Joint Staff, Combatant Commands, and other agencies during coordinated policy development and international CS/DCO engagements.
• Provide technical subject matter expertise to research evolving CS management methodologies.
• Assist in updating the Knowledge Service (KS) and ensure the KS maps CS policy to actionable metrics.
• Support ongoing and future enhancements of a seamless integrated enterprise-wide decision structure for cybersecurity risk management (RMF) that aligns to guidance and policy.
• Create and maintain capability deployment concept of operations and strategy document outlining capabilities, gaps, deployment timelines, roadmaps, and measures of effectiveness and performance.
• Develop capability gap closure plans and decision briefings to cybersecurity senior leadership groups to address prioritized enterprise capability gaps.
• Develop structured original closure plans, roadmaps, and decision briefings describing the information and content necessary to develop/acquire, implement, and operate the proposed capability.
• Provide support to cybersecurity technology, cyber capability architecture, design evaluation, and Information Awareness activities.
• Advise and assist in program oversight activities for user activity monitoring (UAM); identity, credential, and access management (ICAM); comply to connect (C2C); automated continuous endpoint monitoring (ACEM); cross domain solutions and encryption technologies; and other emerging cybersecurity capabilities.
• Support the development and integration of Supply Chain Risk Management (SCRM) strategies, processes, and technical capabilities.
• Provide technical engineering and assessment support to evaluate DoD acquisition programs, strategic capabilities, emerging technologies (e.g., 5G), incident response, architectural and policy exceptions.
• Provide advanced technical subject matter expertise to support systems security engineering assessments, risk assessments, vulnerability assessments, cybersecurity program and technology measures of effectiveness, CJCSI’s, CJCSM’s.
• Provide support to the development and promulgation of cybersecurity requirements and standards for all aspects of technology including Control Systems, Internet of Things (IoT), and weapon systems.
• Provide support to the DCIO-CS for the development and promulgation of cybersecurity requirements for cloud capabilities; to include support to DoD CIO's role as a member of the Federal Risk and Authorization Management Program (FedRAMP) Joint Authorization Board (JAB) and their Technical Representative (TR).

Required Qualifications:

• Active TS/SCI Clearance.
• Bachelor’s degree in a cybersecurity related discipline, or any Bachelor’s degree and a cybersecurity related certification of CISSP or equivalent.
• Five (5) or more years progressive relevant experience in cybersecurity and/or systems engineering and supporting cybersecurity, technology programs.
• Demonstrated understanding and knowledge of cybersecurity standards.
• Knowledge of Department of Defense (DoD) acquisition programs, systems and infrastructure.
• Prior experience providing guidance to government technical programs.

Preferred Qualifications:

• Ten (10) or more years relevant experience.
• Previous experience presenting or briefing high level stakeholders, military officials and policy makers.
• Cybersecurity certifications such as CEH, CRISC, CISM, CISA, CISSP, GIA.

In compliance with the Americans with Disabilities Act (ADA), if you have a disability and would like to request an accommodation in order to apply for a position with ANSER, please call 703-416-2000 or e-mail Recruiting@anser.org

ANSER is proud to be an Equal Opportunity Employer. We seek individuals from a broad variety of backgrounds with varying levels of experience who have a desire to do meaningful work. We recruit, employ, train, compensate, and promote regardless of race, color, gender, religion, national origin, ancestry, disability, age, veteran status, sexual orientation, or any other characteristic protected by law.