Cyber Security Analyst at Marine Hydraulics International, LLC

MHI Ship Repair & Services is a major marine repair and conversion contractor serving the U.S. Navy, Military Sealift Command, Maritime Administration and Commercial ship owners and operators worldwide. Our shipyard is conveniently located in the Mid-Atlantic region at the port of Hampton Roads, Norfolk Virginia.

POSITION SUMMARY:

The Cybersecurity Analyst III. will be a member of an expanding team of security professionals. As a Cyber security analyst III you will take a lead role assessing, planning, and enacting security measures to help protect our organization from security breaches and attacks on its computer networks and systems. The Cyber Security Analyst III will provide vulnerability analysis, cyber security awareness administration, policy management, project support, participate in security related initiatives to help strengthen our overall security posture. This role will also assess and make recommendations for improvements of our cyber security monitoring tools and posture.

ESSENTIAL FUNCTIONS AND MAJOR RESPONSIBILITIES:

(This list is not intended to detail all aspects of the assigned work but is representative of the job's overall responsibilities)

Lives the Vigor Values every day

Monitor the overall analysis of information technology and cyber defense tools, such as endpoint protection, intrusion detection, security event monitors and direct incident reporting to identify potential threats and defend Vigor against all forms of cyber deception and attack.

Key member of incident response team, responding to emerging situations and often working inter-departmentally with IT.

Leads efforts to identify vulnerabilities in conjunction with IT to enact a plan of remediation.

Delivers risk-prioritized solutions to pressing cybersecurity problems through analysis and advisory.

Monitors and responds to reporting tools used to defend endpoints against cyberattack.

Takes a lead role in the development of plans and techniques to mitigate vulnerabilities and improve defenses. Leads the development of goals, strategy and methodologies of Vigor's cyber defense in alignment with the overall Information Security program strategy.

Engage and assist with the execution of program protection, Supply Chain Risk Management (SCRM), System Security Engineering (SSE), and acquisition and industrial security programs throughout the acquisition life cycle to aid in the systems analysis, development, fielding, and deployment of operational and test assets.

Takes a lead role in program protection and supply chain risk management working groups, prepare documents, coordinate actions, engage in reviews, and secure approvals.

Support the development of program deliverables by providing detailed research, analysis, and production of program protection and other security products.

Support Vigor's Corporate Security program to ensure protection of sensitive and proprietary information, assets and employees

Performs other duties as required or assigned.

JOB SCOPE:

This position operates within a security team in a dynamic environment to support numerous Cybersecurity tools, programs, and reporting requirements. Maintain responsibility for the planning and continuous monitoring of Cybersecurity and coordinating various policies, programs, and compliance artifacts or standards supporting government and industry security compliance, systems accreditation, and management. Support a coordinated response to complex Cyber-attacks that threaten assets, intellectual property, and computer systems. Support the development and improvement of security monitoring and incident response processes and solutions to support the Cybersecurity program, as required. Operate security monitoring and incident response toolsets with a focus on continuous improvement. Research and recommend solutions for incident response and digital forensics.

SUPERVISORY RESPONSIBILITY: None

INTERPERSONAL CONTACTS:

The individual communicates both verbally and written with executives, manager, Security team members, company employees, and external customers. Provides regular verbal and written status reports to same group. The position represents the Company through formal and informal interactions with multiple customers, vendors, subcontractors and government agencies.

KNOWLEDGE SKILLS AND ABILITIES:

Ability to multi-task in a fast-paced, diverse environment, while maintaining attention to detail and exhibiting strong leadership

Ability to problem solve, prioritize duties and assignments, and monitor all aspects of an information security program

Experience in working directly with external customers on contractual requirements, program security reviews, and remediation activities when required

Broad knowledge and experience with the various DoD security directives and regulations to include DoD 5200-1R, and other federal regulations pertaining to information security

Experience with RMF, CNSSI 1253, NIST SP 800-53 & 800-171, and National Industrial Security Program

Experience with Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker (SCC)

Applicants selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Some program travel may be required

REQUIREMENTS:

Be a U.S. Citizen

Ability to obtain and maintain a DoD Secret Clearance

Ability to do local travel and out-of-town travel (including air travel) up to 20% of the time with notice

EDUCATION AND/OR EXPERIENCE:

Bachelor's degree from an accredited institution in Computer Science, Information Technology or a related discipline preferred

Minimum five to eight (5-8) year's equivalent information security experience or equivalent experience/specialized training that is commensurate with the assignment.

CERTIFICATES, LICENSES AND REGISTRATIONS:

Security+ or equivalent certification required. (DOD 8570 IAT/IAM lv. 2 qualifying)

Certified Information Systems Security Professionals (CISSP) certification preferred

GSEC - GIAC Security Essentials preferred

CEH - Certified Ethical Hacker preferred

PHYSICAL DEMANDS:

Work is conducted in a dynamic, fast-paced office setting with moderate noise. He/she may be required to work more than 8-hour shifts and weekend work. There may be local travel and out-of-town travel (including air travel) up to 10% of the time with notice. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

WORK ENVIRONMENT:

While in production areas, the individual will be exposed to all weather conditions, noise, dust and odors. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions

MHI Ship Repair & Services offers competitive wages and an excellent benefit package.

Affirmative Action/EOE Employer of protected veterans and individuals with disabilities.

PIecaf897c23a7-7136