IT Security Analyst – NASA Support

Description  

The IT Security Analyst will support various security requirements management and system hardening efforts within private and public cloud infrastructures supporting a group of flight dynamics engineers in the GSFC Flight Dynamics Facility (FDF). The FDF is a NASA Mission Essential Infrastructure facility that provides multi-mission navigation services for a wide range of robotic and human space flight spacecraft missions. 

Reports To 

Sustainment Engineer Project Manager 

Responsibilities  

• Provide technical knowledge and analysis of specialized system security tools and technologies.

• Provide high-level functional systems analysis, design, integration, documentation, and implementation guidance for all security efforts.

• Develop, implement, and manage quality processes and security standards.

• Support VMware Cloud Foundations.

• Directly support all security related system administration activities.

• Participating in system administration activities when required.

• Sharing in an onsite support role as Goddard Space Flight Center supporting critical mission activities including launch, docking, and landing for crewed and uncrewed missions when required.

• Verify system security requirements and establish system security designs when required.

• Maintain and manage all system risks for the sustainment team.

• Must be able to create and maintain RBDs and POA&Ms.

• Enforce STIG hardening using manual and automated tools.

• Produce and maintain FDF security documentation ensuring that they are accurate and current.

Required Skills 

• Must have strong technical skills working with IT systems.

• Must have very strong MS Word and MS Excel experience.

• Must have excellent written and verbal communication skills.

• Must be able to implement security measures to protect systems from unauthorized access, malware, and other threats.

• Must have strong analytical skills.

• Must be able to develop, review, analyze, and maintain security documents and artifacts such as system security plans, SOPs, audit logs, configuration scans, and vulnerability scans to effectively evaluate, implement, and manage system controls.

• Must understand security requirement for Data at Rest (DAR), Data in Transit (DIT), network segmentation, microsegmentation, and MFA.

• Must be able to conduct security related meetings with system stakeholders.

• Must have a general understanding of computer hardware, operating systems (e.g., Windows, Linux), networking protocols, and server administration.

• Must be able to diagnose and resolve security issues efficiently.

• Must be familiar with network devices such as routers, switches, firewalls, and load balancers.

• Must be able to help support end-users, resolving technical issues and ensuring user satisfaction.

• Must have a strong working knowledge of system testing such as security scans and PenTests.

• Familiar with FIPS 140-3, NIST SP 800-53, FIPS 199, and FIPS 200.

• Knowledge of common security related protocols and their design such as SSH, TLS, etc.

• On occasion may be required to be available to provide mission support, such as for launches, which at times may include after hours, overnight, or weekends.

Desired Skills 

• One or more of the following certifications: Security+, CISSP, ISSEP, GIAC, CompTIA A+, CompTIA Server+, GCWN, RHCSA, CISA, etc.

• Experience working at a NASA facility.

• VMWare skills employing tools such as SDDC Manager, NSX, Tanzu, and Aria.

• Familiar with NASA-STD-2601

Required Experience 

• 3 – 4+ years of professional IT experience.

• 1 – 4+ years of Cybersecurity experience.

Required Degree 

Bachelor’s degree in Cybersecurity, Computer Science or related discipline, or equivalent work experience. 

Security Clearance Requirements 

Must be eligible to obtain a DoD Secret Security Clearance. 

As an Equal Employment Opportunity/Affirmative Action employer, Pearl River Technologies LLC provides equal employment opportunity to all employees and applicants without regard to an individual's protected status, including race/ethnicity, color, national origin, ancestry, religion, creed, age, gender, gender identity/expression, sexual orientation, marital status, parental status, including pregnancy, childbirth, or related conditions, disability, military service, veteran status, genetic information, or any other protected status.