22 Cybersecurity Analysts jobs in Albuquerque

Information Security Analyst I-sr

Location: Albuquerque, NM, United States

Job ID:

Date Posted:Aug 20, 2025

POSTING DEADLINE

This position is posted until filled.

DEPARTMENT

Department: Information Security

PREFERENCES

• 24/7 rotating on call required

• This will be on-site 5x/week

• The following certifications are preferred

• CompTIA Security+ CompTIA CySa+ Certified Ethical Hacker (C|EH)

JOB DESCRIPTION

Information Security Analyst Sr

Salary Grade: G06

Minimum Midpoint Maximum

$78,537 - $06,024 - 133,511

Personnel in this job title may be covered by NERC CIP cyber security standards. If the position is covered, prior to being hired, promoted, or transferred into the position, the candidate must successfully pass a Personnel Risk Assessment, which includes identity verification and a criminal background check. Prior to being granted unescorted access to cyber secure areas, the candidate must attend cyber security training. Annual cyber security training is also required.

SUMMARY:

Acts as an IT security subject matter expert and technical consultant for security initiatives. Functions as technical engineer, system architect and operational support for the Identity Management (IDM) suite of products. Analyzes the security of systems and applications, and develops security baselines to protect information against unauthorized access. Conducts forensic investigations including investigations done in coordination with other departments.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

Assesses, designs, and recommends security access requirements for systems and applications; creates ad hoc reports for review

Collaborates with enterprise architecture on the development of system and application security standards and baselines

Provisions electronic access for supported systems and applications in accordance with the Enterprise Access Provisioning Program

Ensures all access issues are handled in a timely manner and that supported systems are functioning properly

Creates, modifies and deletes profiles and other access controls as part of Role Based Access Control (RBAC) program

Provides routine reaccreditation of existing users and associated entitlements

Produces evidence in support of Company policies and regulatory requirements, such as Sarbanes-Oxley (SOX) and North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP)

Participates in projects as a subject matter expert in support of business initiatives; ensures project work is completed in a timely manner in accordance with Information Security policies, programs and standards; oversees and continuously improves the Enterprise Access Provisioning Program

Performs user access reviews supporting Company investigation needs; assists with data preservation requests for litigation holds; conducts digital forensics in support of the Information Security program

Ensures teamwork to reduce security exposures

COMPETENCIES:

Strong knowledge of Company business practices and familiarity with Company products and services

Strong knowledge of digital forensic steps and incident response

Ability to develop and make recommendations for complex security processes, procedure improvements and management level security standards

Ability to identify best practices for security risk assessments, policies, standards and processes

Extensive policy, process, and standard development experience

Ability to demonstrate leadership skills and provide guidance to less experienced team members

QUALIFICATIONS

MINIMUM EDUCATION AND/OR EXPERIENCE:

Bachelor¿s degree from a four-year college or university in Information Resource Management, Business Computer Systems, Computer Science or Computer Security with five to seven years related experience, or equivalent combination of education and/or experience related to the discipline.

COMMUNICATION SKILLS:

Ability to maintain positive and productive working relationships with various individuals and groups

Ability to recognize and initiate complex tasks without direction

Ability to read and interpret technical manuals and reports, instructional documents, and procedure manuals

Ability to write procedural documentation and user instructions

Ability to speak effectively with various individuals, groups, and vendors

MATHEMATICAL SKILLS:

Ability to calculate figures and amounts such as discounts, interest, commissions, proportions, percentages, area, circumference, and volume

Ability to apply concepts of basic algebra and geometry

COMPUTER SKILLS:

In-depth knowledge and experience with Linux/UNIX servers, client & server applications and information security issues

In-depth knowledge of Microsoft, Linux and UNIX server security functionality

In-depth knowledge of related security software

In-depth knowledge of database product security technology, specifically Oracle and SQL, and general knowledge of physical security methods

ANALYSIS AND PROBLEM-SOLVING ABILITY:

Ability to understand and assimilate complex technical information. Ability to solve partial problems and deal with a variety of concrete variables in situations where only limited standardization exists. Ability to interpret a variety of instructions furnished in written, oral, diagram or schedule form.

DECISION MAKING:

Ability to make access management and provisioning decisions without direction, in accordance with Company policies, procedures and programs. Examines potential areas for service improvement and makes recommendations for changes to senior staff or management.

PHYSICAL DEMANDS:

While performing the duties of this job, the employee is regularly required to sit up to 2/3 of the time and talk and listen for long periods of time.

WORK ENVIRONMENT:

Office environment.

JOB DESCRIPTION

Information Security Analyst

Salary Grade: G07

Minimum Midpoint Maximum

$ 9,581 - 92,194 - 114,808

Personnel in this job title may be covered by NERC CIP cyber security standards. If the position is covered, prior to being hired, promoted, or transferred into the position, the candidate must successfully pass a Personnel Risk Assessment, which includes identity verification and a criminal background check. Prior to being granted unescorted access to cyber secure areas, the candidate must attend cyber security training. Annual cyber security training is also required.

SUMMARY:

Under general supervision, provisions electronic access to systems and applications. Acts as an IT security subject matter expert for supported systems and applications. Responsible for Identity and Access Management (IAM), access management, provisioning and compliance controls relating to managing access based on business need. Analyzes the security of systems and applications, and develops security baselines to protect information against unauthorized access.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

Provisions electronic access for supported systems and applications in accordance with Access Management and Provisioning program

Ensures all access issues are handled in a timely manner and that supported systems are functioning properly

Creates, modifies and deletes profiles and other access controls as part of Role Based Access Control (RBAC) program

Provides routine reaccreditation of existing users and associated entitlements

Produces evidence in support of Company policies and regulatory requirements, such as Sarbanes-Oxley (SOX) and North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP)

Recommends security access requirements for systems and applications; creates ad hoc reports for review

Participates in major projects, as needed, in support of business initiatives; ensures project work is completed in a timely manner in accordance with Information Security policies, programs and standards; contributes and recommends improvements to the Access Management and Provisioning program

Performs user access reviews supporting Company investigation needs; assists with data preservation requests for litigation holds; conducts digital forensics in support of the Security program

COMPETENCIES:

Knowledge of Company business practices and familiarity with Company products and services

Ability to develop and make recommendations for security processes, procedure improvements and management level security standards

Ability to identify best practices for security risk assessments, policies, standards and processes

Policy, process, and standard development experience

QUALIFICATIONS

MINIMUM EDUCATION AND/OR EXPERIENCE:

Bachelor¿s degree from a four-year college or university in Information Resource Management, Business Computer Systems, Computer Science or Computer Security with three to five years related experience, or equivalent combination of education and/or experience related to the discipline.

COMMUNICATION SKILLS:

Ability to maintain positive and productive working relationships with various individuals and groups

Ability to recognize and initiate tasks without direction

Ability to read and interpret technical manuals and reports, instructional documents, and procedure manuals

Ability to write procedural documentation and user instructions

Ability to speak effectively with various individuals, groups, and vendors

MATHEMATICAL SKILLS:

Ability to calculate figures and amounts such as discounts, interest, commissions, proportions, percentages, area, circumference, and volume

Ability to apply concepts of basic algebra and geometry

COMPUTER SKILLS:

To perform this job successfully, an individual should have in-depth knowledge and experience with IBM/UNIX servers, client/server applications and information security issues

In-depth knowledge of Microsoft, IBM and UNIX server security functionality

Working knowledge of related security software

Working knowledge of database product security technology, specifically Oracle, SQL and DB2 and general knowledge of physical security methods for securing automated systems and network components

ANALYSIS AND PROBLEM-SOLVING ABILITY:

Ability to understand and assimilate complex technical information. Ability to solve partial problems and deal with a variety of concrete variables in situations where only limited standardization exists. Ability to interpret a variety of instructions furnished in written, oral, diagram or schedule form.

DECISION MAKING:

Ability to make access management and provisioning decisions without direction, in accordance with Company policies, procedures and programs. Examines potential areas for service improvement and makes recommendations for changes to senior staff or management.

PHYSICAL DEMANDS:

While performing the duties of this job, the employee is regularly required to sit up to 2/3 of the time and talk and listen for long periods of time.

WORK ENVIRONMENT:

Office environment.

SAFETY AND ADA STATEMENT

Safety Statement:

Safety is a core value at (TXNM Energy/PNM/TNMP) and our vision, "everyone goes home safe", reflects our commitment to promoting an environment conducive to learning, improving and building safety practices. Our safety value is built upon the belief that every employee deserves to work in an environment free from harm.

Americans with Disabilities Act (ADA) Statement:

If you require assistance with the job application process due to a disability, please contact HR ADA Analyst, at .

Information Security Governance-Risk-Compliance Analyst

Presbyterian is seeking an Information Security Governance-Risk-Compliance Analyst! The Information Security Governance-Risk-Compliance Analyst is responsible for the oversight and coordination of various cybersecurity risk management activities focused on identifying, assessing, managing, and mitigating risks. Subject matter expert experienced in regulatory requirements, security framework standards, security operations and controls, and industry best practices. The role works closely with Compliance, Internal Audit, and other Departmental Leaders in the coordination of planning, prioritization, tracking, and remediation of cyber risks, assessment and audit findings, supply chain risk, and operational risk. Works closely with technology and security leaders and subject matter experts to coordinate, review, and catalogue responses. Coordinates with Compliance and Internal Audit to further the planning, response, and cataloguing of assessment and audit activities related to both Information Security and Information Technology. Supports the operationalization of the GRC management functions to ensure compliance with established security controls, industry frameworks, regulatory and legal requirements, organizational policies, and standards. Collaborates with the GRC Director and CISO on the risk management program, including risk assessments, risk analysis, internal and external audits, vendor security risk program and risk register management. Other key activities will include reviewing existing security policies, assessing that procedures are implemented in accordance with security policies and standards, and that security metrics are being measured.

We're determined to take care of those working in healthcare.

Presbyterian is dedicated to improving people's lives - the lives of our patients and the lives of our coworkers. We're locally owned and operated, which encourages supportive leadership that empowers employees. And we provide the opportunity to grow from entry-level to the most senior positions.

Why Join Us

• Full Time - Exempt: Yes
• Job is based at Rev Hugh Cooper Admin Center
• Work hours: Weekday Schedule Monday-Friday
• Benefits: We offer a wide range of benefits including medical, wellness program, vision, dental, paid time off, retirement and more for FT employees.

Qualifications

• Bachelors degree in Information Security, Computer Science, Information Management Systems, or related field desired; or six years of relevant experience may be substituted in lieu of degree. An advanced degree is strongly preferred.
• Three years of experience in Information Security Risk Management or in Information Technology/Information Security Audit required.
• Five years of experience in a large (over 2,000 end users) Healthcare IT Enterprise preferred.
• Seven years of experience in a combination of IT Governance, Risk Management, Compliance, and Information security roles preferred.
• Professional certifications such as Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) or Certified Risk & Information Security Controls (CRISC) required or willing to obtain within the first year of employment.
• Expert working knowledge from within an information security function using ISO 27000, NIST CSF, NIST RMF, or NIST 800-53, HIPAA, or HITRUST Common Security Framework.
• Experience supporting SSAE 16 or SOC 2
• Detailed understanding and extensive experience with information security regulations, including at a minimum National Institute of Standards and Technology (NIST), Health Insurance Portability Accountability Act (HIPAA), Payment Card Industry (PCI), ISO 27001 and ISO 27018, Sarbanes-Oxley (SOX), Cloud Security Alliance (CSA) and various other laws and regulations including Executive Orders.
• Significant experience performing Information Security Risk Management, Third-Party Risk Management, and audits and assessments in large, complex organizations.
• Significant experience in end-to-end IT and Security Risk Management.
• Significant experience with technical risk remediation identification and planning.
• Significant experience with corrective action and remediation engagement and planning.
• Models high standards of integrity, performance, confidentiality, and demonstrates sound judgement.
• Incorporates Presbyterian Health Services values into the ITGRC compliance and audit program.

Credentials:Essential:* Certified Information Systems Security Professional* Certified in Risk and Information Systems Control* Certified Information Systems Auditor

Responsibilities

• Provide expert knowledge in information security standards and practices and with related federal, state, and local regulatory requirements.
• Identify and assess the severity and potential impact of risks identified within audits and assessments. Educate risk owners within Information Technology and Information Security about risk assessment findings and proper risk remediation.
• Support the implementation of PHS and PHP information governance, risk, and compliance processes.
• Assess processes, practices, and controls against PHS Information Technology and Information Security policies, procedures, and standards.
• Coordinate, catalogue, and communicate internal and external risks and findings to the Director, ITGRC.
• Develop and maintain risk exception and acceptance processes, corrective action plans and mitigation strategies for cyber risks, assessment and audit findings, supply chain risks, and operational risks and recommendations. Corrective action plans are continually updated, and progress is documented for each open item.

Benefits

All benefits-eligible Presbyterian employees receive a comprehensive benefits package that includes medical, dental, vision, short-term and long-term disability, group term life insurance and other optional voluntary benefits.

Wellness Presbyterian's Employee Wellness rewards program is designed to provide you with engaging opportunities to enhance your health and activate your well-being. Earn gift cards and more by taking an active role in our personal well-being by participating in wellness activities like wellness challenges, webinar, preventive screening and more.

Why work at Presbyterian? As an organization, we are committed to improving the health of our communities. From hosting growers' markets to partnering with local communities, Presbyterian is taking active steps to improve the health of New Mexicans.

About Presbyterian Healthcare Services Presbyterian exists to ensure the patients, members and communities we serve can achieve their best health. We are a locally owned, not-for-profit healthcare system of nine hospitals, a statewide health plan and a growing multi-specialty medical group. Founded in New Mexico in 1908, we are the state's largest private employer with nearly 14,000 employees.

Our health plan serves more than 580,000 members statewide and offers Medicare Advantage, Medicaid (Centennial Care) and Commercial health plans.

AA/EOE/VET/DISABLED. PHS is a drug-free and tobacco-free employer with smoke free campuses.

Maximum Offer for this position is up to

USD $71.81/Hr.

Compensation Disclaimer

The compensation range for this role takes into account a wide range of factors, including but not limited to experience and training, internal equity, and other business and organizational needs.

Information System Security Engineer

In support of the U.S. Department of Defense (DoD) and under direction from the Space Rapid Capabilities Office (SpRCO), your primary focus will be designing, implementing, and managing security measures to protect an organization's information systems by identifying vulnerabilities, assessing risks, developing security solutions, and ensuring compliance with industry standards and regulations.

Responsibilities:

• Perform and/or review technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Cyber (e.g. Information Assurance (IA)) standards and regulations and recommend mitigation strategies.
• Provide senior-level security assessment and authorization (A&A) consulting related to the maintenance, upgrade, and technology insertion for a DoD-approved classified network with multiple sites. Specifically, maintain, update, and create new policies/procedures/SOPs and ensure the A&A process utilizing the Risk Management Framework (RMF) within XACTA, eMASS, or other assessment tools, as applicable.
• Assist architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions. Enforce the design and implementation of trusted relations among external systems and architectures.
• Develop new accreditation approaches to support the rapid deployment of unaccredited applications by supervising the development process (inside development enclaves), the risk assessment process, and the deployment process of these custom-developed applications.
• Support security authorization activities in compliance with DoD Risk Management Framework (RMF), the NIST Risk Management Framework (RMF) process, and prescribed customer business processes for security engineering.
• Design, develop, implement, and/or integrate Cyber and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements.
• Assess and mitigate system security threats/risks throughout the program life cycle. Contribute to the security planning, assessment, risk analysis, risk management, certification, and awareness activities for system and networking operations.

Qualifications:

• Bachelor's degree in computer science, information technology, cybersecurity, or a similar discipline.
• Minimum of ten years experience.
• DoD TS/SCI clearance.
• Experience in understanding computer architecture, computer networking, and fundamentals of computer and network security.
• Experience in information security, networking, server administration, and project management.
• The ability to clearly and proactively communicate current or future issues and use a communications plan to mitigate risk.

• Masters Degree in computer science, information technology, cybersecurity, or a similar discipline.
• Prior experience working for SpRCO and/or the DoD.
• Knowledge and experience with the DoD strategic communications systems.
• Certifications from credible institutions that demonstrate a master understanding of architecture, computer networking, and fundamentals of computer and network security.

This position is in support of future opportunities. As we get closer to filling this position, we will be contacting qualified candidates. If you are selected to interview, you will be contacted directly by a recruiter.

What You Can Expect:

A culture of integrity. At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation.

An environment of trust. CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth. Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy.

Your potential is limitless. So is ours. Learn more about CACI here.

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits, and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here. The proposed salary range for this position is: $99,800 - $219,600.

CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.

Information Systems Security Officer

As required by our governmental client, this position requires being a US Citizen AND an active DoE Q or Top-Secret clearance to be considered.

We are seeking a highly skilled and motivated Information Systems Security Officer (ISSO) to support the Department of Energy (DOE) and National Nuclear Security Administration (NNSA) cybersecurity initiatives. The ISSO will ensure compliance with cybersecurity policies, conduct risk assessments, and manage security processes for designated information systems.

Compensation & Benefits:

Estimated Starting Salary Range for Information Systems Security Officer : $120,000 to $150,000

Pay commensurate with experience.

Full time benefits include Medical, Dental, Vision, 401K, and other possible benefits as provided. Benefits are subject to change with or without notice.

Information Systems Security Officer Responsibilities Include:

• Ensure the implementation of DOE and NNSA cybersecurity policies and procedures.
• Conduct Assessment and Authorization (A&A) activities for designated systems.
• Document protection measures within system security plans.
• Provision and manage appropriate access controls for system users.
• Identify, assess, and document threats and risks to information systems.
• Capture and maintain system security artifacts.
• Perform cybersecurity tests and assessments, providing results to the ISSM.
• Evaluate the security impact of system changes and recommend implementation strategies.
• Identify cybersecurity training needs based on job roles and responsibilities.
• Conduct information system risk assessments.
• Respond to and report incidents related to assigned systems.
• Develop and maintain disaster recovery and incident response plans.
• Support the ISSM's Cybersecurity Program by creating and improving security processes.
• Performs other job-related duties as assigned

Information Systems Security Officer Experience, Education, Skills, Abilities requested:

• Bachelor's degree in a related field or four (4) years of IT experience in lieu of a degree.
• Five (5) years of IT work experience, preferably in cybersecurity.
• Experience in information security roles (e.g., FISMA, FedRAMP, DoDI 8500.2, HIPAA, PCI compliance).
• DoD 8570 IAT Level II or III (CISSP preferred) certification or ability to obtain within six months.
• Experience with NIST SP 800-53, Risk Management Framework (RMF), and security assessment tools.
• Proficiency with operating systems, virtualization, and networking technologies.
• Strong knowledge of information security principles and best practices.
• Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint, Outlook, SharePoint).
• Strong attention to detail, organizational, and time management skills.
• Effective communication and presentation skills.
• Ability to work independently and collaborate effectively within teams.
• Must pass pre-employment qualifications of Cherokee Federal

Company Information:

Criterion is a part of Cherokee Federal - the division of tribally owned federal contracting companies owned by Cherokee Nation Businesses. As a trusted partner for more than 60 federal clients, Cherokee Federal LLCs are focused on building a brighter future, solving complex challenges, and serving the government's mission with compassion and heart. To learn more about Criterion , visit cherokee-federal.com.

#CherokeeFederal #LI

#LI-RA1

Cherokee Federal is a military friendly employer. Veterans and active military transitioning to civilian status are encouraged to apply.

Similar searchable job titles:

• Cybersecurity Analyst

• Information Assurance Specialist

• Security Compliance Officer

• Risk Management Framework (RMF) Specialist

• IT Security Specialist

Keywords:

• Cybersecurity

• Risk Management

• Compliance

• Information Assurance

• Incident Response

Legal Disclaimer: Cherokee Federal is an equal opportunity employer. Please visit cherokee-federal.com/careers for information regarding our Affirmative Action and Equal Opportunity Employer Statement, and Accommodation request.

Many of our job openings require access to government buildings or military installations. Candidates must pass pre-employment qualifications of Cherokee Federal.

Information System Security Officer

Job Category: Security

Time Type: Full time

Minimum Clearance Required to Start: TS/SCI

Employee Type: Regular

Percentage of Travel Required: None

Type of Travel: None

The Opportunity:

In support of the U.S. Department of Defense (DoD) and under direction from the Space Rapid Capabilities Office (SpRCO), your primary focus will be to ensure the security of the department's information systems by conducting risk assessments, implementing security controls, monitoring for threats, and maintaining compliance with relevant security regulations.

Responsibilities:

This position is considered a mission-critical role. As an Information Systems Security Officer (ISSO) supporting SpRCO, you will:

• Design and implement safety measures and controls. Monitor network activity to identify vulnerable points. Address privacy breaches and malware threats

• Support the Assessment and Authorization (A&A) processes and Information Assurance documentation for multiple analytic and mission systems across all CLINs

• Analyze existing security systems and make recommendations for changes or improvements. Interface with software developers and architects to understand security requirements, change request and certificate of field process. Develop action plans and reports in the event of a security violation.

• Plan risk management assessments utilizing DoD Enterprise Mission Assurance System (eMASS), XACTA, or other assessment management tools, as required

• Monitor the network and provide early warning of abnormalities or problems. Communicate the system status and keep users informed of downtime or changes to the system

• Support the Continuous Monitoring of operational systems by monitoring and auditing operational systems for proper use utilizing Event Viewer, Splunk, and/or alternative SIEM auditing tools per Authorizing Official risk acceptance

• Create and manage the plan of action and milestones (POA&Ms), and working with project managers and engineers to develop schedules and engineering actions that mitigate open findings

• Generate and maintain the complete security Body of Evidence (BoE) while balancing the A&A activities according to the Risk Management Framework (RMF) processes (ICD 503, CNSSI-1253, NIST 800-37, NIST 800-53, etc.) for all multiple information systems

Qualifications:

Required:

• Bachelor's degree in computer science, information technology, cybersecurity, or a similar discipline.

• Minimum of seven years experience.

• DoD TS/SCI clearance.

• Experience in information security, risk management, or network administration.

• Experience in developing information security policies, risk management, and compliance.

• Experience managing a team of information technology professionals.

• A strong ability to clearly and proactively communicate to necessary stakeholders.

Desired:

• Masters Degree in computer science, information technology, cybersecurity, or a similar discipline.

• Prior experience working for SpRCO and/or the DoD.

• Knowledge and experience with the DoD strategic communications systems

• Experience establishing and adhering to risk management, incident response, remediation, and reporting plans

**This position is in support of future opportunities. As we get closer to filling this position, we will be contacting qualified candidates. If you are selected to interview, you will be contacted directly by a recruiter.

___

What You Can Expect:

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation.

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy.

Your potential is limitless. So is ours.

Learn more about CACI here. (

___

Pay Range : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here ( .

The proposed salary range for this position is:

$85,800 - $180,200

CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.

Information System Security Engineer
Job Category: Security
Time Type: Full time
Minimum Clearance Required to Start: TS/SCI
Employee Type: Regular
Percentage of Travel Required: None
Type of Travel: None
* * *
**The Opportunity:**
In support of the U.S. Department of Defense (DoD) and under direction from the Space Rapid Capabilities Office (SpRCO), your primary focus will be designing, implementing, and managing security measures to protect an organization's information systems by identifying vulnerabilities, assessing risks, developing security solutions, and ensuring compliance with industry standards and regulations.
**Responsibilities:**
This position is considered a mission-critical role. As an Information Systems Security Engineer (ISSE) supporting SpRCO, you will:
+ Perform and/or review technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Cyber (e.g. Information Assurance (IA)) standards and regulations and recommend mitigation strategies.
+ Provide senior-level security assessment and authorization (A&A) consulting related to the maintenance, upgrade, and technology insertion for a DoD- approved classified network with multiple sites. Specifically, maintain, update, and create new policies/procedures/SOPs and ensure the A&A process utilizing the Risk Management Framework (RMF) within XACTA, eMASS, or other assessment tools, as applicable.
+ Assist architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions. Enforce the design and implementation of trusted relations among external systems and architectures.
+ Develop new accreditation approaches to support the rapid deployment of unaccredited applications by supervising the development process (inside development enclaves), the risk assessment process, and the deployment process of these custom-developed applications.
+ Support security authorization activities in compliance DoD Risk Management Framework (RMF), the NIST Risk Management Framework (RMF) process, and prescribed customer business processes for security engineering.
+ Design, develop, implement, and/or integrate Cyber and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements.
+ Assess and mitigate system security threats/risks throughout the program life cycle. Contribute to the security planning, assessment, risk analysis, risk management, certification, and awareness activities for system and networking operations
**Qualifications:**
_Required:_
+ Bachelor's degree in computer science, information technology, cybersecurity, or a similar discipline.
+ Minimum of ten years experience.
+ DoD TS/SCI clearance.
+ Experience in understanding computer architecture, computer networking, and fundamentals of computer and network security.
+ Experience in information security, networking, server administration, and project management
+ The ability to clearly and proactive communicate current or future issues and use a communications plan to mitigate risk.
_Desired:_
+ Masters Degree in computer science, information technology, cybersecurity, or a similar discipline.
+ Prior experience working for SpRCO and/or the DoD.
+ Knowledge and experience with the DoD strategic communications systems
+ Certifications from credible institutions that demonstrate a master understanding of architecture, computer networking, and fundamentals of computer and network security.
_**This position is in support of future opportunities. As we get closer to filling this position, we will be contacting qualified candidates. If you are selected to interview, you will be contacted directly by a recruiter._
#LI-TF1
-
**___**
**What You Can Expect:**
**A culture of integrity.**
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation.
**An environment of trust.**
CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
**A focus on continuous growth.**
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy.
**Your potential is limitless.** So is ours.
Learn more about CACI here. ( Range** : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here ( .
The proposed salary range for this position is:
$99,800 - $219,600
_CACI is_ _an Equal Opportunity Employer._ _All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any_ _other protected characteristic._

Information System Security Officer
Job Category: Security
Time Type: Full time
Minimum Clearance Required to Start: TS/SCI
Employee Type: Regular
Percentage of Travel Required: None
Type of Travel: None
* * *
**The Opportunity:**
In support of the U.S. Department of Defense (DoD) and under direction from the Space Rapid Capabilities Office (SpRCO), your primary focus will be to ensure the security of the department's information systems by conducting risk assessments, implementing security controls, monitoring for threats, and maintaining compliance with relevant security regulations.
**Responsibilities:**
This position is considered a mission-critical role. As an Information Systems Security Officer (ISSO) supporting SpRCO, you will:
+ Design and implement safety measures and controls. Monitor network activity to identify vulnerable points. Address privacy breaches and malware threats
+ Support the Assessment and Authorization (A&A) processes and Information Assurance documentation for multiple analytic and mission systems across all CLINs
+ Analyze existing security systems and make recommendations for changes or improvements. Interface with software developers and architects to understand security requirements, change request and certificate of field process. Develop action plans and reports in the event of a security violation.
+ Plan risk management assessments utilizing DoD Enterprise Mission Assurance System (eMASS), XACTA, or other assessment management tools, as required
+ Monitor the network and provide early warning of abnormalities or problems. Communicate the system status and keep users informed of downtime or changes to the system
+ Support the Continuous Monitoring of operational systems by monitoring and auditing operational systems for proper use utilizing Event Viewer, Splunk, and/or alternative SIEM auditing tools per Authorizing Official risk acceptance
+ Create and manage the plan of action and milestones (POA&Ms), and working with project managers and engineers to develop schedules and engineering actions that mitigate open findings
+ Generate and maintain the complete security Body of Evidence (BoE) while balancing the A&A activities according to the Risk Management Framework (RMF) processes (ICD 503, CNSSI-1253, NIST 800-37, NIST 800-53, etc.) for all multiple information systems
**Qualifications:**
_Required:_
+ Bachelor's degree in computer science, information technology, cybersecurity, or a similar discipline.
+ Minimum of seven years experience.
+ DoD TS/SCI clearance.
+ Experience in information security, risk management, or network administration.
+ Experience in developing information security policies, risk management, and compliance.
+ Experience managing a team of information technology professionals.
+ A strong ability to clearly and proactively communicate to necessary stakeholders.
_Desired:_
+ Masters Degree in computer science, information technology, cybersecurity, or a similar discipline.
+ Prior experience working for SpRCO and/or the DoD.
+ Knowledge and experience with the DoD strategic communications systems
+ Experience establishing and adhering to risk management, incident response, remediation, and reporting plans
_**This position is in support of future opportunities. As we get closer to filling this position, we will be contacting qualified candidates. If you are selected to interview, you will be contacted directly by a recruiter._
-
**___**
**What You Can Expect:**
**A culture of integrity.**
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation.
**An environment of trust.**
CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
**A focus on continuous growth.**
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy.
**Your potential is limitless.** So is ours.
Learn more about CACI here. ( Range** : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here ( .
The proposed salary range for this position is:
$85,800 - $180,200
_CACI is_ _an Equal Opportunity Employer._ _All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any_ _other protected characteristic._

Information System Security Officer
Job Category: Security
Time Type: Full time
Minimum Clearance Required to Start: Secret
Employee Type: Regular
Percentage of Travel Required: Up to 10%
Type of Travel: Outside Continental US
* * *
**The Opportunity:**
Join our team in support of the Joint Navigation Warfare Center (JNWC) contract and contribute to empowering the Department of Defense's navigation warfare (NAVWAR) mission. Your role will ensure positioning, navigation, and timing superiority by providing combatant commanders and joint force commanders with subject matter expertise on planning and conducting NAVWAR. You will offer knowledge of friendly and enemy NAVWAR Order of Battle and PNT-related successes and threats.
**Responsibilities:**
+ Perform all Information System Security Officer (ISSO) duties and responsibilities in accordance with DODI , DODI , U.S. Air Force, and Space Force Policy.
+ Ensure the appropriate operational security posture is maintained for the information system (IS) across multiple security domains and classifications to meet Intelligence Community (IC), DoD, and Air Force/Space Force cybersecurity/information assurance regulations and policies.
+ Develop, review, evaluate, and verify self-testing results to validate enclave security requirements in accordance with applicable IC, DoD, and Army cybersecurity and Information Assurance (IA) regulations, policies, and organizational security policies.
+ Perform validation steps, comparing actual and expected results and analyzing differences to identify impact and risks, resolving issues before formal Security Test events or Site-Based Security Assessments (SBSA).
+ Ensure Army IS cybersecurity-related documentation is current and accessible to properly authorized individuals.
+ Prepare, distribute, and maintain plans, instructions, and Standard Operating Procedures (SOPs) concerning system security.
+ Prepare and maintain Risk Management Framework (RMF) system accreditation Body of Evidence (BOE) packages using eMASS, XACTA, or other approved A&A tools, including System Security Plans, Risk Assessment Reports, System Requirements Traceability Matrices (SCTM), and other documentation as required by ICD 503, NIST 800-53, CNSSI 1254, or the Authorizing Official (AO).
+ The position may require CONUS/OCONUS travel and shift work supporting operations, exercises, and conferences.
**Qualifications:**
_Required:_
+ An active DoD Interim Secret clearance with the ability to obtain a TS/SCI.
+ 10 years of relevant Information Security experience.
+ Prior experience with DoD Information Assurance (IA) regulations, policies, and procedures.
+ BA/BS in Computer Science, Computer Programming, Computer Engineering, or a related field.
+ Information Assurance Manager (IAM) Level III Certified.
+ Certified Information Systems Security Professional (CISSP) ISC2 or equivalent certification.
-
**___**
**What You Can Expect:**
**A culture of integrity.**
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation.
**An environment of trust.**
CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
**A focus on continuous growth.**
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy.
**Your potential is limitless.** So is ours.
Learn more about CACI here. ( Range** : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here ( .
The proposed salary range for this position is:
$85,800 - $180,200
_CACI is_ _an Equal Opportunity Employer._ _All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any_ _other protected characteristic._

General Atomics (GA), and its affiliated companies, is one of the world's leading resources for high-technology systems development ranging from the nuclear fuel cycle to remotely piloted aircraft, airborne sensors, and advanced electric, electronic, wireless and laser technologies.
We currently have an exciting opportunity for an ISSO to join our Security Classified Team. This position is located in Albuquerque, NM.
**DUTIES AND RESPONSIBILITIES:**
+ Conducts ongoing vulnerability assessments and security audits to identify cybersecurity risks in accordance with Department of Defense (DoD), Department of Energy (DOE), and Intelligence Community (IC) standards, regulations, and cybersecurity policies/procedures.
+ Drives improvements necessary to mitigate those risks.
+ Implement cybersecurity requirements for local area networks (LANs), wide area networks (WANs), routers, firewalls, and related network devices which typically requires experience with Cisco IOS.
+ Builds and implements workstations and servers running multiple operating systems such as Windows 11, Windows Server, and RedHat Linux.
+ Builds and implements virtualization infrastructure using tools such as VMware or HyperV.
+ Monitors multiple company information systems for indicators of compromise (IoC) to identify insider threats and potential espionage activity.
+ Performs technical analysis of vulnerabilities and leads in the development of vulnerability corrective action plans.
+ Conducts a regular review of network, application and operation system security documents and procedures.
+ Reviews results of vulnerability assessments and code reviews and informs management of vulnerabilities, risk and mitigation.
+ Proven ability to leverage technical expertise in the following:
+ Splunk Enterprise, installation and management.
+ Nessus Vulnerability Assessment, installation, and management.
+ Security Technical Implementation Guide (STIGs) to identify, analyze, and remediate security threats.
+ Network and System Administration.
+ Windows Backup procedures and management.
+ Implementing secure configurations based on NIST (800-53, 800-171) with Continuous Monitoring (CONMON) principles.
+ Knowledge of Risk Management Framework (RMF) is a plus.
Technical Skills:
+ Splunk Enterprise
+ Nessus Vulnerability Assessment
+ Security Content Automation Protocol (SCAP)
+ Security Technical Implementation Guide (STIG) and STIG Viewer
+ Network and System Administration
+ Active Directory Management
+ Windows Backup
Experiences:
+ Implemented Splunk Enterprise for real-time security monitoring and incident response, leading to a quantifiable improvement to threat detection and response.
+ Utilized Nessus Vulnerability Assessment to identify and prioritize security vulnerabilities within the network infrastructure, resulting in overall security posture.
+ Leverage Assured Compliance Assessment Solution (ACAS) to automate security data ingestion and processing, streamlining operations and improving efficiency.
+ Ensured system security by adhering to STIGs and utilizing STIG viewer to maintain configuration compliance with industry best practices.
+ Supported network and system administration tasks, including user management, access control, and system maintenance.
+ Performed regular Windows Backups to ensure data availability in the event of a system failure or security incident.
+ Demonstrated understanding of NIST security frameworks (800-53, 800-171, other special publication guides).
+ Applying CONMON principles for continuous monitoring and risk mitigation.
We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply.
50227
**Job Qualifications:**
+ Typically requires a bachelors degree in a related discipline and six or more years of progressive professional experience in information assurance or a related field. Equivalent professional experience may be substituted in lieu of education.
+ Must possess an active Top Secret (with SAP & SCI eligibility).
+ Must maintain DoD 8570 IAM Level I (e.g. Security +) professional certification as required by customers or contractual obligations.
+ Security + certification required.
+ Experience with DoD policy such as Risk Management Framework and Joint SAP Implementation Guide.
+ Operational experience with installing, troubleshooting, and auditing Windows desktop & server operating systems.
+ Experience with DISA STIGs, SCAP tool, ACAS.
+ Experience installing and troubleshooting common x86-based computer hardware.
+ Must demonstrate a general understanding of information assurance principles, theories, concepts and techniques. Must have experience organizing, planning, scheduling, conducting, and coordinating work assignments to meet project milestones or established completion dates.
+ Must possess the ability to understand new concepts quickly and apply them in an evolving environment while contributing to the development of new processes.
Must be customer focused and possess:
+ The ability to identify issues, analyze data and develop solutions to a variety of problems.
+ Good analytical, verbal and written communication skills to accurately document, report, and present findings.
+ Good interpersonal skills enabling an effective interface with other professionals; and good computer skills.
+ Ability to work independently or in a team environment is essential as is the ability to work extended hours as required.
Soft Skills:
+ Problem-Solving
+ Analytical thinking
+ Attention to detail.
+ Adaptability
+ Communication
+ Teamwork
**Salary:** $81,600 - $141,533 **Travel Percentage Required** 0 - 25 **Relocation Assistance Provided** Not Provided **US Citizenship Required?** Yes **Clearance Required?** Yes **Clearance Level** Mid-Level (3-7 years) **Workstyle** Onsite
General Atomics is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity/Affirmative Action Employer and will consider all qualified applicants for employment without regard to race, color, religion, religious creed, ancestry, gender, pregnancy, sex, sexual orientation, transitioning status, gender identity, gender expression, national origin, age, genetic information, military and veteran status, marital status, medical condition, mental disability, physical disability, or any other basis protected by local, state, or federal law. EEO is the law. We also prohibit compensation discrimination under all applicable laws. To learn more visit Notices.pdf. U.S. Citizenship is required for certain positions.