About JYG Innovations JYG Innovations (JYG) is a professional solutions and services company focused on providing innovative and exceptional service in the Defense, State/Local and Commercial sectors. With a primary focus on IT Solutions, Cyber Security, Research and Analysis, and Medical/Clinical Staffing, JYG continues to receive exceptional customer satisfaction surveys due to the outstanding technical expertise and performance of its employees and strategic partners.
This role is for a Cyber Security Expert focused on conducting code scans, analyzing security outcomes, and providing actionable feedback to the Information System Security Officer (ISSO) and Information System Security Manager (ISSM). The ideal candidate will have a strong background in cybersecurity analysis, particularly with code scanning tools and compliance frameworks, and will contribute to securing systems through vigilant assessment and remediation.
Job Title: Cyber Security Expert
Location: Remote supporting MGM OPR
Employment Type: Full Time
Targeted Start Date: November 2024
Essential Job Functions and Responsibilities: - Perform code scans using tools such as Checkmarx, ensuring thorough review for vulnerabilities and compliance.
- Analyze scan results, prioritize findings based on risk level, and collaborate findings with the ISSE, ISSM and ISSO.
- Conduct Security Technical Implementation Guide (STIG) reviews and make necessary corrections to ensure compliance with security standards.
- Maintain up-to-date knowledge of STIG guidelines and ensure that system configurations adhere to these standards.
- Apply the NIST 800-37 Risk Management Framework (RMF) to assess, mitigate, and document security risks.
- Collaborate with security stakeholders to ensure that systems align with RMF and other relevant security frameworks.
- Support the Authorization to Operate (ATO) process by identifying, documenting, and mitigating risks in line with organizational security requirements.
- Assist in preparing security documentation for ATO packages, ensuring all security concerns are addressed and documented.
- Leverage strong analytical skills to interpret security findings, evaluate potential impacts, and communicate risks to security leaders.
- Provide clear, actionable insights to improve system security posture and enhance vulnerability management efforts.
- Manage Information Assurance Vulnerability Management (IAVM) notifications and Common Vulnerabilities and Exposures (CVE) assessments.
Requirements: - DoD 8570.01 IAT Level II certification (e.g., Security+ CE, SSCP, GSEC)
- Bachelor's Degree
- At least 6 years work experience directly relating to cybersecurity support
- Must be able to pass a background screening
- Secret Clearance
Highly Desired: - Code Scanning and Security Tools: Proficiency in using Checkmarx for code scanning and vulnerability assessment.
- STIG Knowledge: Strong experience in conducting STIG reviews and implementing necessary corrections.
- Familiarity with the NIST 800-37 RMF and its application in risk assessment and mitigation.
- ATO Process Knowledge: Experience in preparing and supporting the ATO process, with an understanding of security documentation requirements.
- Analytical Skills: Excellent analytical skills for interpreting scan results, evaluating security risks, and providing actionable feedback.
- Background in working with federal or defense security protocols.
- Familiarity with securing cloud environments such as AWS, Azure, or Google Cloud, including knowledge of cloud-native security tools and best practices.
- Familiarity with securing cloud environments such as AWS, Azure, or Google Cloud, including knowledge of cloud-native security tools and best practices.
JYG Innovations is committed to hiring and retaining a diverse workforce. JYG Innovations is an equal opportunity/affirmative action employer and does not discriminate on the basis of race, color, creed, sex, national origin, religion, age, disability, pregnancy or veteran status. We welcome the employment of women, minorities, veterans and individuals with disabilities in our workforce. If you are in need of special assistance, please contact our Human Resources Department. Interested parties may view our Affirmative Action Plan for Veterans and Individuals with Disabilities by contacting the Human Resources Department. JYG Innovations participates in E-Verify.