Edtech.com's Summary

The Pennsylvania State University is hiring a Cyber Information Assurance Analyst to join the Cybersecurity Division at its Applied Research Laboratory (ARL). The role involves managing the unclassified information security program, ensuring compliance with standards like CMMC, conducting risk assessments, developing security policies and documentation, leading incident response actions, and providing cybersecurity recommendations across system, network, and application designs.

Highlights

Manage and maintain information system security plans, authorization packages, and compliance documentation.
Conduct risk assessments throughout information system lifecycles and monitor cybersecurity compliance.
Provide cybersecurity recommendations for system, network, and application designs.
Develop training materials to support compliance and audit requirements for employees.
Assist with vulnerability scanning, security log reviews, network analysis, and incident response.
Require Top-Secret clearance eligibility or higher and experience with CMMC, RMF, NIST/ISO standards, DoD directives, and DISA STIG.
Strong technical skills with Windows and Linux operating systems, and ability to maintain certifications like Security+ or CISSP.
Preferred qualifications include a bachelor's degree in Information Security or related fields and experience with vulnerability tools, networking fundamentals, container security, SEIM tools, and virtual machine management.
Full-time position with salary range from $86,300 to $145,700 and benefits including medical coverage and tuition discounts.
Work involves a hybrid on-site/work-from-home arrangement with periodic travel; position requires U.S. citizenship and clearance eligibility.

Cyber Information Assurance Analyst Full Description

APPLICATION INSTRUCTIONS:

CURRENT PENN STATE EMPLOYEE (faculty, staff, technical service, or student), please login to Workday to complete the internal application process. Please do not apply here, apply internally through Workday.
CURRENT PENN STATE STUDENT (not employed previously at the university) and seeking employment with Penn State, please login to Workday to complete the student application process. Please do not apply here, apply internally through Workday.
If you are NOT a current employee or student, please click "Apply" and complete the application process for external applicants.

Approval of remote and hybrid work is not guaranteed regardless of work location. For additional information on remote work at Penn State, see Notice to Out of State Applicants.

POSITION SPECIFICS

We are searching for an experienced Information Systems Security Manager (ISSM) to join our Cybersecurity Division at the Applied Research Laboratory (ARL) at Penn State. Information Technology Services provides ARL's administrative and research computing environments and capabilities, delivering secure, responsive, efficient, effective, and compliant IT services and operations to meet the demanding needs of ARL's leading edge research.

This position will have a focus on the unclassified space, overseeing and owning the unclassified information security program, including implementing our various compliance requirements like the Cybersecurity Maturity Model Certification (CMMC). This ISSM will however operate within and support both unclassified and collateral spaces, backing up fellow ISSM's and enforcing commonalities between environments where possible. They will be responsible for developing and maintaining policy and security documentation, providing cybersecurity recommendations for system, network, and application design, leading information system risk assessments, assist in leading incident response actions, setting standards for continuous monitoring processes such as auditing or vulnerability assessments, and ensuring cybersecurity requirements are effectively and efficiently communicated to operational and researcher team leadership to ensure integration into their respective team processes.

ARL is an authorized DoD SkillBridge partner and welcomes all transitioning military members to apply.

You will:

Develop, validate, submit, and maintain information system security plans, certification and authorization packages, and plans of action and milestones in support of compliance requirements
Oversee development and implementation of risk assessments against information systems in all phases of their lifecycles
Provide cybersecurity recommendations for system, network, and application design
Monitor and assist in the assessment and review of current and new systems and networks to ensure compliance with current cybersecurity policies, concepts, and measures
Develop training material related to compliance and audit requirements to assist employees in individual compliance/audits as applicable
Assist in technical requirements such as; vulnerability scanning, review of security/event logs, network analysis, and incident response on an as-needed basis

Required skills/experience areas include:

Current eligibility for access to classified information at the Top-Secret level or higher and may be subject to a government background investigation to upgrade clearance eligibility, if required
Assessment and Authorization experience of systems and networks using CMMC and RMF
NIST/ISO standards (eg. NIST SP 800-53 and NIST SP 800-171), Department of Defense directives, DISA STIG, and regulatory requirements
Strong technical background, with significant experience using multiple operating systems to include Windows and Linux
Policy, procedure, plan of action and milestone, risk assessment and security plan development with experience of continuous monitoring for compliance with said documentation
System functions, security policies, technical security safeguards, and operational security measures
The ability to certify and maintain information security related certifications
(eg. Security+, CISSP, and any other required certifications)
Excellent communications, analytical and problem-solving skills
Efficient organizational, multitasking, and time management abilities

Preferred skills/experience areas include:

A Bachelor's degree in Information Security, Information Technology, or Computer Science
Management or leadership experience in IT and information security space
Vulnerability scanning and mitigation utilizing Nessus, Retina, GFI Languard, or similar tool
Experience with networking fundamentals including various concepts, tools, and administrative functions
Working knowledge of container image security and experience overseeing security for containerized environments (docker, podman, etc)
SEIM management or use for analysis, such as Splunk, ELK, or AlienVault
VMWare and management of Virtual Machines
Training material development

Your working location will be located in State College, PA in a hybrid on-site/work from home format. Questions related to flexible work should be directed to the hiring manager during the interview process. This position will require periodic travel to remote locations.

MINIMUM EDUCATION, WORK EXPERIENCE & REQUIRED CERTIFICATIONSIf filled as Cyber Information Assurance Analyst - Principal Professional, this position

requires:Master's Degree8+ years of relevant experience; or an equivalent combination of education and experience acceptedRequired Certifications:NoneIf filled as Cyber Information Assurance Analyst - Senior Professional, this position requires:Bachelor's Degree6+ years of relevant experience; or an equivalent combination of education and experience acceptedRequired Certifications:None

ARL's purpose is to research and develop innovative solutions to challenging scientific, engineering, and technology problems in support of the Navy, the Department of Defense (DoD), and the Intel Community (IC).

FOR FURTHER INFORMATION on ARL, visit our web site at www.arl.psu.edu.

BACKGROUND CHECKS/CLEARANCES
Employment with the University will require successful completion of background check(s) in accordance with University policies.

All positions at ARL require candidates to possess the ability to obtain a government security clearance; you will be notified during the interview process if this position is subject to a government background investigation. You must be a U.S. citizen to apply. Employment with the ARL will require successful completion of a pre-employment drug screen.

SALARY & BENEFITS
The salary range for this position, including all possible grades, is $86,300.00 - $145,700.00.**THE PROPOSED SALARY RANGE MAY BE IMPACTED BY GEOGRAPHIC DIFFERENTIAL**

Salary Structure - Information on Penn State's salary structure

Penn State provides a competitive benefits package for full-time employees designed to support both personal and professional well-being. In addition to comprehensive medical, dental, and vision coverage, employees enjoy robust retirement plans and substantial paid time off which includes holidays, vacation and sick time. One of the standout benefits is the generous 75% tuition discount, available to employees as well as eligible spouses and children. For more detailed information, please visit our Benefits Page.

CAMPUS SECURITY CRIME STATISTICS

Pursuant to the Jeanne Clery Disclosure of Campus Security Policy and Campus Crime Statistics Act and the Pennsylvania Act of 1988, Penn State publishes a combined Annual Security and Annual Fire Safety Report (ASR). The ASR includes crime statistics and institutional policies concerning campus security, such as those concerning alcohol and drug use, crime prevention, the reporting of crimes, sexual assault, and other matters. The ASR is available for review here.

EEO IS THE LAW

Penn State is an equal opportunity employer and is committed to providing employment opportunities to all qualified applicants without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. If you are unable to use our online application process due to an impairment or disability, please contact 814-865-1473.

Federal Contractors Labor Law Poster

PA State Labor Law Poster

Penn State Policies

Hotlines

Original Job Description

APPLICATION INSTRUCTIONS:

CURRENT PENN STATE EMPLOYEE (faculty, staff, technical service, or student), please login to Workday to complete the internal application process. Please do not apply here, apply internally through Workday.
CURRENT PENN STATE STUDENT (not employed previously at the university) and seeking employment with Penn State, please login to Workday to complete the student application process. Please do not apply here, apply internally through Workday.
If you are NOT a current employee or student, please click "Apply" and complete the application process for external applicants.

Approval of remote and hybrid work is not guaranteed regardless of work location. For additional information on remote work at Penn State, see Notice to Out of State Applicants.

POSITION SPECIFICS

ARL is an authorized DoD SkillBridge partner and welcomes all transitioning military members to apply.

You will:

Develop, validate, submit, and maintain information system security plans, certification and authorization packages, and plans of action and milestones in support of compliance requirements
Oversee development and implementation of risk assessments against information systems in all phases of their lifecycles
Provide cybersecurity recommendations for system, network, and application design
Monitor and assist in the assessment and review of current and new systems and networks to ensure compliance with current cybersecurity policies, concepts, and measures
Develop training material related to compliance and audit requirements to assist employees in individual compliance/audits as applicable
Assist in technical requirements such as; vulnerability scanning, review of security/event logs, network analysis, and incident response on an as-needed basis

Required skills/experience areas include:

Current eligibility for access to classified information at the Top-Secret level or higher and may be subject to a government background investigation to upgrade clearance eligibility, if required
Assessment and Authorization experience of systems and networks using CMMC and RMF
NIST/ISO standards (eg. NIST SP 800-53 and NIST SP 800-171), Department of Defense directives, DISA STIG, and regulatory requirements
Strong technical background, with significant experience using multiple operating systems to include Windows and Linux
Policy, procedure, plan of action and milestone, risk assessment and security plan development with experience of continuous monitoring for compliance with said documentation
System functions, security policies, technical security safeguards, and operational security measures
The ability to certify and maintain information security related certifications
(eg. Security+, CISSP, and any other required certifications)
Excellent communications, analytical and problem-solving skills
Efficient organizational, multitasking, and time management abilities

Preferred skills/experience areas include:

A Bachelor's degree in Information Security, Information Technology, or Computer Science
Management or leadership experience in IT and information security space
Vulnerability scanning and mitigation utilizing Nessus, Retina, GFI Languard, or similar tool
Experience with networking fundamentals including various concepts, tools, and administrative functions
Working knowledge of container image security and experience overseeing security for containerized environments (docker, podman, etc)
SEIM management or use for analysis, such as Splunk, ELK, or AlienVault
VMWare and management of Virtual Machines
Training material development

MINIMUM EDUCATION, WORK EXPERIENCE & REQUIRED CERTIFICATIONSIf filled as Cyber Information Assurance Analyst - Principal Professional, this position

FOR FURTHER INFORMATION on ARL, visit our web site at www.arl.psu.edu.

BACKGROUND CHECKS/CLEARANCES
Employment with the University will require successful completion of background check(s) in accordance with University policies.

SALARY & BENEFITS
The salary range for this position, including all possible grades, is $86,300.00 - $145,700.00.**THE PROPOSED SALARY RANGE MAY BE IMPACTED BY GEOGRAPHIC DIFFERENTIAL**

Salary Structure - Information on Penn State's salary structure

CAMPUS SECURITY CRIME STATISTICS

EEO IS THE LAW

Federal Contractors Labor Law Poster

PA State Labor Law Poster

Penn State Policies

Hotlines

Let me find your next job.

Thanks - you're signed up.

Cyber Information Assurance Analyst

Edtech.com's Summary

Cyber Information Assurance Analyst Full Description

APPLICATION INSTRUCTIONS:

Sr Information Security Analyst

Information Security Analyst I

Information Security Engineers

Research Information Security Analyst

Research Information Security Compliance Program Manager