Operations Analyst

Currently, we are seeking a dynamic and innovative Operations Analyst (Mid-Level) to join our Team in Reston, VA to provide unparalleled support to multiple federal Agencies through the Continuous Diagnostic & Mitigation (CDM) Program. The CDM Program is a high-profile, high-visibility, cybersecurity modernization and risk management program where you can contribute innovative solutions and consult with many different federal Agencies to enhance their Information Assurance (IA) programs and continuous monitoring capabilities.

Responsibilities include, but are not limited to:

• Installing, configuring, and supporting COTS cybersecurity solutions within complex government Agency operational and security environments, acting as the primary point of contact for support and integration-related Operations and security management issues
• Support the on-going operation and maintenance of a dashboard monitoring environment. The dashboard involves representing data gathered from hardware and software asset management, vulnerability management, configuration management, and privileged account and IDAM security solutions across various Federal Government Agencies.
• Coordinates with both ManTech and Subcontractor resources spanning a range of disciplines from systems administration, systems engineering and IT Operations for testing and quality assurance
• Coordinates and supports the transition of new capabilities to Operations in accordance with the DHS SELC lifecycle, Agile SAFe methodology and in coordination with ManTech software testing
• Closely coordinates with Engineering to generate root cause analyses (RCA's), updating tickets, and resolving problems and incidents
• Creates, updates, peer-reviews and implements Standard Operating Procedures (SOPs) for Operations and Maintenance support
• Recommends, creates, and follows documented methods and practices to deliver effective, efficient, and professional Operations support
• Prioritizes troubleshooting activities requested by Tier II staff, to include rapid installation and configuration of test systems to model customer environments
• Maintains the confidentiality, integrity, and availability of data across physical and logical solution boundaries in multi-Agency environments
• Participates in regular reviews with the Engineering Team and Test Team
• Coordinate with Agency's local Engineering resources and OEMs for patching, upgrading or renewing tool and sensor software and hardware
• Identifies areas for improvement and optimization within existing data interfaces and transport mechanisms as part of continuous process improvement initiatives
• Ability to follow Procedures, Processes, and Escalation gates
• Monitor Configuration Management changes and assess the impact of changes, modifications and vulnerabilities for each system involved
• Ensure that system security requirements are addressed throughout the Project and system lifecycle
• Ensure effective controls, countermeasures, processes are in place and optimized to maintain a strong Organizational and system security posture.
• Understand and monitor Operations processes, including but not limited to, the Business Continuity Planning, Incident Response Planning, and Communications Channel Process, to ensure that they are followed properly at Agencies for applicable CDM Solutions and Tools
• Provide prompt feedback to CDM Project Management, Engineering and Operations personnel
• Provide ongoing information dissemination for security protocols and procedures
• Participate in technical discussions to elicit and communicate technical resource requirements
• Plan, perform and verify the implementation of updates, patches, and routine maintenance to the Test Lab and Agency Dashboard instance(s)
• Identify gaps and bottlenecks in the presentation and reporting of data within and to the dashboard, including issues related to performance, capacity, interoperability, scalability, and manageability
• Prioritize and perform advanced troubleshooting activities, including rapid installation and configuration of test systems.

Basic Qualifications:

• Bachelor's Degree preferred with 2 to 4 years' experience in Information Technology/Information Security, or the equivalent combination of Education and Experience
• 1 to 3 years of experience working within a virtualized server and application environment, such as VMware, Hyper-V, Citrix, AWS, or similar.
  • Designing and implementing virtual desktop infrastructure (VDI) and enabling template management.
  • Installing operating systems and service packs, as well as security patches and bug fixes. Troubleshooting and resolving VMware environment issues. Providing technical support and documenting VMware processes.
  • Installing or upgrading Windows systems and servers. Providing technical support for staff and back-end system users
• 1 to 2 years of demonstrated basic proficiency with PowerShell scripting.
  • PowerShell scripting basic examples: adding and removing new users, adding network drives, updating security software, and granting new user access(es) to shared files.
• 1 to 2 years of experience with the Linux OS [graphical user interface (GUI) and command line interface (CLI)], preferably experience with Red Hat v8.0.
  • Installation and basic host configuration of Linux systems and servers
• Basic host configuration parameters include: IP address assignment, hostname assignment, domain assignment, LDAP integration and network connectivity testing/verification.
• Provide fundamental technical support and guidance for Linux system maintenance, to include: Linux system performance monitoring and Linux system security.
• 1 to 3 years of experience [fundamental to proficient knowledge] with Windows Server 2016, Windows Server 2019, Active Directory, Server Roles, Access Rights and Security Groups.
  • Assessing the stability, security, and scalability of installed Windows systems in a virtual environment.
  • Installation or upgrade of Windows systems and servers.
• Familiar with relational databases such as Microsoft SQL and Oracle.
  • Monitor performance of database systems resources and query throughput.
  • Monitor and maintain database storage resources.
  • Maintain database documentation as required.
  • Troubleshoot and resolve database [basic] connectivity issues.
  • Proactively monitor and respond to Microsoft SQL database alerts.
• 1 to 3 years of experience with COTS cybersecurity technologies
  • Examples: Splunk, Tenable, ForeScout, McAfee ePO, ServiceNow, SailPoint, CyberArk, SCCM and BigFix.
• 1 to 2 years of experience or basic familiarity with Specialized cybersecurity technologies
  • Examples: Rabbit MQ, Elastic ECE Stack, RedHat Fuse and Vormetric
• Familiarity with ticketing systems and bug tracking applications such as JIRA, ServiceNow or similar technologies
• Ability to self-prioritize to manage multiple tasks in a fast-moving environment
• Exceptional Customer service skills with the ability to focus on Customer priorities
• Conceptual and hands-on experience preforming security tool implementations, upgrades, and monitoring within an Information Security Program
• Fundamental experience analyzing information technology, information security, and system risks in complex environments and the ability to articulate the results (verbal/reports) to all levels of Management
• Candidates must have superior oral and written communication skills
• Ability to manage multiple tasks and projects in fast-moving environments

Desired Qualifications:

• 1 to 3 years of experience in InfoSec specializing in the DHS SDLC, to include the NIST RMF-DHS-specific experience highly desired
• Demonstrated experience with Cyber Security Tools, intrusion detection solutions, PKI, and secured networks
• Familiarity with the OSI Model
• Demonstrated experience with operational and maintenance of asset management, identity and access management, network security management and data protection management technologies
• An understanding of the Continuous Diagnostic and Mitigation (CDM) capabilities, to identify 'what is on the network, who is on the network, what is happening on the network and how is data protected
• Experience with the following technologies is preferred: Rabbit MQ, Elastic ECE Stack, Splunk, Vormetric, RedHat Fuse, Tenable, ForeScout, McAfee ePO, ServiceNow, SailPoint, CyberArk, SCCM, BigFix
• Experience supporting general Change Management processes
• DoD 8570 approved baseline certification(s) (i.e., Security+ CE, CISSP) preferred or the ability to attain within 90 days of the date of hire
• Experience with Agile SAFe is a plus
• Fundamental knowledge and experience with AWS Cloud, Azure Cloud, or Cloud implementations and environments
• Fundamental knowledge and experience with information security standards, policies, and practices - NIST SP 800-53 rev4, SP 800-37 rev2, FIPS-199, DHS 4300A
• Demonstrated experience writing information system security documentation (System Security Plans (SSP), Plans of Action and Milestones (POA&Ms), PTAs, PIAs, CMPs, CPs, and IRPs)
• Fundamental understanding and experience using vulnerability assessment tools (Tenable Nessus, etc.), analyzing and interpreting the vulnerability assessment results
• Experience integrating or configuring data management and enterprise reporting platforms in a Governance, Risk management and Compliance (GRC) solution environment for critical infrastructure. Experience with other dashboard environments or executive information systems may be acceptable
• Experience in commercial Cloud and Government Cloud environments (specifically, Amazon [AWS], Microsoft Azure and Google Cloud Platform)

Security Clearance Requirements:

Candidate is required to be a US citizen (non-dual citizenship) with the ability to obtain a DHS Suitability clearance