Cyber Security Analyst - GRC Support

Savannah River National Laboratory (SRNL) is seeking a Cyber Security Analyst to join the Cyber Assurance, Governance, Risk Management and Compliance team. The selected individual will assist with NIST Risk Management Framework (RMF) processes and ensure a secure operational security posture is in place and maintained.

Requirements

• Data entry, updates and maintenance of System Security Plans and other documents/evidence in the GRC tool
• Executing scans security scans (compliance and vulnerability related)
• Tracking status of temporary risk findings to closure and gathering remediation evidence
• Pulling configuration compliance reports, STIG checklists, CIS benchmarks
• Assist with RMF Continuous Monitoring activities and new project Risk Assessments
• Assist Project Security Officers and ISSOs with preparation of authorization packages for new projects and accreditation boundary
• Assist with entry of new risks, updates or maintenance in the risk register
• Assist in performing security impact analysis using approved security policies and SSPs and provide recommendations for meeting requirements with adequate security controls that align with business objectives.
• Work effectively in a team environment to resolve issues and contribute to continuous process improvement efforts.
• Participate/assist with compliance assessments/audits and data calls.
• Interact with customers and peers in a professional and responsive manner.

Benefits

• Highly competitive Medical, Dental, and Vision options including HSA options with company provided seed
• Short- & Long-Term Disability (company paid)
• Life Insurance Non-Contributary 1X salary (company paid)
• AD&D Non-contributary 1x salary (company paid)
• Savings & Investment plan
• Paid Time Off
• Employee Assistance Plan