2024-04-11
Mercer University
Other
/yr
employee
contract
Warner Robins
Georgia
31088
United States
External Applicants: Please upload your resume on the Apply screen. Your application will automatically populate your resume details, and you may verify and update data on the My Information page.
IMPORTANT: Please review the job posting and load ALL documents required in the job posting to the Resume/CV document upload section at the bottom of the My Experience application page. Use the Select Files button to add multiple documents including your Resume/CV, references, cover letter, and any other supporting documents required in the job posting. The "My Experience" page is the only opportunity to add your required supporting document attachments. You will not be able to modify your application after you submit it.
Current Mercer University Employees: Apply from your existing Workday account. Do not apply from the external careers website. Log in to Workday and type Jobs Hub in the search bar. Locate the position and click Apply.
Primary Job Posting Location:
Warner Robins, GA 31088-7810Additional Job Posting Locations:
(Other locations that this position could be based)
The Cybersecurity Specialist supports or performs cybersecurity operations for enterprise-based information technology (enclave, systems, or networks), platform-based information technology (systems or aircraft), and/or software development activities. The Cybersecurity Specialist may perform evaluations (compliance audits and/or a vulnerability assessments) and is involved in the establishment of strict program control processes to ensure risk mitigation and adherence to national, state, and local laws, and/or MERC policy.
DUTIES AND RESPONSIBILITIES
• May work independently or as an Information System Security Officer (ISSO) under the direction of the Cyber Technical Lead, more senior cybersecurity personnel, and/or the Information System Security Manager (ISSM) on the following tasks:
• Sustain network/information system security through testing, analysis, and application of policy and controls.
• Obtain certification and accreditation of systems, to include process support, analysis support, coordination support, security certification test support, security documentation support, investigations, software research, hardware introduction and release, emerging technology research inspections, and periodic audits.
• Conduct threat and risk analysis and analyze the business impact of new and existing systems and technologies to eliminate risk, performance, and capacity issues.
• Implement vulnerability assessments and configuration audits of operational systems, web servers, and databases to detect patterns, insecure features, and malicious activities in the infrastructure.
• Analyze, investigate, test, evaluate, and deploy security technology and procedures.
• Run diagnostics on any changes to data to verify any undetected breaches.
• Develop custom systems for specialized security features and procedures for software systems, networks, data centers, and hardware.
• Develop and implement information security standards, guidelines, and procedures.
• Observe, evaluate, and document security certification testing.
• Develop, review, and evaluate System Security Plans, System Security Authorization Agreements, systems and networks diagrams, Security Requirements Traceability Matrices, risk assessments, and associated information system Authorization and Accreditation documents.
• Perform security incident evidence gathering and evaluations.
• Perform incident remediation, review and analysis.
• Apply Security Technical Implementation Guides (STIGs).
• Implement government policy (i.e., NISPOM, DCID 6/3) and make process tailoring recommendations.
• Review static/dynamic analysis results and remediate
• Conduct counteractive protocols and report incidents
• Customize risk ratings for vulnerabilities based on company policies and maintain IT security controls documentation
• Use OWASP testing methodology, Dynamic and Static Application Security Testing, re-engineering, automation, ASP.NET/JAVA, IDS/IPS systems, Burp Suite, Nmap, and Metasploit.
• Develop software-based remediation using Python, C#, Java, JavaScript, J-Query
• Complies with all Executive Director approved MERC-wide policies and procedures.
• Participates in Technical Interchange Meetings with customers.
• Adheres to approved MERC MSP quality management policies and principles, and promotes an attitude of commitment to continuous quality improvement.
• Ensures thorough familiarity and awareness of all MERC core capabilities and with the MERC current and potential customer base and remains alert for any problem or opportunity that might lead to additional business for any MERC core business area.
• Submits suggestions for new business opportunities or report identified customer problems or opportunities to the Director of Acquisition Strategy through a Chief Engineer.
REQUIRED QUALIFICATIONS
• US Citizenship is required.
• Ability to obtain and maintain a DoD Security Clearance.
• A Ph.D. degree in Cybersecurity, Computer Engineering, Computer Science, Computer Forensics, Information Assurance, or related information security focused degree from an ABET-accredited institution; or a Master’s Degree in same and 1 year of relevant experience; or an undergraduate degree in same and 2 years of relevant experience.
• Proficient/expert in one of the following areas, competent in two areas, and novice/beginner in the remaining areas: software security, system administration, security testing, information assurance, design, implementation, validation, and compliance.
• Certifications:
• CompTIA Security+ CE
• Additional requirements may be added as appropriate and as specified in the specific Personnel Requisition Form.
Final rank will be determined on the qualifications of the selected candidate.
BENEFITS OF WORKING AT MERC
MERC is a non-profit applied research operating unit of Mercer University, a private university founded in 1833. Established in 1987 in Warner Robins, GA, MERC employs more than 200 engineers, scientists, professors, and support staff, who provide sustainable research solutions to government agencies, the Department of Defense, and commercial customers around the world. Warner Robins and the middle GA area are located 90 miles south of Atlanta and within easy driving distance of both the beach and mountains. The area is known for its Southern-style music, food, and restaurants and has a rich cultural and art presence, along with excellent health care and schools. MERC offers a generous benefits package including health and dental insurance, retirement, tuition reimbursement, vacation/sick leave accrual, and holiday pay.
AA/EEO/Veteran/Disability
Mercer University recognizes the power of a diverse community and encourages applications from individuals with varied experiences, perspectives, and backgrounds.
PI239372049
