Cyber Security Analyst

JT4 is seeking a Cyber Security Analyst for an onsite position at Edwards AFB in California. RESPONSIBILITIES Risk Assessment and Management Identify potential vulnerabilities and threats to an organization’s network and systems. Conduct regular risk assessments and audits to evaluate the security posture. Develop and implement risk management strategies to mitigate identified risks. Prepare a Risk Assessment Report (RAR) that summarizes the risks identified and their potential impact on the organization. Test and Validate Security Measures Design, test, and coordinate implementation of security controls and measures, such as firewalls, intrusion detection/prevention systems (IDS/IPS), and encryption tools. Validate security patches and updates to software and systems to protect against known vulnerabilities. Configure and report access controls, authentication, and authorization mechanisms. Security Architecture and Design Collaborate with IT and development teams to design secure architecture for new applications, networks, and systems. Ensure security requirements are integrated into system and software development lifecycles (DevSecOps). Create and Submit ATO Package for Review Become acquainted with the relevant policies, standards, and frameworks that guide the Authorization to Operate (ATO) process. In the U.S. federal context, this typically includes the Risk Management Framework (RMF) established by the National Institute of Standards and Technology (NIST), particularly NIST Special Publication 800-37. Determine the specific ATO requirements for your organization or project, including the scope, timelines, and stakeholders involved. Compile all documentation (SSP, SCA Report, RAR, POA&M) into an ATO package. Submit the ATO package to the Authorizing Official (AO) or the Designated Approving Authority (DAA) for review. The AO/DAA is responsible for granting or denying the ATO based on their assessment of the package. REQUIREMENTS – EDUCATION, TECHNICAL, AND WORK EXPERIENCE A bachelor's degree in a related field with 3 years of experience, or 5 years of experience in a cybersecurity role. Experience in security operations, incident response, risk assessment, and vulnerability management. Proven track record in developing and implementing security policies, procedures, and incident response plans. In-depth knowledge of network and system security, security protocols, cryptography, and risk management. Proficiency in security tools and technologies (e.g., SIEM, IDS/IPS, firewalls, antivirus, vulnerability scanners, EDR solutions). Familiarity with cloud security (AWS, Azure, Google Cloud) and hybrid environments. Strong understanding of regulatory and compliance standards (e.g., NIST, ISO 27001, GDPR, CMMC, HIPAA). Experience with scripting languages (Python, PowerShell, etc.) and automation tools. Strong leadership and team management skills, including mentoring and developing team members. Ability to handle high-pressure situations, such as coordinating the response to security incidents. Excellent communication skills, with the ability to convey technical information to non-technical customers. Experience in conducting training and awareness programs on cybersecurity best practices. Must possess a valid, state issued driver's license. Must be able to obtain and maintain security clearance. Must be a US citizen. DESIRED QUALIFICATIONS Relevant cybersecurity certifications, such as: CISS, CISM, CEH, Comp TIA Security+, GSEC, CISA, etc. Experience in analyzing security incidents and conducting root cause analysis. SALARY The expected salary for this position is $112K-$134K annually. BENEFITS Medical, Dental, Vision Insurance Benefits Active on Day 1 Life Insurance Health Savings Accounts/FSA's Disability Insurance Paid Time Off 401(k) Plan Options with Employer Match JT4 will match 50%, up to an 8% contribution 100% Immediate Vesting Tuition Reimbursement #J-18808-Ljbffr