A3T, a fast growing ISO 27001, 9001, and 20000 certified company, specializes in Defensive Cyber Security Services and Solutions, driven by our customer's mission, and delivering excellent 'A' level talented personnel and an unparalleled customer satisfaction experience. Join A3T and watch your career soar! A3T is an agile and mature company looking for incredible talent to support the U.S/ Government in many important national security roles.

A3T is looking to bring on an experienced, Secret cleared, Disaster Recovery Analyst with “Next-Level Thinking” who is ready to take their career to a new level with A3T.

The successful candidate shall be a part of a cybersecurity team that provides cybersecurity analysis and expertise to support sustainment of DoD cybersecurity and RMF requirements.  The successful Disaster Recovery Analyst shall assist with contingency planning, disaster recovery planning and business continuity planning.  Responsible for security and integrity of assigned electronic data, data systems, and data networks. Designs and administers programs to include policies, standards, guidelines, training programs and a viable quality assurance process for disaster recovery. Oversees and reviews the testing and implementation of software, data systems and data networks to ensure that the integrity and security of all electronic data and data systems are adequately protected. Oversees and facilitates the preparation of an organization-wide business resumption plan. Responsible for insuring the business resumption plan adequately addresses the organization's requirements and established time frames.

Duties/Responsibilities:

• Develop IT specific contingency planning guidance and processes

• Evaluate current contingency planning guidance, processes templates and tools, identifying deficiencies and needs for processes, people and technology.  

• Assess and provide recommendations to the effort on any actions needed for integration with agency level offices such as Project Continuity and Disaster Recovery Offices. 

• Document results in an actionable whitepaper. 

• Support senior ISSM in developing plan of actions and milestones.

• Develop senior level briefing material articulating needs, deficiencies, risks and benefits.

• Draft guidance, processes and recommendations to allow robust implementation of applicable DoD, NIST and FISCAM standards. 

• Ensure thorough identification of best business practices, sound and secure enterprise and system level contingency planning methods and processes. 

• Draft contingency process flows to include identification, approvals and management of processes and plans.

• Document project roles and responsibilities, end to end. 

• Evaluate IT’s use of existing continuity planning tools and provide recommendations for further integration.

• Draft guidance, instruction and assist in implementing and compliance checking. 

• Align and document current tool and processes to DoD and NIST requirements including compliance checks, metrics and reports. Goal is to allow robust identification, conduct and tracking of system’s daily, monthly, etc. contingency planning activities, versus external security control testing only.

• As required, assist in the performance of annual Disaster Recovery Plan testing for supported systems as directed. Any vulnerabilities identified shall be documented in a Disaster Recovery Test Results Report. The DRP Testing Results report shall include vulnerabilities found and recommendations for corrective actions. Update System POA&Ms accordingly.

• Assist with Development of organization’s IT system interconnection guidance and processes

• Assist in Support System Security Posture Improvements

• Assist with Development of Integrated RMF/FISCAM Playbooks

• Develop and Conduct Training – Support comprehensive implementation of IT Contingency Planning by developing and conducting robust training.

Security Clearance:  Secret (Active)

Technical Certification(s):  

• Information Assurance Management (IAM) level III.  Certified Information Systems Security Professional (CISSP) or other Equivalent (e.g. CISM or GLSC) DoD 8570.01-M

Experience:

• Must have minimum 10 years of experience in cybersecurity.  This includes documentation and system authorization artifacts (e.g. Plan of Action and Milestones, Interconnection Security Agreement, Risk Assessment, System Security Plan, Continuous monitoring plan, Security Assessment Report, etc.).

• Must have extensive Federal, DoD and NIST experience in enterprise and system level contingency planning, interconnection management system security and privacy controls and Assess and Authorize (A&A) events

• Must have strong critical thinking/analytical skills, creativity, a proven drive for quality, and excellent oral and written communication skills.

• Must have strong technical writing skills.

• Must be able to interpret and provide consulting on the development of security guidance, and serve as a SME at key stakeholder meetings

• Strong organizational skills and an ability to stay focused while managing multiple tasks concurrently.

• Able to work under only general direction and be able to independently determine and develop an approach to information system security solutions, only needing review upon completion for adequacy in meeting objectives.

• Knowledge in reviewing, analyzing and documenting the secure implementation of logical controls, physical controls, environmental controls, personnel security and incident handling.

• Experience with DoD security hardening, collection and assessment tools (STIGS, ACAS SCAP, Nessus, etc.) and experience with security architectures, firewalls and network access.  

• Must have working knowledge of the DoD CS policy requirements set forth in Dodi 8500.01, “Cybersecurity,” and DoDI 8510.01, “Risk Management Framework (RMF) for DoD Information Technology,” and their successors. Available at http://www.dtic.mil/

We offer a competitive benefits package to include: paid holidays, paid time off, medical, dental, vision, company paid long and short term disability and life insurance, referral bonuses, certification reimbursement program, 401K matching, etc.

It is the policy of A3T to provide equal opportunity in recruiting, hiring, training, and promoting individuals in all job categories without regard to race, color, religion, national origin, gender, age, disability, genetic information, veteran status, sexual orientation, gender identity, or any other protected class or category as may be defined by federal, state, or local laws or regulations.

We maintain a drug-free workplace and perform pre-employment substance abuse testing to include background checks  and eVerify validation.