Critical Assets and Key Vulnerabilities Analyst
- Washington, DC, USA
- Clearance: Top Secret/SCI
Executive Order (E.O.) 13587, Structural Reforms To Improve the Security of Classified Networks and the Responsible Sharing and Safeguarding of Classified Information - in conjunction with The White House Memorandum on National Insider Threat Policy and Minimum Standards for Executive Branch Insider Threat Programs - directs all executive branch departments and agencies that have access to classified information to implement an insider threat detection and prevention program.
In 2014, the Federal Bureau of Investigation (FBI) established the Insider Threat Center (InTC) to act as the central coordinating component for the FBI's Insider Threat Detection and Prevention Program. The InTC leverages the specific strengths of the existing Insider Threat components which are in place and supports the centralization of the technical, analysis and administrative personnel within the same component at FBIHQ. The InTC will identify new tools required for a robust Insider Threat Program, identify trends, and incorporate new data sets into analysis from various sources, working closely
The Critical Assets and Key Vulnerabilities Analyst shall provide advice and expert guidance on security issues affecting business processes and procedures exploitable by insiders. These business processes and procedures include but are not limited to the electronic processing, transmittal, and storage of sensitive and classified information. The Contractor should promote the awareness of security issues among management and ensure sound security principles are practiced. Contractor personnel supporting this task will:
- Maintain a centralized database of corporate assets, including where they reside, the protections in place, and potential vulnerabilities
- Perform regular threat cycle reviews, at least annually, to assess shifting or emerging threats and any associated vulnerabilities
- Assess the most critical assets and/or those exhibiting high vulnerabilities
- Coordinate with FBI entities to assess and mitigate key vulnerabilities
- Ensure FBI Executive Management is informed of key vulnerabilities which could be exploited by insider threats
- Ensure FBI Executive Management is informed of progress on mitigating key vulnerabilities
- Communicate clearly and effectively, both orally and in writing
- Prepare complete, clear, and concise formal and informal reports, correspondence, briefings, charts, tables and graphs
- Identify the impacts and effects of study findings and make recommendations
- Assess and improve the effectiveness of programs, complex management processes, systems, and procedures.
- A four-year (4-year) degree and at least 5 year's work experience in national security or security-related matters
- Experience with assessing risks in business processes including those with IT systems; a critical thinker and solution finder for complex IT security situations and/or business processes vulnerable to insider threats.
- Experience with IT monitoring tools; configuration management;' managing or maintaining user accounts and system privileges; risk and vulnerability assessments; operation threat assessments
- Knowledge of network protocols; network security; information assurance management; cybersecurity capability validations; automated vulnerability scanning tools.
The Red Gate Group, Ltd. is an Equal Opportunity/Affirmative Action Employer. The Red Gate Group, Ltd. considers applicants without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, or membership in any other group protected by federal, state, or local law. EEO is the Law