IT Security Analyst – NASA Support at Pearl River Technologies

The IT Security Analyst will support various security requirements management and system hardening efforts within private and public cloud infrastructures supporting a group of flight dynamics engineers in the GSFC Flight Dynamics Facility (FDF). The FDF is a NASA Mission Essential Infrastructure facility that provides multi-mission navigation services for a wide range of robotic and human space flight spacecraft missions. 

 Reports To 

Sustainment Engineer Project Manager 

 Responsibilities  

• Identify and manage scope, Level of Effort (LOE), interrelationships, and associated risks of required tasks. 

• Provide technical knowledge and analysis of specialized system security tools and technologies. 

• Provide high-level functional systems analysis, design, integration, documentation, and implementation guidance for all security efforts. 

• Assess the current infrastructure state, identify areas of improvement, and make recommendations regarding technology, processes, and documentation related to system hardening and security best practices. 

• Develop, implement, and manage quality processes and security standards. 

• Support VMware Cloud Foundations. 

• Directly support all security related system administration activities.  

• Participating in system administration activities when required. 

• Sharing in an onsite support role as Goddard Space Flight Center supporting critical mission activities including launch, docking, and landing for crewed and uncrewed missions when required. 

• Verify system security requirements and establish system security designs when required. 

• Maintain and manage all system risks for the sustainment team. 

• Must be able to create and maintain RBDs and POA&Ms. 

• Work closely with system administrators and other FDF personnel to ensure hardware and software meets security requirements. 

• Evaluate security solutions to ensure they satisfy NASA requirements. 

• Audit and assess system security configurations. 

• Enforce required operational security posture of all systems. 

• Enforce STIG hardening using manual and automated tools. 

• Produce system security reports as required. 

• Maintain FDF security documentation ensuring that they are accurate and current. 

 Required Skills 

• Must have strong technical skills working with IT systems. 

• Must have very strong MS Word and MS Excel experience. 

• Must be able to implement security measures to protect systems from unauthorized access, malware, and other threats. 

• Must have strong analytical skills to diagnose and resolve cybersecurity related issues and findings. 

• Must be able to monitor systems and network flows, analyze system logs and scans, and proactively enforce security hardening measures based on NASA requirements. 

• Must fully understand requirements for a Zero Trust architecture and be able to ensure full implementation. 

• Must be able to develop, review, analyze, and maintain security documents and artifacts such as system security plans, SOPs, audit logs, configuration scans, and vulnerability scans to effectively evaluate, implement, and manage system controls.  

• Must understand security requirement for Data at Rest (DAR), Data in Transit (DIT), network segmentation, micro segmentation, and MFA. 

• Must be able to conduct security related meetings with system stakeholders. 

• Must have a general understanding of computer hardware, operating systems (e.g., Windows, Linux), networking protocols, and server administration.  

• Must be able to diagnose and resolve security issues efficiently.  

• Must be familiar with network devices such as routers, switches, firewalls, and load balancers. 

• Must be able to establish and maintain backup strategies to ensure data integrity and develop disaster recovery plans to minimize downtime during system failures. 

• Must have excellent written and verbal communication skills. 

• Must be able to help support end-users, resolving technical issues and ensuring user satisfaction. 

• Must have a strong working knowledge of system testing such as security scans and PenTests. 

• Familiar with FIPS 140-3, NIST SP 800-53, FIPS 199, and FIPS 200. 

• Knowledge of common security related protocols and their design such as SSH, TLS, etc. 

• On occasion may be required to be available to provide mission support, such as for launches, which at times may include after hours, overnight, or weekends. 

Desired Skills 

• One or more of the following certifications: Security+, CISSP, ISSEP, GIAC, CompTIA A+, CompTIA Server+, GCWN, RHCSA, CISA, etc. 

• Experience working at a NASA facility. 

• VMWare skills employing tools such as SDDC Manager, NSX, Tanzu, and Aria. 

• Familiar with NASA-STD-2601 

 Required Experience 

• 3 – 4+ years of professional IT experience.  

• 1 – 4+ years of Cybersecurity experience. 

• 1 – 4+ years working in a federal environment supporting efforts such as A&A assessments, PenTests, and system hardening. 

 Required Degree 

Bachelor’s degree in Cybersecurity, Computer Science or related discipline, or equivalent work experience. 

 Security Clearance Requirements 

Must be eligible to obtain a DoD Secret Security Clearance. 

US citizenship is required. 

 Physical Requirements 

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.   

• The employee must occasionally lift and/or move up to 20 pounds and push a cart that contains up to 100 pounds of hardware.  

• The employee may be required to walk to various offices and travel to other buildings within the Goddard facility. 

• When employee is assigned, it is required to monitor various statuses without a break for extended periods at a time and be able to maintain a professional posture even during stressful situations. 

• The employee will be required at times to work in a server room which may be moderately noisy and cold. 

 About Us 
Pearl River Technologies (PRT) is an SBA certified HUBZone small, disadvantaged business (SDB) providing professional, technical, and administrative support services to federal, state and local government agencies. Through our support and commitment to the HUBZone program, we successfully offer our customers the highest quality of service, while creating opportunities and growth for our employees.  

 US citizenship required / EEO/AA / E-Verify Participation 

 As an Equal Employment Opportunity/Affirmative Action employer, Pearl River Technologies LLC provides equal employment opportunity to all employees and applicants without regard to an individual's protected status, including race/ethnicity, color, national origin, ancestry, religion, creed, age, gender, gender identity/expression, sexual orientation, marital status, parental status, including pregnancy, childbirth, or related conditions, disability, military service, veteran status, genetic information, or any other protected status.