Cyber Security Analyst
ARCHIVED
We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.
Job Summary:
We are seeking an experienced IT Security Specialist to join our team. The successful candidate will be responsible for the security and integrity of our client systems, networks, and data. The ideal candidate will have a strong background in IT security architecture and be familiar with the latest cloud security technologies and best practices. This role requires a proactive approach to identify and mitigate potential security threats, as well as to ensure compliance with relevant regulations and standards. This is a hybrid position. The ideal candidate must be onsite (Silver Spring, MD) at least once a week.
Responsibilities:
Proficient with Tenable Nessus Security Center to include: (1) compatibility with
ProFeed; (2) reports and metrics; (3) correlation between different repositories to form
an aggregate perspective of the organization; (4) scan to inventory ratios; and (5) trends.
● Proficient with Hewlett Packard (HP) ArcSight to include: (1) reports – both summary
and detail; (2) writing, implementing, and monitoring filters; (3) analyzing and reporting
trends; (4) incorporating additional sources of information – to include incident reports,
vulnerability scans, and controls assessments, into a comprehensive organizational risk
posture; and (5) ability to correlate between logs and devices to determine the depth and
breadth of auditing and reporting.
● Proficient with IBM BigFix to include: (1) reports – both summary and detail; (2) writing,
implementing, and monitoring filters; (3) analyzing and reporting trends
● Ability to research, recommend, and apply policies and emerging vulnerabilities to both
short notice response and long term vulnerability management program assignments.
● Proficiency in applying federally accepted IT Security concepts, methodologies,
principles, procedures and using industry-standard IT Security tools.
● Knowledge and comprehensive understanding of U.S. federal IT security policies and
implementation standards as documented in the National Institute of Standards and
Technology (NIST) guidance to include, but not limited to, NIST Special Publications
(SP) and Federal Information Processing Standards (FIPS) available online at
http://csrc.nist.gov/.
● Familiarity with the NESDIS mission and major programs as described online at
http://www.nesdis.noaa.gov/.
● Proficiency with enterprise architecture methodologies, concepts, procedures, principles,
and tools, and experience in designing security elements of Service-Oriented
Architectures.
Must have and maintain one or more of the following professional certifications:
o ISC2 Certified Information Systems Security Professional (CISSP)
o ISC2 Information Systems Security Architecture Professional (ISSAP) - highly
desirable
o ISACA Certified Information System Manager (CISM)
o ISACA Certified Information System Auditor (CISA)
o GIAC Security Leadership Certification (GSLC)
o EC-Council Certified Chief Information Security Officer (CCISO)
o CSA Certificate of Cloud Security Knowledge (CCSK)
o Cloud Service Provider (CSP) Architecture Certification (CSP- AWS, Azure, Google)
Job Types: Full-time, Contract
Pay: $105,308.00 - $112,132.00 per year
Benefits:
401(k)
Dental insurance
Health insurance
Schedule:
Monday to Friday
Experience:
Cybersecurity: 7 years (Required)
Information security: 7 years (Required)
Ability to Commute:
Silver Spring, MD 20910 (Required)
Work Location: Hybrid remote in Silver Spring, MD 20910