Cyber Security Analyst - Remote

Location
Rockville, Maryland
Salary
Competitive
Posted
May 11, 2022
Closes
May 19, 2022
Ref
3244
Function
Other
Industry
Science
Hours
Full Time
Cyber Security Analyst

US Remote Worker

The Emmes Company, LLC ("Emmes") is a global, full-service Clinical Research Organization dedicated to excellence in supporting the advancement of public health and biopharmaceutical innovation. We believe in the power of truth, so much so that we named our company Emmes, which means truth. Through decades of experience we have learned that collaborative relationships thrive and human health benefits when truth is our compass.

Our "Character Achieves Results" culture is driven by five key values that guide our actions in the way we conduct research and distinguish us as an organization: Integrity, Agility, Passion for Excellence, Collaborative Partnerships and Intellectual Curiosity. We are a trusted partner to clients who share our passion for improving public health in a world of ever-changing scientific research.

If you share our motivations and passion in research, come join us! You will be joining a collaborative culture that empowers every Emmes employee — from entry level through top executive — to contribute to our clients' success by sharing ideas openly and honestly.

Primary Purpose

Supports and reinforces the company's technical capabilities for detection, identification and response to information security incidents; including monitoring of security data from internal devices (IDS, SIEMs, firewalls, etc.), external sources (Industry portals, DoD, US-CERT, partners, etc.) and vendor advisories; perform vulnerability scans and assist with penetration testing.

Responsibilities
  • Continually assess the effectiveness of the enterprise monitoring and response capabilities, including the collection of logs to enable forensic investigation
  • Configure or set policies for the configuration of email, endpoint, and network threat detection and remediation capabilities
  • Operate and maintain security tools such as Splunk, Rapid7, CrowdStrike, Digital Guardian, Palo Alto, KaliLinux, AWS Cloudwatch, AWS WAF, etc.
  • Establish security event and incident response playbooks for an effective technical response
  • Lead the technical aspects of incident response, including detection, analysis, containment, eradication, recovery, and incident lessons-learned reviews
  • Work with the Risk Management Team to identify risks, implement remediation plans and update Risk Register
  • Analyze external sources of threat and vulnerability information to identify actions that need to be taken within the enterprise
  • Coordinate vulnerability and penetration testing and manage the remediation of findings
  • Run and analyze vulnerability and compliance scans to support continuous monitoring reporting and vulnerability management
  • Work with Information Security Team and Project Leaders to assist in monitoring and reporting activities required by stakeholders to update POAM and SSP
  • Collaborate with software development, network/cloud engineering, and other teams to test and identify vulnerabilities in pre-production software and systems
  • Performs all essential functions adhering to the highest level of ethical and professional conduct
  • Provide support during annual recertifications and assessments conducted by third parties
  • Other duties as assigned

Experience
  • Bachelor's degree in Computer Science, Cyber Security, Engineering or related technical discipline, or relevant experience with 4 years cyber security experience in a Security Operations Center (SOC) or similar environment and 1 year of Data Analytics experience
  • Demonstrated ability to resolve issues related to assigned work project of moderate complexity
  • Understand the principles of cloud, network and endpoint security, current threat and attack trends, and defense in depth strategies
  • Familiarity with Splunk, CrowdStrike, Palo Alto, Duo, Airwatch, Rapid7, Nessus, Kali Linux, AWS Cloudwatch, O365 or equivalent technologies for each area
  • Familiarity with Incident Response Kill Chain
  • Fundamental understanding of Windows, Mac OSX, and Linux operating systems
  • Fundamental understanding of OSI model, basic networking and troubleshooting concepts
  • Experience with programming or scripting, such as PowerShell, Bash, Python, Yara or Perl
  • Intermediate knowledge of incident response frameworks and handling procedures
  • Understanding and knowledge of various log formats from a variety of network and computer devices
  • Knowledge of Cyber risks and threats related to Cyber attackers
  • Knowledge of recent Cyber events and interpreting kill chain process and threat impacts
  • Knowledge of IT security foundational principles and methods, such as firewalls, DMZ, and encryption
  • Ability to effectively communicate cyber security issues (in verbal and written form) and related topics with senior cyber staff and IT team members
  • CompTIA Security+, AWS Certified Security or equivalent certification preferred
  • Experience with NIST 800-53 security controls

Why work at Emmes?

At Emmes, your actions and hard work will have a direct impact on public health initiatives, both globally and in our local communities with opportunities for volunteerism through our Emmes Cares community engagement program. We offer a competitive benefits package focused on the health and needs of our growing workforce, including:

  • Unlimited Approved Leave


  • Tuition Reimbursement


  • 401k & Profit Sharing Plan
  • Work From Home Anywhere in the US


  • Maternal/Paternal Leave


  • Casual Dress Code & Work Environment


CONNECT WITH US!

Follow us on Twitter - @EmmesCRO

Find us on LinkedIn - The Emmes Company, LLC

The Emmes Company, LLC is an equal opportunity affirmative action employer and does not discriminate in its selection and employment practices. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, political affiliation, sexual orientation, gender identity, marital status, disability, protected veteran status, genetic information, age, or other legally protected characteristics.

Emmes is a federal government contractor and requires all employees to be fully vaccinated against COVID-19, to the extent permitted by applicable law. Individuals with medical conditions or sincerely religious beliefs or practices that prevent them from getting the vaccine may request an exemption from the vaccine requirement.

Similar jobs

More searches like this