Associate Cyber Security Analyst
The EMMES Corporation, established in 1977, is a privately-owned Contract Research Organization (CRO). Headquartered in Rockville, Maryland, Emmes employs over six hundred staff worldwide with offices located in Frederick, Maryland, Vancouver, Canada and Bangalore, India. Ranked as a top area workplace of choice by the Washington Post, Emmes fosters an environment of collaboration, professional growth, and exceptional work life balance.
Our studies impact public health initiatives on a global scale occurring in more than sixty countries spanning across six continents. We are dedicated to providing statistical and epidemiological expertise, computer systems deployment, data management, study monitoring, regulatory guidance, and overall operational support to clients engaged in biomedical research. Emmes offers support for the entire process of clinical trials from study design and protocol development through data analysis and manuscript generation.
The primary role of the Associate Cyber Security Analyst is to support and reinforce the company's technical capabilities for detection, identification and response to information security incidents. This entry level position includes monitoring of security data from internal devices (IDS, SIEMs, firewalls, etc.), external sources (Industry portals, DoD, US-CERT, partners, etc.) and vendor advisories. The Associate Cyber Security Analyst will perform basic analysis and will escalate any suspicious activity. In this position, the incumbent will provide input in the implementation of effective mitigation strategies through the review of security event data for threats, anomalies and for potential attack activity.Responsibilities
Incident handling (guiding customers, directing resources through intelligence-based response process)
Forensic analysis (analysis of compromised machines)
Development of thorough incident reports
Documentation and technical writing requirements (performing research to compile and validate data)
Maintaining technical proficiency in the use of tools, techniques and countermeasures
Maintaining professional knowledge of trends in computer and network vulnerabilities and exploits
Participation in the production of cohesive technical intelligence reports
Adherence to the highest standards of ethical and professional conduct
Following security assessment plans for systems, including the objectives, scope, schedule, required documentation, possible risks, and other logistical items for security assessments
Provides validation of security control tests for cloud service provides
Conducting ad hoc testing on an as-needed basis to assist with development activities or vulnerability remediation
Reviewing system security controls (managerial, operational, and technical) to determine adequacy against federal requirements (e.g., NIST SP 800-53) and mission context
Routinely conduct risk assessments/reports to quantify impacts of vulnerabilities or decisions to the federal government
Assist with design and implementation of security requirements within an organizations business processes
Prepare documentation from information obtained from customer using accepted guidelines such as Risk Management Framework
Assist with development and implementation of system security plans and contingency plans
Install tests and operates computer and network security tools
Helps in computer incident investigations
- Bachelor’s degree in Computer Science, Cyber Security, Engineering or related technical discipline with a minimum of 1 year of experience as an IT professional (help desk, developer, systems or network administrator, analyst, database administrator)
- Basic knowledge of IT security foundational principles and methods, such as firewalls, DMZ, and encryption
- Basic knowledge of networking principles
- Ability to effectively communicate cyber security issues (in verbal and written form) and related topics with senior cyber staff and IT team members
- CompTIA Security+ certification preferred
CONNECT WITH US!!
Follow us on Twitter - @EMMESCorp
Find us on LinkedIn - The EMMES Corporation
The EMMES Corporation is an equal opportunity affirmative action employer and does not discriminate in its selection and employment practices. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, political affiliation, sexual orientation, gender identity, marital status, disability, protected veteran status, genetic information, age, or other legally protected characteristics.