Associate Cyber Security Analyst

Location
Rockville, Maryland
Posted
May 16, 2018
Closes
Jun 02, 2018
Industry
Security
Hours
Full Time

The EMMES Corporation, established in 1977, is a privately-owned Contract Research Organization (CRO). Headquartered in Rockville, Maryland, Emmes employs over six hundred staff worldwide with offices located in Frederick, Maryland, Vancouver, Canada and Bangalore, India. Ranked as a top area workplace of choice by the Washington Post, Emmes fosters an environment of collaboration, professional growth, and exceptional work life balance.

Our studies impact public health initiatives on a global scale occurring in more than sixty countries spanning across six continents. We are dedicated to providing statistical and epidemiological expertise, computer systems deployment, data management, study monitoring, regulatory guidance, and overall operational support to clients engaged in biomedical research. Emmes offers support for the entire process of clinical trials from study design and protocol development through data analysis and manuscript generation.

Primary Purpose

The primary role of the Associate Cyber Security Analyst is to support and reinforce the company's technical capabilities for detection, identification and response to information security incidents. This entry level position includes monitoring of security data from internal devices (IDS, SIEMs, firewalls, etc.), external sources (Industry portals, DoD, US-CERT, partners, etc.) and vendor advisories. The Associate Cyber Security Analyst will perform basic analysis and will escalate any suspicious activity. In this position, the incumbent will provide input in the implementation of effective mitigation strategies through the review of security event data for threats, anomalies and for potential attack activity.

Responsibilities

    Incident handling (guiding customers, directing resources through intelligence-based response process) Forensic analysis (analysis of compromised machines) Development of thorough incident reports Documentation and technical writing requirements (performing research to compile and validate data) Maintaining technical proficiency in the use of tools, techniques and countermeasures Maintaining professional knowledge of trends in computer and network vulnerabilities and exploits Participation in the production of cohesive technical intelligence reports Adherence to the highest standards of ethical and professional conduct Following security assessment plans for systems, including the objectives, scope, schedule, required documentation, possible risks, and other logistical items for security assessments Provides validation of security control tests for cloud service provides Conducting ad hoc testing on an as-needed basis to assist with development activities or vulnerability remediation Reviewing system security controls (managerial, operational, and technical) to determine adequacy against federal requirements (e.g., NIST SP 800-53) and mission context Routinely conduct risk assessments/reports to quantify impacts of vulnerabilities or decisions to the federal government Assist with design and implementation of security requirements within an organizations business processes Prepare documentation from information obtained from customer using accepted guidelines such as Risk Management Framework Assist with development and implementation of system security plans and contingency plans Install tests and operates computer and network security tools Helps in computer incident investigations
Experience

  • Bachelor’s degree in Computer Science, Cyber Security, Engineering or related technical discipline with a minimum of 1 year of experience as an IT professional (help desk, developer, systems or network administrator, analyst, database administrator)
  • Basic knowledge of IT security foundational principles and methods, such as firewalls, DMZ, and encryption
  • Basic knowledge of networking principles
  • Ability to effectively communicate cyber security issues (in verbal and written form) and related topics with senior cyber staff and IT team members
  • CompTIA Security+ certification preferred

CONNECT WITH US!!

Follow us on Twitter - @EMMESCorp

Find us on LinkedIn - The EMMES Corporation

The EMMES Corporation is an equal opportunity affirmative action employer and does not discriminate in its selection and employment practices. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, political affiliation, sexual orientation, gender identity, marital status, disability, protected veteran status, genetic information, age, or other legally protected characteristics.

Similar jobs