Lead Cyber Security Analyst

Location
Washington, District Of Columbia
Posted
Sep 01, 2021
Closes
Oct 06, 2021
Ref
18507
Function
Administrative
Hours
Full Time
Summary

The Lead Cyber Security Analyst will support the Department of Education to ensure that the organization's networks, as well as information is secure while employing continuous monitoring of intrusion detection/prevention for all systems and applications.

Responsibilities
  • Ensure that the organization's networks, as well as information is secure.
  • Employ continuous monitoring of intrusion detection/prevention for all systems and applications.
  • Ensure appropriate data encryption (in transit and at rest) levels based on protections needs of targeted data, administer host intrusion protection, data loss prevention, antivirus, vulnerability management, and security information event management.
  • Create and update Information Assurance artifacts, create and manage Plans of Actions and Milestones, and perform all duties within the Cyber Security Asset Management portal.
  • Update all cybersecurity documentation and attend all related IT and Cybersecurity meetings.
  • Provide knowledge for maintaining awareness of system/network security posture, including vulnerability scanning to facilitate application of quick and effective corrective measures, while ensuring configuration management requirements are met.
  • Provide technical knowledge and information assurance analysis support, including security assessment of applications and systems, operating systems, internet-facing interfaces, intranet, and other interconnections.
  • Provide analysis of existing systems vulnerabilities, including possible intrusion/entry points, resource manipulation, denial of service, and/or destruction of resources.
  • Provide technical support and analysis to document organizational information protection framework and support policy and procedures preparation and implementation.
  • Technical and thought-leadership responsibilities for multiple information security disciplines, like incident response, vulnerability management, intrusion detection and prevention, threat hunting, security operations, security policy, and awareness/education.
  • Support, maintain, monitor, troubleshoot and enhance security infrastructure tools, methodologies, software, and hardware.
  • Draft and review information security policies, processes, and procedures.
  • Oversee information security incident response activities, risk assessment and risk management activities, and vulnerability assessment and vulnerability management activities.
  • Manage detailed network, operating system, database, and application vulnerability assessments and security configuration audits.
  • Manage information security initiatives.
  • Prepare information security awareness and education materials and other documentation.
  • Determine and document information security requirements and controls necessary for the protection of information resources.
  • Provide guidance and assistance regarding information security matters, like the interpretation of information security policies and requirements or their applicability to situations.
  • Analyze data from Information Security functions and provide reports and recommended response actions to Information Security Manager (ISM\ISSO).
  • Publish regular status reports and submit to management.
  • Provide project management tasks and update utilizing agile methodologies.
  • Assist with developing and submission of reports and other deliverables.
  • Provide a dashboard for deliverable tracking monthly.
  • Serve as primary on-site liaison.
  • Assist with training of other staff as required.
  • Other duties as assigned

Qualifications
  • Bachelor's degree in Computer Science, Information Systems, or related cyber security certifications (i.e., CISSP, SSCP, etc.) and 8+ years of experience as a Cyber Security Analyst
  • High school diploma and 10+ years of Cyber Security Analyst experience may be used in lieu of degree
  • Experience with IT Compliance and Risk Management Methodologies - Cyber Security Framework, NIST Standards (SP 800-53r5), HIPPA, and FISMA
  • Top secret clearance required

Knowledge, Skills and Abilities
  • Strong knowledge of best practices associated with as well as appropriate authoritative guidance for physical security, network security, security risk assessments, critical infrastructure protection, continuity and contingency planning, emergency preparedness, security awareness, and training.
  • Strong knowledge for maintaining awareness of system/network posture.
  • Strong analysis and comprehension skills.
  • Ability to provide technical knowledge and information assurance analysis support.
  • Ability to work nights, weekends, and holidays as required.
  • Ability to maintain top secret clearance.

#Chenega Agile Real Time Solutions, LLC

Similar jobs