Cyber Security Analyst

Job Responsibilities and/or Success Factors

• Provides backup coverage for the ISSO
• Monitors vulnerability management consoles and coordinates for remediation
• Analyzes vulnerability and compliance scan results, creates pivot charts, draft reports and briefs stakeholders on technical vulnerabilities
• Oversees the implementation and assessment of security controls in accordance with the NIST RMF
• Prepares ATO packages and provides status updates to the Information System Security Manager and their support group
• Coordinates with CSO, CISO, and the Engineering Team to prepare for and facilitate Information Assurance audits
• Plans for and executes workshops, tabletop exercises, and writes reports
• Drafts and implements IT Security procedures and assists with vulnerability assessments as needed
• Updates vulnerability POA&Ms and facilitates meetings as needed
• Enforces security policy and procedures
• Reviews IPS logs, audit logs (system/application) weekly
• Provides infrastructure support, including troubleshooting infrastructure and administration issues
• Performs all aspect of security administration to include but not limited to Intrusion Prevention System analysis of possible threats identified during monitoring
• Provides assistance with Incident Response in the areas of enterprise malware prevention and data spills
• Identifies risks and recommends areas for improvement

Required Skills and Experience Include

• Must have an active Top Secret security clearance and candidates should be willing to take a CI Poly
• Bachelors of Science or a Technical Degree (will substitute experience)
• 3-4 years of IT Security Services and support
• 3-4 years of experience with network services technologies (servers/clients/AD/storage/virtual environment) and security tools

Preferred Skills

• 3-4 years of experience with Splunk
• Experience with information systems, networks, and or/application security
• Technical knowledge in Cyber security engineering, systems and network security, authentication and security protocols, and cryptography
• General technical knowledge of internetworking devices and network services
• Good understanding of root causes of malware infections and proactive mitigation
• Good understanding of data exfiltration techniques
• Good organizational, problem-solving, written and communication skills
• Knowledge of network/host based intrusion analysis, malware analysis, forensics and cyber threat intel
• Ability to quickly learn new technologies and concepts and apply that knowledge effectively
• Ability to work directly with Cyber security teams to gather functional requirements and develop solutions which meet or exceed requirements, and support the system
• Ability to work independently with minimal supervision
• Good interpersonal and communication skills
• Network vulnerability scanning tool (Nessus) usage is an advantage

Desired Certifications (one or more)

• Security+
• MCSE/MCSA
• Linux+ (RHCA/LPIC)
• Splunk Fundamentals I
• CEH
• CCNA
• CISSP
• GIAC Certs