Cyber Analyst II

Cyber Analyst II

Requirements

• Active Top Secret/SCI (TS/SCI) with Polygraph security clearance required. Must be U.S. Citizen.
• Bachelor’s degree and 8 to 12 years of prior relevant experience. Experience may be considered in lieu of degree.
• Certified Information Systems Security Professional (CISSP) or comparable.

Responsibilities

• Monitor, analyze, and protect organization’s information systems and networks.
• Identify, mitigate, and respond to cyber threats while ensuring compliance with relevant policies and frameworks.
• Apply strong analytical skills, technical expertise, and a proactive approach to safeguarding critical systems and sensitive data.
• Monitor network traffic, system logs, and security alerts to identify potential threats, anomalies, or suspicious activities.
• Use Security Information and Event Management (SIEM) tools (e.g., Splunk, ArcSight, or QRadar) to aggregate and analyze security events.
• Investigate and escalate security incidents, including malware infections, phishing attempts, and unauthorized access.
• Respond to and mitigate cybersecurity incidents following established incident response protocols.
• Perform root cause analysis of security breaches and recommend remediation strategies.
• Coordinate with internal and external stakeholders to contain and recover from incidents.
• Conduct vulnerability scans using tools like Nessus, Qualys, or OpenVAS and report findings.
• Collaborate with IT and engineering teams to prioritize and remediate vulnerabilities.
• Assist in conducting risk assessments and security audits of systems, applications, and networks.
• Support security accreditation and certification processes.
• Validate system configurations and ensure alignment with organizational cybersecurity policies.
• Document incident reports, threat analysis findings, and remediation steps.
• Prepare and deliver security metrics, reports, and dashboards for leadership and stakeholders.
• Maintain detailed records of security operations to support audits and compliance.
• Assist in developing and delivering cybersecurity awareness training to employees.
• Work closely with cybersecurity engineers, system administrators, and developers to implement security best practices.
• Collaborate with external organizations, such as government agencies, contractors, or threat intelligence providers, to enhance cybersecurity posture.

Preferred Qualifications

• Understanding of network protocols, operating systems, and cybersecurity threats (e.g., malware, phishing, ransomware).
• Experience with scripting or automation tools (e.g., Python, PowerShell) is a plus.
• Proficiency with cybersecurity tools, such as SIEM (Splunk, ArcSight), vulnerability management platforms (Tenable, Qualys), and IAM systems.
• Experience with secure software development and DevSecOps practices.