Posted in

Senior Security Analyst

Senior Security Analyst

CompanyGuidehouse
LocationWashington, DC, USA
Salary$113000 – $188000
TypeFull-Time
DegreesBachelor’s
Experience LevelSenior

Requirements

  • An ACTIVE and MAINTAINED SECRET Federal or DoD security clearance
  • Bachelor’s Degree
  • THREE (3) or more years of experience relevant to Cybersecurity or Security Engineering or Security System Design or Security Controls or Cybersecurity Framework or Zero Trust and/or Cloud Security

Responsibilities

  • Analyze and report organizational and system security posture trends.
  • Apply security policies to meet security objectives of the system.
  • Assess adequate access controls based on principles of least privilege and need-to-know, and their effectiveness.
  • Assess all the configuration management processes.
  • Develop procedures and test fail-over for system operations transfer to an alternate site based on system availability requirements.
  • Ensure all systems security operations and maintenance activities are properly documented and updated as necessary.
  • Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
  • Implement security measures to resolve vulnerabilities, mitigate risks and recommend security changes to system or system components as needed.
  • Implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation.
  • Mitigate/correct security deficiencies identified during security/certification testing and/or recommend risk acceptance for the appropriate senior leader or authorized representative.
  • Plan and recommend modifications or adjustments based on exercise results or system environment.
  • Properly document all systems security implementation, operations and maintenance activities and update as necessary.
  • Provides cybersecurity recommendations to leadership based on significant threats and vulnerabilities.
  • Verify and update security documentation reflecting the application/system security design features.
  • Verify minimum security requirements are in place for all applications.

Preferred Qualifications

  • An ACTIVE and MAINTAINED SECRET Federal or DoD security clearance (preferred)
  • Master’s Degree preferred
  • Operational experience designing, operating, troubleshooting Cloud solutions (AWS preferred)
  • Experience migrating systems to Cloud-based solutions
  • Two years designing and deploying systems aligned with Zero Trust Architecture principles, threat scenarios, reference architectures, and governance frameworks.
  • Certifications CySA+, or Security+, CISSP, or CASP+ or CND or relevant certifications
  • Experience in professional services consultancy and federal cyber security industry.
  • Working knowledge of : Network Segmentation, Zero Trust, Security principles and methods – firewalls, demilitarized zones, encryption).
  • Network traffic – Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).
  • IT risk management policies, requirements, and procedures.
  • Configuration management techniques
  • System and network architecture, installation, integration, and optimization of system components
  • PII/PHI data security standards.
  • Network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML).
  • Security controls based on cybersecurity principles and tenets, NIST SP 800-53, CSF.
  • Skill in developing and applying security system access controls, security system design tools, methods, and techniques, security management, network design processes (security objectives, operational objectives, and trade-offs), systems security testing and evaluation methods, use network analysis tools to identify vulnerabilities, systems security testing and evaluation methods.
  • Demonstrated experience providing security engineering and integration support to protect the confidentiality, integrity and availability of an organization’s systems and application data
  • Certification: AWS Certified DevOps (Professional), AWS Certified Security (Specialty), AWS Certified Advanced Networking (Specialty), or Microsoft Certified (Azure Administrator Associate)
  • Demonstrated experience designing, operating, troubleshooting Cloud solutions
  • Demonstrated experience migrating systems to IaaS
  • Strong knowledge of FISMA, FedRAMP, NIST SP 800-53 and other federal cybersecurity related policies, directives, and mandates.
  • Extensive knowledge of application of security technologies including SIEM, DLP, WAF, IPS, firewall, and related tools
  • Demonstrated ability to work independently under general direction
  • Hands-on experience in providing security engineering and integration support to protect the confidentiality, integrity and availability of an organization’s systems and application data.