365 Cybersecurity Analysts jobs in McLean
Vulnerability Assessment (VA) Team Lead
20147 Ashburn, Virginia
TekSynap
Posted 15 days ago
Job Viewed
Job Description
**Responsibilities & Qualifications**
**ACTIVITIES & RESPONSIBILITIES**
Assist the Government in managing Enterprise Information System Vulnerability Management (ISVM) compliance validation; briefing leadership on current and future vulnerabilities, security policies and industry standards; briefing leadership on most impactful vulnerabilities, configurations, and penetration testing efforts; creating and managing all scans in accordance with the scan standardization documentation; performing regularly scheduled (monthly and ad hoc) vulnerability assessments using a master schedule as directed; managing, customizing, and maintaining scan policies, zones, and repositories as they relate to the network; performing scan functions and review scan results to ensure accurate findings; and creating and customizing scan reports and data feeds to be imported / integrated into third party assessment tools. Assist the Government in employing ad hoc or emergency VA scanning to support targeted incident investigation, escalation, and emergency response to security events in accordance with documented procedures. Assist the Government in performing Penetration Testing Support.
**SKILLS**
+ Analyzing vulnerabilities and providing assessments and remediation instructions
+ Knowledgeable to maintain a repository of VA application issues and report application issues to Government VAT Team Lead and SSD Director in applying Information Systems Security principles and methods
+ Experience with Application Security implementation
+ Understanding of Firewall Management and Advanced Threat Protection
+ Familiarity with Access Control, Authorization, Intrusion Prevention and Intrusion Detection
+ Familiar with Protocol Analysis and requirements when handling sensitive and classified Information
+ Familiar with FISMA compliance and Risk Management Framework
+ Support Cyber Briefs for all vulnerability assessment team activities.
+ Assist the Government in providing Vulnerability Assessment, Compliance, and Reporting support to ISSO / ISSM interpreting scan results and recommend remediation plans.
+ Experience with cloud- based security technologies, architecture, and computing and searching, monitoring, and analyzing machine-generated big data is preferred.
**REQUIRED QUALIFICATIONS**
+ Clearance requirement: Secret
+ Experience: Minimum of 5 years' experience performing vulnerability assessments for an enterprise network
+ Education: Bachelor's of Science in computer engineering, computer science, IT or cyber security preferred (or 5 years of relevant work experience in lieu of a degree)
+ Certifications: one of the following certifications: Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP)
**Overview**
We are seeking an experienced **Vulnerability Assessment (VA) Team Lead** in support of a government customer to join our team to provide Security Operations Support (SOC) Services to a government agency whose mission is to protect our Nation's borders from terrorist attacks, to provide law enforcement for over forty (40) Federal agencies, and to protect the revenue of the United States while facilitating trade. The SOC is a single point of management and reporting for information security incidents. The SOC exists to prevent, identify, contain, and eradicate cyber threats to networks through monitoring, intrusion detection, and protective security services to information systems, including local area networks / wide area networks (LAN / WAN), commercial Internet connection, public facing websites, wireless, mobile / cellular, cloud, security devices, servers, and workstations. The SOC is responsible for the overall security of Enterprise-wide information systems and collects, investigates, and reports any suspected and confirmed security violations.
TekSynap is a fast-growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. "Technology moving at the speed of thought" embodies these principles - the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers.
We offer our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays.
Visit us at .
Apply now to explore jobs with us!
The safety and health of our employees is of the utmost importance. Employees are required to comply with any contractually mandated Federal COVID-19 requirements. More information can be foundhere ( .
By applying to a role at TekSynap you are providing consent to receive text messages regarding your interview and employment status. If at any time you would like to opt out of text messaging, respond "STOP".
"As part of the application process, you agree that TekSynap Corporation may retain and use your name, e-mail, and contact information for purposes related to employment consideration".
**Additional Job Information**
**WORK ENVIRONMENT AND PHYSICAL DEMANDS**
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of the job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
+ Location: Ashburn Virginia
+ Remote or In-Person: 100% On site. Remote/Telework not available.
+ Type of environment: Office
+ Noise level: Medium
+ Work schedule: Schedule is day shift Monday - Friday.
+ Amount of Travel: Some travel may be required
**PHYSICAL DEMANDS**
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
**WORK AUTHORIZATION/SECURITY CLEARANCE**
Top Secret (SCI eligible)
**OTHER INFORMATION**
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
TekSynap is a drug-free workplace. We reserve the right to conduct drug testing in accordance with federal, state, and local laws. All employees and candidates may be subject to drug screening if deemed necessary to ensure a safe and compliant working environment.
**EQUAL EMPLOYMENT OPPORTUNITY**
In order to provide equal employment and advancement opportunities to all individuals, employment decisions will be based on merit, qualifications, and abilities. TekSynap does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age, genetic information, or any other characteristic protected by law (referred to as "protected status"). This nondiscrimination policy extends to all terms, conditions, and privileges of employment as well as the use of all company facilities, participation in all company-sponsored activities, and all employment actions such as promotions, compensation, benefits, and termination of employment.
**Job Locations** _US-VA-Ashburn_
**ID** _ _
**Category** _Technical Support/Help Desk_
**Type** _Regular Full-Time_
**ACTIVITIES & RESPONSIBILITIES**
Assist the Government in managing Enterprise Information System Vulnerability Management (ISVM) compliance validation; briefing leadership on current and future vulnerabilities, security policies and industry standards; briefing leadership on most impactful vulnerabilities, configurations, and penetration testing efforts; creating and managing all scans in accordance with the scan standardization documentation; performing regularly scheduled (monthly and ad hoc) vulnerability assessments using a master schedule as directed; managing, customizing, and maintaining scan policies, zones, and repositories as they relate to the network; performing scan functions and review scan results to ensure accurate findings; and creating and customizing scan reports and data feeds to be imported / integrated into third party assessment tools. Assist the Government in employing ad hoc or emergency VA scanning to support targeted incident investigation, escalation, and emergency response to security events in accordance with documented procedures. Assist the Government in performing Penetration Testing Support.
**SKILLS**
+ Analyzing vulnerabilities and providing assessments and remediation instructions
+ Knowledgeable to maintain a repository of VA application issues and report application issues to Government VAT Team Lead and SSD Director in applying Information Systems Security principles and methods
+ Experience with Application Security implementation
+ Understanding of Firewall Management and Advanced Threat Protection
+ Familiarity with Access Control, Authorization, Intrusion Prevention and Intrusion Detection
+ Familiar with Protocol Analysis and requirements when handling sensitive and classified Information
+ Familiar with FISMA compliance and Risk Management Framework
+ Support Cyber Briefs for all vulnerability assessment team activities.
+ Assist the Government in providing Vulnerability Assessment, Compliance, and Reporting support to ISSO / ISSM interpreting scan results and recommend remediation plans.
+ Experience with cloud- based security technologies, architecture, and computing and searching, monitoring, and analyzing machine-generated big data is preferred.
**REQUIRED QUALIFICATIONS**
+ Clearance requirement: Secret
+ Experience: Minimum of 5 years' experience performing vulnerability assessments for an enterprise network
+ Education: Bachelor's of Science in computer engineering, computer science, IT or cyber security preferred (or 5 years of relevant work experience in lieu of a degree)
+ Certifications: one of the following certifications: Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP)
**Overview**
We are seeking an experienced **Vulnerability Assessment (VA) Team Lead** in support of a government customer to join our team to provide Security Operations Support (SOC) Services to a government agency whose mission is to protect our Nation's borders from terrorist attacks, to provide law enforcement for over forty (40) Federal agencies, and to protect the revenue of the United States while facilitating trade. The SOC is a single point of management and reporting for information security incidents. The SOC exists to prevent, identify, contain, and eradicate cyber threats to networks through monitoring, intrusion detection, and protective security services to information systems, including local area networks / wide area networks (LAN / WAN), commercial Internet connection, public facing websites, wireless, mobile / cellular, cloud, security devices, servers, and workstations. The SOC is responsible for the overall security of Enterprise-wide information systems and collects, investigates, and reports any suspected and confirmed security violations.
TekSynap is a fast-growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. "Technology moving at the speed of thought" embodies these principles - the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers.
We offer our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays.
Visit us at .
Apply now to explore jobs with us!
The safety and health of our employees is of the utmost importance. Employees are required to comply with any contractually mandated Federal COVID-19 requirements. More information can be foundhere ( .
By applying to a role at TekSynap you are providing consent to receive text messages regarding your interview and employment status. If at any time you would like to opt out of text messaging, respond "STOP".
"As part of the application process, you agree that TekSynap Corporation may retain and use your name, e-mail, and contact information for purposes related to employment consideration".
**Additional Job Information**
**WORK ENVIRONMENT AND PHYSICAL DEMANDS**
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of the job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
+ Location: Ashburn Virginia
+ Remote or In-Person: 100% On site. Remote/Telework not available.
+ Type of environment: Office
+ Noise level: Medium
+ Work schedule: Schedule is day shift Monday - Friday.
+ Amount of Travel: Some travel may be required
**PHYSICAL DEMANDS**
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
**WORK AUTHORIZATION/SECURITY CLEARANCE**
Top Secret (SCI eligible)
**OTHER INFORMATION**
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
TekSynap is a drug-free workplace. We reserve the right to conduct drug testing in accordance with federal, state, and local laws. All employees and candidates may be subject to drug screening if deemed necessary to ensure a safe and compliant working environment.
**EQUAL EMPLOYMENT OPPORTUNITY**
In order to provide equal employment and advancement opportunities to all individuals, employment decisions will be based on merit, qualifications, and abilities. TekSynap does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age, genetic information, or any other characteristic protected by law (referred to as "protected status"). This nondiscrimination policy extends to all terms, conditions, and privileges of employment as well as the use of all company facilities, participation in all company-sponsored activities, and all employment actions such as promotions, compensation, benefits, and termination of employment.
**Job Locations** _US-VA-Ashburn_
**ID** _ _
**Category** _Technical Support/Help Desk_
**Type** _Regular Full-Time_
View Now
0
Cyber Threat Analysis Division Task Lead
22209 Arlington, Virginia
General Dynamics Information Technology
Posted 15 days ago
Job Viewed
Job Description
**Req ID:** RQ
**Type of Requisition:** Regular
**Clearance Level Must Be Able to Obtain:** Interim Secret
**Public Trust/Other Required:** None
**Job Family:** Program Delivery and Execution
**Skills:**
Deadline Management,Delegate Management,Problem-Solving Strategies
**Experience:**
8 + years of related experience
**US Citizenship Required:**
Yes
**Job Description:**
Project/Task Manager
Seize your opportunity to make a personal impact as a Project/Task Manager supporting our program. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career.
At GDIT, people are our differentiator. As a Project/Task Manager you will help ensure today is safe and tomorrow is smarter. Our work depends on Project/Task Manager joining our team to:
● Provide management and oversight for personnel and activities supporting the Cyber Threat Analysis Program for a major federal agency
● Interface and coordinate with Government leads with key focus on effective, efficient, and compliant contractor support
● Execute proper staffing, providing appropriate, qualified, and sufficient contractor resources to meet specified requirements
HOW A PROJECT/TASK MANAGER WILL MAKE AN IMPACT
● Manages and is responsible for the successful completion of all tasks in assigned project. Supervises at least 15 employees
● Primary contract POC for Division Chief
● Oversees section team leads and administrative staff
● Manages/monitors/measures project and contract deliverables
● Proactively identify, address, and communicate with customer on issues with timeliness and quality of deliverables
● Proactively identify, address, and communicate with customer on issues with contractor performance
● Provide expert guidance and resolution for complex problems affecting the program
● Coordinate contract staff in responding to cross-section tasks and RFIs
● Effectively relay customer guidance to contract staff and hold contract staff accountable for following guidance
● Conduct lessons learned meetings with government leadership, contractors, and stakeholders and incorporate responsive actions taken to ensure prior missteps are not repeated
● Liaise with other task managers across the program to ensure effective communication amongst divisions
● During directorate-wide projects/events, be able to assist with operations and logistics functions (e.g. coordinating appropriate staffing for teams from the division)
● Create, implement, and maintain professional development training plans for contractor staff to keep skills current with industry
● Create, implement, and maintain maturity models for each section, in line with government direction for program development
Qualifications/Expectations:
● Take initiative, and be proactive and confident in problem solving
● Strong knowledge of cyber threat intelligence and analysis
● Strong attention to detail and specific requirements
● _Expertly manage a high volume of different, complex tasks at the same time_
● Expert ability to delegate
● Identify, process, and effectively utilize existing resources
● Meet deadlines and clearly communicate when/why deadlines won't be met
● _Effectively communicate clearly and concisely with leadership, staff, and peers_
● Adapt based on constructive feedback and changing program needs
WHAT YOU'LL NEED TO SUCCEED:
● Education: Bachelor of Arts/Bachelor of Science with Cyber Experience
● Required Experience: 8-10+ years of related experience
● Required Technical Skills: 3-5 years of leadership experience across cross functional and highly technical teams; understanding of analytic tradecraft and the intelligence cycle; CISSP or equivalent preferred; and PMP preferred
● Security Clearance Level: Secret
● Location: On site five days weekly in Rosslyn, VA
●**US Citizenship Required
GDIT IS YOUR PLACE:
● 401K with company match
● Comprehensive health and wellness packages
● Internal mobility team dedicated to helping you own your career
● Professional growth opportunities including paid education and certifications
● Cutting-edge technology you can learn from
● Rest and recharge with paid vacation and holidays
The likely salary range for this position is $119,000 - $161,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
Join our Talent Community to stay up to date on our career opportunities and events at Opportunity Employer / Individuals with Disabilities / Protected Veterans
**Type of Requisition:** Regular
**Clearance Level Must Be Able to Obtain:** Interim Secret
**Public Trust/Other Required:** None
**Job Family:** Program Delivery and Execution
**Skills:**
Deadline Management,Delegate Management,Problem-Solving Strategies
**Experience:**
8 + years of related experience
**US Citizenship Required:**
Yes
**Job Description:**
Project/Task Manager
Seize your opportunity to make a personal impact as a Project/Task Manager supporting our program. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career.
At GDIT, people are our differentiator. As a Project/Task Manager you will help ensure today is safe and tomorrow is smarter. Our work depends on Project/Task Manager joining our team to:
● Provide management and oversight for personnel and activities supporting the Cyber Threat Analysis Program for a major federal agency
● Interface and coordinate with Government leads with key focus on effective, efficient, and compliant contractor support
● Execute proper staffing, providing appropriate, qualified, and sufficient contractor resources to meet specified requirements
HOW A PROJECT/TASK MANAGER WILL MAKE AN IMPACT
● Manages and is responsible for the successful completion of all tasks in assigned project. Supervises at least 15 employees
● Primary contract POC for Division Chief
● Oversees section team leads and administrative staff
● Manages/monitors/measures project and contract deliverables
● Proactively identify, address, and communicate with customer on issues with timeliness and quality of deliverables
● Proactively identify, address, and communicate with customer on issues with contractor performance
● Provide expert guidance and resolution for complex problems affecting the program
● Coordinate contract staff in responding to cross-section tasks and RFIs
● Effectively relay customer guidance to contract staff and hold contract staff accountable for following guidance
● Conduct lessons learned meetings with government leadership, contractors, and stakeholders and incorporate responsive actions taken to ensure prior missteps are not repeated
● Liaise with other task managers across the program to ensure effective communication amongst divisions
● During directorate-wide projects/events, be able to assist with operations and logistics functions (e.g. coordinating appropriate staffing for teams from the division)
● Create, implement, and maintain professional development training plans for contractor staff to keep skills current with industry
● Create, implement, and maintain maturity models for each section, in line with government direction for program development
Qualifications/Expectations:
● Take initiative, and be proactive and confident in problem solving
● Strong knowledge of cyber threat intelligence and analysis
● Strong attention to detail and specific requirements
● _Expertly manage a high volume of different, complex tasks at the same time_
● Expert ability to delegate
● Identify, process, and effectively utilize existing resources
● Meet deadlines and clearly communicate when/why deadlines won't be met
● _Effectively communicate clearly and concisely with leadership, staff, and peers_
● Adapt based on constructive feedback and changing program needs
WHAT YOU'LL NEED TO SUCCEED:
● Education: Bachelor of Arts/Bachelor of Science with Cyber Experience
● Required Experience: 8-10+ years of related experience
● Required Technical Skills: 3-5 years of leadership experience across cross functional and highly technical teams; understanding of analytic tradecraft and the intelligence cycle; CISSP or equivalent preferred; and PMP preferred
● Security Clearance Level: Secret
● Location: On site five days weekly in Rosslyn, VA
●**US Citizenship Required
GDIT IS YOUR PLACE:
● 401K with company match
● Comprehensive health and wellness packages
● Internal mobility team dedicated to helping you own your career
● Professional growth opportunities including paid education and certifications
● Cutting-edge technology you can learn from
● Rest and recharge with paid vacation and holidays
The likely salary range for this position is $119,000 - $161,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
Join our Talent Community to stay up to date on our career opportunities and events at Opportunity Employer / Individuals with Disabilities / Protected Veterans
View Now
1
Information Security Analyst
20001 Washington, District Of Columbia
$90000 Annually
WhatJobs
Posted 7 days ago
Job Viewed
Job Description
Our client is seeking a vigilant and skilled Information Security Analyst to join their dedicated team in **Washington, D.C., US**. This role is crucial for safeguarding the organization's digital assets, networks, and sensitive data from evolving cyber threats. The successful candidate will be responsible for monitoring security systems, detecting and responding to security incidents, conducting vulnerability assessments, and implementing security best practices. You will play a key part in developing and maintaining the organization's overall security posture, ensuring compliance with industry regulations and internal policies. This position requires a strong technical background and a proactive approach to threat mitigation.
We are looking for an individual with a Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field, along with at least 3 years of experience in information security. Demonstrable experience with security information and event management (SIEM) tools, intrusion detection/prevention systems (IDS/IPS), firewalls, and endpoint security solutions is essential. Familiarity with cybersecurity frameworks such as NIST or ISO 27001 is required. The candidate should possess strong analytical and problem-solving skills, with the ability to investigate complex security issues. Excellent communication skills are needed to articulate security risks and recommendations to both technical and non-technical stakeholders. Relevant certifications such as CompTIA Security+, CISSP, or CISM are highly desirable. This role offers a challenging and rewarding opportunity to protect critical information in a high-stakes environment.
Key Responsibilities:
We are looking for an individual with a Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field, along with at least 3 years of experience in information security. Demonstrable experience with security information and event management (SIEM) tools, intrusion detection/prevention systems (IDS/IPS), firewalls, and endpoint security solutions is essential. Familiarity with cybersecurity frameworks such as NIST or ISO 27001 is required. The candidate should possess strong analytical and problem-solving skills, with the ability to investigate complex security issues. Excellent communication skills are needed to articulate security risks and recommendations to both technical and non-technical stakeholders. Relevant certifications such as CompTIA Security+, CISSP, or CISM are highly desirable. This role offers a challenging and rewarding opportunity to protect critical information in a high-stakes environment.
Key Responsibilities:
- Monitor security alerts and respond to incidents.
- Conduct vulnerability scans and penetration testing.
- Implement and manage security controls.
- Develop and update security policies and procedures.
- Perform security risk assessments.
- Analyze security logs and system events.
- Provide security awareness training to employees.
Apply Now
2
Information Security Analyst
20001 Washington, District Of Columbia
$80000 Annually
WhatJobs
Posted 7 days ago
Job Viewed
Job Description
Our client, a leading organization committed to maintaining the highest standards of digital security, is seeking a diligent and proactive Information Security Analyst to join their team in Washington, D.C., US . This hybrid role offers a blend of on-site collaboration and remote flexibility, focusing on protecting sensitive data and mitigating cyber threats. You will be responsible for monitoring security systems, identifying potential vulnerabilities, responding to security incidents, and implementing security best practices across the organization's IT infrastructure. Key responsibilities include conducting security risk assessments, analyzing security logs and alerts, developing and enforcing security policies and procedures, and staying current with emerging security threats and technologies. You will also play a role in security awareness training for employees and assist in security audits and compliance efforts. A Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, coupled with 3-5 years of experience in information security, is required. Relevant certifications such as CompTIA Security+, CISSP, or CISM are highly desirable. Strong knowledge of network security, firewalls, intrusion detection/prevention systems, endpoint security, and cryptography is essential. Excellent analytical, problem-solving, and communication skills are critical for effectively addressing security challenges and collaborating with various departments. This role requires an individual who is detail-oriented, possesses strong ethical principles, and can work effectively both independently and as part of a team in a hybrid environment. You will contribute to safeguarding the organization's digital assets and ensuring the confidentiality, integrity, and availability of information systems. This is a significant opportunity to advance your career in a crucial field protecting against evolving cyber threats.
Apply Now
3
Information Security Analyst Advisor
20701 Annapolis Junction, Maryland
General Dynamics Information Technology
Posted today
Job Viewed
Job Description
**Req ID:** RQ
**Type of Requisition:** Regular
**Clearance Level Must Be Able to Obtain:** Top Secret SCI + Polygraph
**Public Trust/Other Required:** None
**Job Family:** Cyber and IT Risk Management
**Skills:**
Computer Security,Information System Security,Security Information,Security Requirements,System Security
**Experience:**
10 + years of related experience
**US Citizenship Required:**
Yes
**Job Description:**
Provides support for a program, organization, system, or enclave's information assurance program. Provides support for proposing, coordinating, implementing, and enforcing nformation systems security policies, standards,
and methodologies. Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed. Assists with the management of security aspects of the information system and performs day-to-day security operations of the system. Evaluate security solutions to ensure they meet security requirements for processing classified information. Performs vulnerability/risk assessment analysis to support certification and accreditation. Provides configuration management (CM) for information system security software, hardware, and firmware. Manages changes to system and assesses the security impact of those changes. Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Supports security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF).
+ Provide support to senior ISSOs for implementing, and enforcing information systems security policies, standards, and methodologies.
+ Assist with preparation and maintenance of documentation.
+ Assist in the evaluation of security solutions to ensure they meet security requirements for processing classified information.
+ Assist with the CM for information system security software, hardware, and firmware (U) Maintain records on workstations, servers, routers, firewalls, intelligent hubs , network switches, etc. to include system upgrades.
+ Propose, coordinate, implement, and enforce information systems security policies, standards, and methodologies.
+ Develop and maintain documentation for C&A in accordance with ODNI and DoD policies.
+ Provide CM for security-relevant information system software, hardware, and firmware.
+ Develop system security policy and ensures compliance.
+ Evaluate security solutions to ensure they meet security requirements for processing classified information.
+ Maintain operational security posture for an information system or program.
+ Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system, program, or enclave.
+ Develop and update the system security plan and other IA documentation.
+ Assist with the management of security aspects of the information system and perform day-today security operations of the system.
+ Administer the user identification and authentication mechanism of the Information System (IS).
+ Obtain C&A for ISs under their purview.
+ Provide support for a program, organization, system, or enclave's information assurance program.
+ Plan and coordinate the IT security programs and policies.
+ Manage and control changes to the system and assessing the security impact of those changes.
+ Serve as the Approval Authority for ISs under their control.
+ Ten (10) years experience as an ISSO on programs and contracts of similar scope, type, and complexity is required. Experience is to include at least two (2) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools.
+ Bachelor's degree in Computer Science or related discipline from an
+ accredited college or university is required.
+ DoD 8570 compliance with Information Assurance Management (IAM) Level I or higher is required. Four (4) years of additional experience as an ISSO may be substituted for a bachelor's degree.
GDIT IS YOUR PLACE:
● Full-flex work week to own your priorities at work and at home
● 401K with company match
● Comprehensive health and wellness packages
● Internal mobility team dedicated to helping you own your career
● Professional growth opportunities including paid education and certifications
● Cutting-edge technology you can learn from
The likely salary range for this position is $114,750 - $155,250. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
Join our Talent Community to stay up to date on our career opportunities and events at Opportunity Employer / Individuals with Disabilities / Protected Veterans
**Type of Requisition:** Regular
**Clearance Level Must Be Able to Obtain:** Top Secret SCI + Polygraph
**Public Trust/Other Required:** None
**Job Family:** Cyber and IT Risk Management
**Skills:**
Computer Security,Information System Security,Security Information,Security Requirements,System Security
**Experience:**
10 + years of related experience
**US Citizenship Required:**
Yes
**Job Description:**
Provides support for a program, organization, system, or enclave's information assurance program. Provides support for proposing, coordinating, implementing, and enforcing nformation systems security policies, standards,
and methodologies. Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed. Assists with the management of security aspects of the information system and performs day-to-day security operations of the system. Evaluate security solutions to ensure they meet security requirements for processing classified information. Performs vulnerability/risk assessment analysis to support certification and accreditation. Provides configuration management (CM) for information system security software, hardware, and firmware. Manages changes to system and assesses the security impact of those changes. Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Supports security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF).
+ Provide support to senior ISSOs for implementing, and enforcing information systems security policies, standards, and methodologies.
+ Assist with preparation and maintenance of documentation.
+ Assist in the evaluation of security solutions to ensure they meet security requirements for processing classified information.
+ Assist with the CM for information system security software, hardware, and firmware (U) Maintain records on workstations, servers, routers, firewalls, intelligent hubs , network switches, etc. to include system upgrades.
+ Propose, coordinate, implement, and enforce information systems security policies, standards, and methodologies.
+ Develop and maintain documentation for C&A in accordance with ODNI and DoD policies.
+ Provide CM for security-relevant information system software, hardware, and firmware.
+ Develop system security policy and ensures compliance.
+ Evaluate security solutions to ensure they meet security requirements for processing classified information.
+ Maintain operational security posture for an information system or program.
+ Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system, program, or enclave.
+ Develop and update the system security plan and other IA documentation.
+ Assist with the management of security aspects of the information system and perform day-today security operations of the system.
+ Administer the user identification and authentication mechanism of the Information System (IS).
+ Obtain C&A for ISs under their purview.
+ Provide support for a program, organization, system, or enclave's information assurance program.
+ Plan and coordinate the IT security programs and policies.
+ Manage and control changes to the system and assessing the security impact of those changes.
+ Serve as the Approval Authority for ISs under their control.
+ Ten (10) years experience as an ISSO on programs and contracts of similar scope, type, and complexity is required. Experience is to include at least two (2) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools.
+ Bachelor's degree in Computer Science or related discipline from an
+ accredited college or university is required.
+ DoD 8570 compliance with Information Assurance Management (IAM) Level I or higher is required. Four (4) years of additional experience as an ISSO may be substituted for a bachelor's degree.
GDIT IS YOUR PLACE:
● Full-flex work week to own your priorities at work and at home
● 401K with company match
● Comprehensive health and wellness packages
● Internal mobility team dedicated to helping you own your career
● Professional growth opportunities including paid education and certifications
● Cutting-edge technology you can learn from
The likely salary range for this position is $114,750 - $155,250. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
Join our Talent Community to stay up to date on our career opportunities and events at Opportunity Employer / Individuals with Disabilities / Protected Veterans
View Now
4
Junior Information Security Analyst
22151 Springfield, Virginia
System One
Posted 14 days ago
Job Viewed
Job Description
Junior Information Security Analyst
Springfield, VA - onsite
Compensation: $75,000 - $83,500 annually
Security Clearance: Secret clearance is required
DUTIES AND RESPONSIBILITIES:
- Review cyber intelligence and identify how current threats affect US BICES networks.
- Perform cyber detection and incident response activities for a large program; coordinates with government program staff, USAF, and other government agencies to assist in the creation, dissemination, direction, and auditing of program policy, standards, and operating procedures.
- Review cyber events and document cybersecurity incidents utilizing ServiceNow.
- Produce after action reports following closure of cybersecurity incidents.
- This position will work within cybersecurity environment monitoring, analyzing, and responding to cybersecurity events and incidents not limited to; Analysis of data within SPLUNK, IDS/IPS, ACAS, ESS (HBSS), FIREPOWER, and security related activities to secure and harden systems.
- Work with vendors to ensure the DCO tool suites detect and capture required cyber incidents, to include the latest industry threats and zero-days, etc.
- Review intelligence reports and provide a daily cyber assessment on the impact to US BICES networks.
- Recognize and codify attacker tools, tactics, and procedures (TTPs) in indicators of compromise (IOCs) that can be applied to current and future investigations
- Utilize network and endpoint defensive tools to identify and analyze potential breaches or threat activity.
- Research and develop methods of tracking and detecting malicious activity within a network
- Be available for after-hours support when required. Incident response is a vital position to respond to critical cyber-attacks, and our Enterprise is a 24/7 operation.
- Participate in daily use of threat intelligence, analysis of anomalous log data and results of brainstorming sessions to detect and eradicate threat actors and protection teams on customer's networks.
- Perform malware analysis with DCO tools.
- Create, modify, and tune IDS/IDPS Signature Rule Generation (Snort)
- Create, modify, and tune Splunk dashboards, reports, and alerts related to real-time detection and incident response.
- Utilize available resources to conduct Cybersecurity activities, and report to senior GDIT and government personnel on overall program security posture.
- Communicate tactical and strategic threat information to Government leadership, Cybersecurity Operations Team and the Assessment & Authorization Team to assist them in making cyber risk decisions and to mitigate threats.
- Coordinate with USAF, DISA, and other organizations in support of audits and inspections and provides all necessary documentation as required for Blue Team, Red Team, CPT, BGX Cert, SAVs, CVAs, ST&Es, and CCRI
- Communicates alerts to agencies regarding intrusions and compromises to their network infrastructure, applications, and operating systems
- Assists with implementation of countermeasures or mitigating controls.
- Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices.
- Work with the Information Assurance Team, Security Managers and Government ISSM to ensure any Data Spills are handled appropriately. Manage the Data Spill Process, working with external agencies as required to ensure cleanup and mitigation is accomplished within required times as set out by government.
- Provides guidance and work leadership to less experienced technical staff members.
- Maintains current knowledge of relevant technology as assigned.
- Participates in special projects as required.
- Provide incident detection through understanding malware and how to defend and mitigate infections. Triage malware, extracting relevant host and network-based indicators from malware samples.
REQUIREMENTS AND QUALIFICATIONS:
- A Junior-level person within a labor category should have three (3) or more years of experience performing work related to the labor category functional description (or functional requirement).
- Two (2) or more years of a specific functional requirement pertaining specifically to the labor category (e.g. a System Engineer must have at least two years performing duties specific to System Engineering) while the other year must pertain to a related labor category (e.g. any other engineer discipline) and a component of the DoD relating to the PWS task areas being supported.
- A Junior level person is typically responsible for assisting more senior positions and/or performing functional duties under the oversight of more senior positions.
Mandatory Skills:
- Certified Computer Security Incident Response
- Cyber Security
- Direct experience in the implementation, administration, and configuration of Trellix ePO in a global enterprise environment
- Knowledge of RMF, Trellix ePO, NESSUS, SCAP, and vulnerability scanning
- Splunk
Desired Skills:
- Experience reviewing network, host, and firewall security logs
System One, and its subsidiaries including Joulé, ALTA IT Services, and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.
System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.
#M2
#LI-VH1
#DI-VH1
Ref: #850-Rockville (ALTA IT)
System One, and its subsidiaries including Joulé, ALTA IT Services, CM Access, TPGS, and MOUNTAIN, LTD., are leaders in delivering workforce solutions and integrated services across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible full-time employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.
System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.
Springfield, VA - onsite
Compensation: $75,000 - $83,500 annually
Security Clearance: Secret clearance is required
DUTIES AND RESPONSIBILITIES:
- Review cyber intelligence and identify how current threats affect US BICES networks.
- Perform cyber detection and incident response activities for a large program; coordinates with government program staff, USAF, and other government agencies to assist in the creation, dissemination, direction, and auditing of program policy, standards, and operating procedures.
- Review cyber events and document cybersecurity incidents utilizing ServiceNow.
- Produce after action reports following closure of cybersecurity incidents.
- This position will work within cybersecurity environment monitoring, analyzing, and responding to cybersecurity events and incidents not limited to; Analysis of data within SPLUNK, IDS/IPS, ACAS, ESS (HBSS), FIREPOWER, and security related activities to secure and harden systems.
- Work with vendors to ensure the DCO tool suites detect and capture required cyber incidents, to include the latest industry threats and zero-days, etc.
- Review intelligence reports and provide a daily cyber assessment on the impact to US BICES networks.
- Recognize and codify attacker tools, tactics, and procedures (TTPs) in indicators of compromise (IOCs) that can be applied to current and future investigations
- Utilize network and endpoint defensive tools to identify and analyze potential breaches or threat activity.
- Research and develop methods of tracking and detecting malicious activity within a network
- Be available for after-hours support when required. Incident response is a vital position to respond to critical cyber-attacks, and our Enterprise is a 24/7 operation.
- Participate in daily use of threat intelligence, analysis of anomalous log data and results of brainstorming sessions to detect and eradicate threat actors and protection teams on customer's networks.
- Perform malware analysis with DCO tools.
- Create, modify, and tune IDS/IDPS Signature Rule Generation (Snort)
- Create, modify, and tune Splunk dashboards, reports, and alerts related to real-time detection and incident response.
- Utilize available resources to conduct Cybersecurity activities, and report to senior GDIT and government personnel on overall program security posture.
- Communicate tactical and strategic threat information to Government leadership, Cybersecurity Operations Team and the Assessment & Authorization Team to assist them in making cyber risk decisions and to mitigate threats.
- Coordinate with USAF, DISA, and other organizations in support of audits and inspections and provides all necessary documentation as required for Blue Team, Red Team, CPT, BGX Cert, SAVs, CVAs, ST&Es, and CCRI
- Communicates alerts to agencies regarding intrusions and compromises to their network infrastructure, applications, and operating systems
- Assists with implementation of countermeasures or mitigating controls.
- Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices.
- Work with the Information Assurance Team, Security Managers and Government ISSM to ensure any Data Spills are handled appropriately. Manage the Data Spill Process, working with external agencies as required to ensure cleanup and mitigation is accomplished within required times as set out by government.
- Provides guidance and work leadership to less experienced technical staff members.
- Maintains current knowledge of relevant technology as assigned.
- Participates in special projects as required.
- Provide incident detection through understanding malware and how to defend and mitigate infections. Triage malware, extracting relevant host and network-based indicators from malware samples.
REQUIREMENTS AND QUALIFICATIONS:
- A Junior-level person within a labor category should have three (3) or more years of experience performing work related to the labor category functional description (or functional requirement).
- Two (2) or more years of a specific functional requirement pertaining specifically to the labor category (e.g. a System Engineer must have at least two years performing duties specific to System Engineering) while the other year must pertain to a related labor category (e.g. any other engineer discipline) and a component of the DoD relating to the PWS task areas being supported.
- A Junior level person is typically responsible for assisting more senior positions and/or performing functional duties under the oversight of more senior positions.
Mandatory Skills:
- Certified Computer Security Incident Response
- Cyber Security
- Direct experience in the implementation, administration, and configuration of Trellix ePO in a global enterprise environment
- Knowledge of RMF, Trellix ePO, NESSUS, SCAP, and vulnerability scanning
- Splunk
Desired Skills:
- Experience reviewing network, host, and firewall security logs
System One, and its subsidiaries including Joulé, ALTA IT Services, and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.
System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.
#M2
#LI-VH1
#DI-VH1
Ref: #850-Rockville (ALTA IT)
System One, and its subsidiaries including Joulé, ALTA IT Services, CM Access, TPGS, and MOUNTAIN, LTD., are leaders in delivering workforce solutions and integrated services across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible full-time employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.
System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.
View Now
5
Senior Information Security Analyst
20001 Washington, District Of Columbia
$125000 Annually
WhatJobs
Posted 1 day ago
Job Viewed
Job Description
Our client is seeking a highly skilled and experienced Senior Information Security Analyst to join their dedicated security team in Washington, D.C., US . This is an on-site position where you will be at the forefront of protecting our organization's digital assets and critical infrastructure. You will be responsible for developing, implementing, and maintaining comprehensive security measures to safeguard against cyber threats. The ideal candidate will possess a deep understanding of security principles, threat intelligence, risk management, and incident response. You will play a key role in vulnerability assessments, penetration testing, security architecture reviews, and the continuous improvement of our security posture. This role requires a proactive mindset, excellent analytical skills, and the ability to respond effectively to security incidents.
Key responsibilities include:
We require a Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, with a minimum of 5 years of progressive experience in information security. Relevant certifications such as CISSP, CISM, or CEH are highly desirable. Proven experience with security technologies such as firewalls, IDS/IPS, SIEM, and endpoint protection is essential. Strong knowledge of network protocols, operating systems, and cloud security principles is required. Excellent analytical, problem-solving, and communication skills are a must. You will be part of a team dedicated to maintaining a secure environment, and your contributions will be vital to our ongoing success. This is a challenging and rewarding opportunity to make a significant impact in the field of cybersecurity.
Key responsibilities include:
- Developing and implementing robust information security policies and procedures.
- Conducting regular vulnerability assessments and penetration tests to identify security weaknesses.
- Monitoring security systems and networks for suspicious activity and potential threats.
- Leading incident response efforts, including investigation, containment, and remediation of security breaches.
- Managing security awareness training programs for employees.
- Evaluating and recommending new security technologies and solutions.
- Collaborating with IT teams to ensure secure system configurations and network design.
- Staying current with emerging cybersecurity threats and industry best practices.
- Developing and maintaining security documentation and reporting.
- Ensuring compliance with relevant regulatory requirements and standards.
We require a Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, with a minimum of 5 years of progressive experience in information security. Relevant certifications such as CISSP, CISM, or CEH are highly desirable. Proven experience with security technologies such as firewalls, IDS/IPS, SIEM, and endpoint protection is essential. Strong knowledge of network protocols, operating systems, and cloud security principles is required. Excellent analytical, problem-solving, and communication skills are a must. You will be part of a team dedicated to maintaining a secure environment, and your contributions will be vital to our ongoing success. This is a challenging and rewarding opportunity to make a significant impact in the field of cybersecurity.
Apply Now
Be The First To Know
About the latest Cybersecurity analysts Jobs in McLean !
6
Senior Information Security Analyst
20001 Washington, District Of Columbia
$130000 Annually
WhatJobs
Posted 3 days ago
Job Viewed
Job Description
Our client is seeking a highly skilled and proactive Senior Information Security Analyst to bolster their cybersecurity defenses. This position is fully remote, allowing you to work from anywhere in the US. You will be responsible for protecting the organization's information assets by identifying and mitigating security risks, developing and implementing security policies, and responding to security incidents. Your role will involve conducting vulnerability assessments and penetration testing, analyzing security logs, and recommending security enhancements. You will also play a key role in developing and delivering security awareness training to employees. The ideal candidate possesses a deep understanding of cybersecurity principles, threat landscapes, and best practices. Experience with security tools such as SIEM, IDS/IPS, firewalls, and endpoint protection solutions is essential. You should have a proven track record in incident response, risk management, and security architecture. Strong analytical, problem-solving, and communication skills are required. Relevant certifications such as CISSP, Security+, or CISM are highly desirable. A bachelor's degree in Computer Science, Information Technology, or a related field, along with at least 5 years of experience in information security, is required. This is a critical role for safeguarding our digital infrastructure against evolving cyber threats.
Apply Now
7
Senior Information Security Analyst
20001 Washington, District Of Columbia
$120000 Annually
WhatJobs
Posted 4 days ago
Job Viewed
Job Description
Our client, a prominent organization in the nation's capital, is seeking a highly skilled and proactive Senior Information Security Analyst. This hybrid role offers a balance of remote work and in-office presence in Washington, D.C., US , allowing for strategic collaboration and focused work. You will be instrumental in safeguarding sensitive data and critical infrastructure by developing, implementing, and monitoring robust security measures. The ideal candidate has extensive experience in cybersecurity, risk assessment, incident response, and compliance frameworks.
Responsibilities:
Responsibilities:
- Develop, implement, and manage information security policies, procedures, and standards.
- Conduct risk assessments, vulnerability analyses, and penetration testing to identify security weaknesses.
- Monitor security systems (e.g., SIEM, IDS/IPS) and respond to security incidents, breaches, and anomalies in a timely and effective manner.
- Implement and maintain security controls across networks, systems, and applications.
- Ensure compliance with relevant security regulations and frameworks (e.g., NIST, ISO 27001, GDPR, CMMC).
- Develop and deliver security awareness training programs for employees.
- Manage security incident response plans and conduct post-incident analysis.
- Evaluate and recommend new security technologies and solutions to enhance the organization's security posture.
- Collaborate with IT teams and other stakeholders to integrate security into the system development lifecycle.
- Stay current with the latest cybersecurity threats, trends, and best practices.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 5 years of experience in information security, cybersecurity operations, or IT risk management.
- Strong understanding of cybersecurity principles, network security, and threat landscapes.
- Experience with security tools such as SIEM, firewalls, endpoint detection and response (EDR), and vulnerability scanners.
- Knowledge of incident response procedures and digital forensics.
- Familiarity with common security frameworks and compliance requirements.
- Relevant certifications such as CISSP, CISM, Security+, or CEH are highly desirable.
- Excellent analytical, problem-solving, and critical thinking skills.
- Strong communication and interpersonal skills, with the ability to explain technical security concepts to both technical and non-technical audiences.
- Ability to work independently and collaboratively in a hybrid work environment.
Apply Now
8
Senior Information Security Analyst
20001 Washington, District Of Columbia
$110000 Annually
WhatJobs
Posted 7 days ago
Job Viewed
Job Description
Our client, a leading organization based in Washington, D.C. , is seeking a Senior Information Security Analyst to bolster its cybersecurity defenses. This role is vital in protecting sensitive company data and systems from evolving threats. You will be responsible for monitoring security alerts, investigating security incidents, and implementing appropriate countermeasures. Key responsibilities include conducting vulnerability assessments, performing penetration testing, and developing and enforcing security policies and procedures. The ideal candidate possesses a comprehensive understanding of cybersecurity principles, threat landscapes, and incident response protocols. Experience with security information and event management (SIEM) tools, firewalls, intrusion detection/prevention systems, and endpoint security solutions is required. You will work closely with IT teams to ensure security is integrated into all aspects of the technology infrastructure. Responsibilities include developing security awareness training programs, managing security audits, and staying abreast of the latest security threats and technologies. A Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field is required; relevant security certifications (e.g., CISSP, CEH) are highly desirable. A minimum of 5 years of experience in information security, with a focus on analysis and incident response, is essential. Proven experience in security architecture, risk management, and compliance is a plus. Strong analytical, problem-solving, and communication skills are necessary. This is a hybrid role, based out of our Washington, D.C. office, offering flexibility between remote work and in-office collaboration.
Apply Now
9