Cyber Security Analyst II

About The Position

Requirements

• Two (2) to five (5) years of experience in cybersecurity or information security.
• Demonstrated working knowledge of NIST cybersecurity standards and Special Publications.
• Experience analyzing logs, alerts, and vulnerability data.
• Understanding of network, system, and application security principles.
• Strong documentation, analytical, and communication skills.
• Must be able to obtain and maintain facility credentials/authorization.
• US Citizenship is required for facility credentials/authorization at this work location.

Nice To Haves

• Experience supporting environments that require strict adherence to NIST standards.
• Hands-on experience supporting system authorization, assessments, or continuous monitoring activities aligned with NIST.
• Cybersecurity certifications aligned with NIST principles (e.g., Security+, CySA+, CISSP, or equivalent).

Responsibilities

• Monitor security alerts, logs, and system activity to detect potential cybersecurity threats or policy violations.
• Analyze security events and vulnerabilities; recommend corrective and preventive actions aligned with NIST guidance.
• Support system hardening and secure configuration baselines in accordance with NIST standards.
• Implement, assess, and maintain security controls based on NIST Special Publications.
• Support NIST-based risk management activities, including system categorization, control selection, assessment, authorization support, and continuous monitoring.
• Maintain documentation demonstrating compliance with NIST security requirements.
• Assist in the development and maintenance of System Security Plans (SSPs), risk assessments, and Plans of Action and Milestones (POA&Ms) aligned to NIST standards.
• Participate in cybersecurity incident response activities using NIST-recommended incident handling practices or incident handling as defined by the USG.
• Assist with containment, eradication, recovery, and post-incident analysis.
• Document incidents, response actions, and lessons learned in accordance with NIST guidance.
• Identify, analyze, and track cybersecurity risks in alignment with NIST risk management principles.
• Support vulnerability scanning, assessment, and remediation tracking consistent with NIST recommendations.
• Assist with risk acceptance and residual risk documentation.
• Develop, review, and update cybersecurity policies, procedures, and standard operating procedures aligned with NIST publications.
• Support security awareness activities to reinforce NIST-based cybersecurity best practices across the organization.
• Ensure cybersecurity documentation remains current with evolving NIST standards.

Benefits

• Health, dental, and vision insurance
• Paid time off and holidays
• Retirement benefits (including 401(k) matching)
• Educational reimbursement
• Parental leave
• Employee stock purchase plan
• Tax-saving options
• Disability and life insurance
• Pet insurance