Cyber Security Risk Analyst

About The Position

Requirements

• At least 5 years of experience in cybersecurity, information technology, Software Development or related field.
• Know Python, SQL, basic HTML/CSS
• Familiarity with DoD Vulnerability Management (VM) and Risk Management Framework (RMF)
• Knowledge of business intelligence visualization tools
• Excellent communication, collaboration, and problem-solving skills.
• Ability to work independently and as part of a team.
• Minimum of a Bachelor of Science (or higher) in one of the following: computer engineering, computer science, IT, cyber security, or a related field.
• Relevant years of experience may be used in substitution for situations where the candidate does not have a Bachelor's degree in the required field.
• Must have 8140 compliant certification (e.g. GCFA, GCIA, CySA+, GICSP, CFR )
• Minimum of an active Secret Clearance.

Nice To Haves

• Data analytics is preferred in Advana or Qlik, however a general familiarity with R or Python analytics (ex; spark, pandas)

Responsibilities

• Assist in design of innovative solutions and services to support our team and customer in improving our collection and visualization of metrics to support Vulnerability Management (VM), Risk Management Framework (RMF) and to address various Cyber Security Service Provider Inspection requirements to improve the overall risk assessment, better understand performance, improve situational awareness and facilitate the enhanced cyber security posture.
• Provide for potential interoperability between current systems and ensuring timely decision making based on near real-time data availability through data analytics and product development.
• Utilize skills in DoD computing, networking/transmission, cybersecurity policy, and data analytics.
• Develop meaningful and actionable metrics, to include Key Performance Indicators (KPI) and Key Risk Indicators (KRI), as directed by the Government.
• Integrate metrics with cyber readiness framework.
• Analyze and define data requirements and specifications.
• Develop data model(s), integrations, and analytics to enhance cyber readiness assessment and to enable decision support.
• Conduct queries to analyze data sets.
• Conduct trend analysis to identify systemic security issues by analyzing vulnerability and configuration data.
• Analyze future eMASS changes, to include the altering or addition of new data elements and advise product stakeholders, propose solutions, and initiate preventative or corrective action as determined by the stakeholders.
• Monitor health of daily ingests, advise stakeholders when ingest operations are degraded, and propose corrective actions during periods of ingest degradation or failure.
• Perform Extract, Transform, and Load (ETL) Operations.
• Accomplish data ingestion, processing, distribution, and visualization.
• Develop and maintain analytics code repository (Python and SQL) and data visualization programs (Qlik).
• Deploy analytics workloads using Databricks.

Benefits

• meaningful work
• growth opportunities
• work-life balance
• sense of teamwork
• outstanding effort is recognized and rewarded
• camaraderie
• Lunch & Learn sessions
• fun group activities ranging from escape rooms to miniature golf