Cyber Security Specialist

About The Position

Requirements

• 7+ years of experience in Cyber Security enforcement, auditing, vulnerability assessment analysis, threat identification and remediation, Cyber Security policy recommendations, physical security, and patch management strategies.
• 2 years of work experience with incident detection, incident response, and forensics.
• Experience with SASE solutions, SIEM solutions, Office 365 Security, and Defender for Endpoint Security.
• Experience utilizing the following tools: CDM/Qualys, Microsoft Defender, Microsoft Sentinel, Sonicwall, iboss, Microsoft Purview.
• Experience planning and implementing Zero Trust Architecture (ZTA).
• Experience utilizing and securing cloud technologies (Azure).
• Experience with Risk Management Framework and Supply Chain Risk Management.
• Ability to obtain a public trust clearance.

Responsibilities

• Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks.
• Troubleshooting security and network problems.
• Responding to all system and/or network security breaches.
• Ensuring that the organization's data and infrastructure are protected by enabling the appropriate security controls.
• Participating in the change management process.
• Testing and identifying network and system vulnerabilities.
• Daily administrative tasks, reporting, and communication with the relevant departments in the organization.
• Determine the impact of new technology or policy on the client’s information security program.
• Where requested, conduct meetings, including preparing agenda, documenting, and recording minutes.
• Provide expert analysis and document preparation for various analytical efforts focused on processes and procedures.
• Create and review various draft documents and provide timely feedback.
• Develop and implement information security program strategic and tactical goals and objectives.
• Develop and implement information security program outreach and communication plans.
• Identify and develop a Performance Management program that includes performance measures, tracking metrics, and trend analysis.
• Generate regular and ad hoc dashboards, reports, and metrics.
• Recommend, develop, and maintain monthly, quarterly, and annual FISMA reporting documents.
• Attend FISMA and CISA Working Group Meetings.
• Using the client’s provided template or tool, maintain a tracking system of all information security related deliverables— regularly scheduled and ad hoc.
• Assist with transforming the organization and governance structure to support the client’s information security initiatives.
• Assist with creating and/or transforming the processes for inquiries, alerts, events, life cycle reviews and security and risk assessments.
• Prepare responses to federal ad hoc reporting requirements.
• Update project management plans yearly as required.
• Report on FISMA Inventory and provide POA&M reports monthly.

Benefits

• paid holidays
• paid time off including sick and vacation leave
• medical, dental and vision insurance
• flexible spending accounts
• short and long term disability
• company paid life insurance
• 401(k) with a company match
• discretionary profit sharing
• tuition reimbursement