Federal Security Analyst

Groundswell•Washington, DC

6d•$87,953 - $166,390

About The Position

Who Are We? Groundswell is a premier technology integrator resolutely committed to solving the most complex challenges facing federal agencies today. Our name, Groundswell, represents our commitment to be an unstoppable, seismic change in government. Ours is a small company culture with big company reach and results. Are you ready to be audacious, be bold and drive change at a rapid pace? Join us, where we’ll make a greater impact together. What You'll do: Primary Responsibilities: Monitor security alerts, logs, and events across cloud platforms. Investigate and respond to security incidents, coordinating with internal teams as needed. Conduct vulnerability assessments, follow up with system owners on remediation, and maintain a Vulnerability Management Plan for client delivery teams. Assist in maintaining and improving security tools Support the development and enforcement of security policies, standards, and procedures. Manage Authority to Operate (ATO) and Authority to Test (ATT) processes to ensure project teams are in compliance with agency and federal security regulations. Document and maintain the System Security Plan detailing system information and architecture to support the ATO and ATT process. Coordinate with technical integration teams to document Interconnection Security Agreements (ISAs) and Memorandum of Understanding (MOU) or similar documentation. Advise project team on guidance for security protocols and drive conversation with client security teams to resolve cybersecurity issues. Assist in documenting and maintaining Configuration Management Plan, Integration Plans, and similar system documentation requiring cybersecurity guidance.

Requirements

Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field OR equivalent experience.
5+ years of hands-on IT security experience monitoring systems, reviewing security events and logs, supporting incident response, and tracking vulnerabilities through remediation across cloud and on-prem environments.
Experience supporting security compliance and authorization efforts by maintaining security documentation (e.g., SSPs, POA&Ms), assisting with ATO-related activities, and working closely with engineers, delivery teams, and client security stakeholders to address security findings and requirements.
Active Top Secret security clearance or equivalent (e.x. DOE Q)
Local to the DC Metro area strongly preferred

Responsibilities

Monitor security alerts, logs, and events across cloud platforms.
Investigate and respond to security incidents, coordinating with internal teams as needed.
Conduct vulnerability assessments, follow up with system owners on remediation, and maintain a Vulnerability Management Plan for client delivery teams.
Assist in maintaining and improving security tools
Support the development and enforcement of security policies, standards, and procedures.
Manage Authority to Operate (ATO) and Authority to Test (ATT) processes to ensure project teams are in compliance with agency and federal security regulations.
Document and maintain the System Security Plan detailing system information and architecture to support the ATO and ATT process.
Coordinate with technical integration teams to document Interconnection Security Agreements (ISAs) and Memorandum of Understanding (MOU) or similar documentation.
Advise project team on guidance for security protocols and drive conversation with client security teams to resolve cybersecurity issues.
Assist in documenting and maintaining Configuration Management Plan, Integration Plans, and similar system documentation requiring cybersecurity guidance.