Information Security Analyst
About The Position
The Space Dynamics Laboratory (SDL) is seeking an Information Security (Infosec) Analyst with a focus on email security, threat analysis, and Cybersecurity Maturity Model Certification (CMMC) compliance. In this role, you will support the identification, analysis, and response to threats, helping to protect the organization from phishing, malware, and advanced persistent threats, while ensuring alignment with the CMMC requirements. You'll work closely with Senior Analysts to monitor secure email gateways, investigate alerts, enhance detection and response strategies, and contribute to CMMC compliance efforts. This includes documenting security processes and maintaining evidence for CMMC audits. This is an entry-level position ideal for recent graduates or professionals with foundational knowledge in cybersecurity and an interest in DoD compliance frameworks.
Requirements
- Bachelor's Degree in Cybersecurity or a related field
- 3-6 years of IT experience with an emphasis in Information Security
- Must possess CompTIA Security+ or Equivalent
- Understanding of NIST 800-171 and CMMC requirements
- Ability to interpret and analyze cyber tools and scanner results
- Hands-on experience with any of the following security tools at any capacity: Email filters, SIEM, IDS/IPS, (EDR), deception, and vulnerability scanning tools
- Working knowledge of email protocols and common threats like phishing, spoofing, and malware delivery
- Familiarity with sandbox analysis tools
- Familiarity with enterprise cloud security environment (Azure, AWS, etc.)
- Willingness to respond to incidents outside of regular business hours as needed
- Excellent analytical, problem-solving, and communication skills
- Ability to work effectively both independently and collaboratively
- Ability to work well under pressure
- Must be able to obtain CMMC Certified Professional (CCP) certification within 6 months of hire
- Must be a US citizen with the ability to obtain and maintain US Government Security Clearance
Nice To Haves
- Basic understanding of scripting (PowerShell, Python, etc.)
- Other relevant Cybersecurity certifications such as, CySA+, SSCP, CEH, Pen-test+, etc.
- Understanding of both Windows and Linux operating systems
- Experience creating documentation i.e. policies, procedures, how-to articles, and/or playbooks
- Basic understanding of risk analysis
Responsibilities
- Monitors security events and alerts from various sources, including SIEM, IDS/IPS, firewalls, honeypots, email filter, and EDR systems
- Maintains and updates anti-phishing training and awareness campaigns
- Contributes to and maintains CMMC efforts
- Investigates and triages phishing reports and suspicious email incidents submitted by users
- Assists in tuning policies and rules for IDS/IPS, email filtering, and sandboxing technologies to reduce false positives and enhance threat detection
- Documents and escalates complex threats to Senior Analysts when needed
- Sandboxes email and software files, and creates comprehensive reports and metrics
- Stays current with emerging threats, vulnerabilities, and security technologies through continuous learning and research
- Assists the Senior Analysts with threat hunting, vulnerability assessments, security audits, and penetration testing
Benefits
- SDL offers competitive salaries and a comprehensive benefits package.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Entry Level
Industry
Professional, Scientific, and Technical Services
Number of Employees
5,001-10,000 employees
