Security Analyst/Information Systems Security Officer (ISSO)

About The Position

Requirements

• Deep knowledge of information security principles and best practices
• Experience with computer network penetration testing and techniques
• Strong understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts
• Knowledge of the Federal Government's Risk Management Framework
• Experience with the customers information security guidelines
• Proficiency in security log analysis and interpretation
• Strong analytical and troubleshooting abilities
• Experience managing security tools and technologies
• Understanding of access control protocols and implementations
• Knowledge of risk assessment methodologies
• Certified Information Systems Security Professional (CISSP) certification required
• Ability to communicate complex security concepts to diverse audiences

Nice To Haves

• Deep knowledge of information security principles and best practices
• Experience with computer network penetration testing and techniques
• Strong understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts
• Knowledge of the Federal Government's Risk Management Framework
• Experience with the customers information security guidelines
• Proficiency in security log analysis and interpretation
• Strong analytical and troubleshooting abilities
• Experience managing security tools and technologies
• Understanding of access control protocols and implementations
• Knowledge of risk assessment methodologies
• Certified Information Systems Security Professional (CISSP) certification required
• Ability to communicate complex security concepts to diverse audiences

Responsibilities

• Oversee compliance with the customers information security guidelines and requirements
• Ensure adherence to the Federal Government's Risk Management Framework
• Manage security tools and their orchestration within the environment
• Effectively troubleshoot security issues and prioritize needs and requirements
• Manage security-related activities for development and operations
• Discuss and resolve computer data access requirements with users
• Address security violations and recommend changes to programs as needed
• Analyze and modify plans, procedures, and measures related to enterprise information security
• Identify core and essential underlying reasons, principles, or facts of security data
• Oversee events and processes related to information systems following laws, standards, and regulations
• Coordinate execution of computer security plans with personnel and outside vendors
• Analyze and implement control access protocols for data files
• Enforce adequate security controls across systems
• Evaluate risk levels of data and information processing systems
• Test information processing systems to ensure authenticity and relevance
• Analyze security logs and take appropriate remediation actions
• Conduct security assessments and audits
• Document security incidents and maintain incident response procedures

Benefits

• Industry Competitive Compensation
• Medical and Dental Insurance
• Paid Time Off/Holidays
• 401(k) Retirement Plans with Matching
• Remote Work*
• Paid Training
• Employee Referral Program
• Employee Development Program