As the Cyber Security Analyst, the individual will work as a member Cyber Security Team working alongside other Cyber Security Analysts and the Cyber Security Manager. In this role, the Analyst supports the operations with vulnerability management and compliance issues, providing guidance and research, and, where necessary, and when necessary. developing team members, Government personnel, and operations personnel to understand their role in compliance and cyber security. In addition, the individual attends and leads meetings, develops compliance-based risk assessments and vulnerability reports, and scans and validates system vulnerabilities, collaborating with the team, government, and other contractors to support maturing the cyber security across the environment.
Responsibilities
- Acts as the Vulnerability Management Subject Matter Expert (SMEProvide technical expertise to establish/develop a vulnerability management program to analyze and report data from various dashboards and databases (Defender, Gator, SIEMs, Solarwinds, etc)
- Prepares daily, weekly, and monthly reports detailing task and overall network health
- Participates in inspection preparation and engagement, accreditation project, and emergency notifications from service organizations
- Colloberates within the community to assist in non-compliant device remediationPrepares detailed executive reports for security violations, risk evaluation, and any related alerts
- Consults on other projects as needed
- Continues education and learning of new and evolving technologies
- Performs other tasks as required by OSC and the Government contracting office
Required Qualifications/Education, And Experience
- Must have a High School Diploma or equivalent
- Must possess an Active Secret or higher Security Clearance
- Must have and maintain CASP+ certification (DoDI 8570.01 IAM I/IAT II) or higher
- Minimum 5 years cybersecurity professional experience
- Must demonstrate familiarity with vulnerability management
- Must have knowledge of network, physical, systems, and application security practices
- Must be familiar with intrusion detection and prevention measures and practices
- Must be familiar with MS Defender, SIEM, Solarwinds, various intrusion detection programs, and other vulnerability management programs
- Experience with intermediate to advanced use of Microsoft Excel (i.e., using pivot tables, functions, developing reports, etc.)
- Must have prior hands-on experience with vulnerability management programs, risk analysis, and risk management
Preferred Qualifications/Education, And Experience
- 7+ years DoD-based cybersecurity professional experience
- Current , CASP+, Certified EthicalCEH, or other relevant DoDI 8570.01 certifications that demonstrate knowledge and/or technical proficiency
- Experience managing or leading a security operation center (SOC) highly desirable
- Demonstrate expertise with SIEM analytics (e.g., SolarWinds, Splunk, Cortex Data Lake) and SOAR operations
- Experience with supporting Incident Response Programs
- Experience conducting and/or supporting security assessments (i.e., SAV, , CORA, CSSP, etc.)
Equal Employment Opportunity/M/F/disability/protected veteran status