The Cyber Security Analyst will be responsible for the following:
• MUST have experience in performing Australian (IRAP), Canadian, and UK (Government Cloud & MoD) readiness assessments, implementation, and ongoing monitoring.
• Conduct assessments of the FedRAMP environment to ensure compliance with NIST SP 800-53 controls related to assigned scope.
• Implement and maintain continuous monitoring processes to detect security threats and vulnerabilities related to assigned scope.
• Update and maintain security policies, procedures, and documentation to align with evolving compliance and regulatory standards.
• Conduct regular audits to assess the effectiveness of security controls and identify areas for improvement.
• Provide guidance and support to teams in the implementation and configuration of security tools and technologies.
• Stay up to date with the latest industry trends, technologies, and threat intelligence to proactively address potential security risks.
• Collaborate with external auditors and regulatory agencies during compliance audits.
Qualifications:
• CompTIA Security+ CE
• Strong understanding of and experience with NIST 800-53 Rev 5, FedRAMP, and NIST compliance requirements.
• Extensive knowledge of security practices, standards, and frameworks, including FedRAMP based NIST 800-53 Rev 5.
• Hands-on experience in performing continuous monitoring and incident response.
• Familiarity with security tools and technologies, including SIEM platforms, firewalls, IDS/IPS, and vulnerability scanners. (Tenable, Splunk, AWS)
• Excellent problem-solving skills and the ability to think critically in demanding and high-stress situations.
• Strong communication and interpersonal skills to effectively collaborate with cross-functional teams and articulate complex security concepts to technical and non-technical stakeholders.