Cyber Security Analyst,

Job Summary :

The Cyber Security Analyst is responsible for safeguarding the organization's IT infrastructure and data by implementing and maintaining security measures, monitoring network traffic for suspicious activity, and troubleshooting security incidents. This role involves developing and enforcing security policies, conducting vulnerability assessments, ensuring compliance with relevant regulations, and creating / updating Information Assurance artifacts. The analyst will also provide technical knowledge and information assurance analysis support, including security assessments of applications and systems.

Location : District of Columbia, United States,

Responsibilities :

• Implementing and maintaining security solutions such as firewalls, intrusion detection systems, antivirus software, and data loss prevention.
• Monitoring network activity for suspicious activity and potential security breaches, including monitoring system logs and events using a Security Information and Event Management (SIEM) tool.
• Performing vulnerability assessments, including vulnerability scanning and testing, and recommending remediation strategies.
• Implementing and monitoring security patches and updates to address known vulnerabilities.
• Investigating and resolving security incidents, including unauthorized access attempts and malware infections.
• Developing and enforcing security policies, procedures, and guidelines to protect sensitive data and systems.
• Ensuring compliance with industry regulations and standards related to IT security.
• Conducting security audits and self-assessments to identify weaknesses in the security posture of the organization's systems.
• Creating and managing Plans of Action and Milestones (POAMs).
• Performing duties within a Governance Risk and Compliance Tool (GRCT).
• Updating cybersecurity documentation.
• Attending related IT and Cybersecurity meetings.
• Attending quarterly Risk Management Workshops.
• Identifying, tracking, maintaining, and updating action items & statuses.
• Developing, researching, reviewing, and updating system security and system documentation.
• Evaluating IT systems and ensuring documentation meets requirements set by OMB, NIST, and FedRAMP standards and guidance, including FISMA reporting requirements.
• Collaborating with staff and team members with documentation review and assisting with creating and updating cybersecurity policies and procedures.
• Assisting in planning, scheduling, and tracking all information systems, and technical documentation work, to meet deliverables in accordance with OMB, NIST, and FedRAMP standards and guidance, including FISMA reporting requirements.
• Capturing meeting minutes and making them available to staff.

Required Skills & Certifications :

Preferred Skills & Certifications :

Special Considerations :

Scheduling :