ISP Security / Vulnerability Analyst

Scope of Work

Required consultant experience provided by Contractor, shall include:

• At least 6 years of experience using information security tools to identify vulnerabilities in custom application code, commercial software, system configurations, and networks such as vulnerability scanners, endpoint detection and response (EDR) platforms, security information and event management (SIEM) solutions, firewalls, port scanners, intercept proxies, log parsers, IDS/IPS solutions etc.
• At least 8 years of combined IT, network, and security work experience with a broad range of exposure such as systems analysis, digital forensics, networking, web filters, web application vulnerability assessments, application development, database design, and/or system administration.
• Experience in working with third parties to coordinate, monitor, respond to and coordinate cybersecurity threats, incidents, mitigations, and response cycles.
• Experience creating, modifying, and analyzing scripts such as PowerShell and Python.
• Experience creating policy, procedure, and working documents at a high level of proficiency.
• Ability to communicate technical information to broad audiences verbally and in writing.
• Ability to establish and maintain effective working relationships with cross functional teams.
• Experience working independently and as a project team member in security administration.
• Ability to contribute to the capability development and team rapport of the Security Operations Center.
• Experience working in a NIST Cybersecurity Framework aligned security program.

Preferred Experience:

• Hold active information security certifications such as: CEH, CISSP, CISA, CISM, CCNP, CCIE Security, GCIA etc.
• Experience in IT security related to application development and code reviews.
• Experience as a project team leader in security administration.
• Experience creatingautomated processes.
• Experience leveraging artificial intelligence in attack detection, analysis, and response processes.
• Knowledge of the MITRE ATT&CK framework.

Required Duties and Responsibilities of Consultant shall include but are not limited to:

• Performs security assessments of new technologies, new applications, workstations, networks, and network devices prior to implementation.
• Develops scripts, tools, and methodologies to enhance testing and analysis processes.
• Assesses servers and workstations for configuration hardening.
• Provides guidance on vulnerability mitigation, non-compliance, and identification and remediation of malware infestations.
• Gathers and analyzes Open-Source Intelligence (OSINT) to find information disclosures and assess the Department's environment for indicators of compromise.
• Communicates methods employed and findings upon completion of assessments.
• Performs regular vulnerability scans and prioritizes remediations.
• Submits remediation tickets to the responsible technical teams, tracks the progress to closure as per SLAs, and validates the results.
• Supports monitoring, auditing functions, and application testing with creation of test plans, functional testing and identify system vulnerabilities.
• Enforces security policies and procedures by administering and monitoring security profiles, reviews security violation reports, and investigates possible security exceptions, updates, and maintains and documents security controls.
• Prepares status reports on security matters to develop security risk analysis scenarios and response procedures.
• Provides direct support to the business and IT staff for security related issues.
• Represents the security needs of the organization by providing expertise and assistance in all IT projects with regard to security issues.
• Address internal and external audits with supporting audit logs.
• Creation and maintenance of security related documentation.
• Security support off-hours work as required, including weekends, holidays, and 24/7 on call responsibilities.

Education/Certifications

• All Consultants must have earned a bachelor's degree in Computer Science, Management Information Systems (MIS), or other technology related field or equivalent work experience of one (1) year relevant experience for each year of education required.

Required Skills : Systems Analysis,Network Security
Additional Skills : Security Analyst