IT Security Analyst - Operations
Apply NowCompany: ECS
Location: Arlington, VA 22204
Description:
ECS is seeking an IT Security Analyst - Operations to work in our Arlington, VA office.
Implements and interprets the requirements for agency compliance with policy directives governing IT infrastructure protection.
Executes USPSOIG security policy and compliance management program
o Identifies current and potential IT security risks and recommends mitigation strategies
o Monitors agency compliance with infrastructure protection requirements across IT programs
o Participates in the development of security policies
o Participates in the certification and accreditation of OIG systems
Executes security related operational activities
o Manages security incident detection, response, remediation
o Conducts cyber threat and vulnerability analysis and remediation
o Configures and monitors security using Microsoft enterprise solutions; assessing and assist in remediation of Microsoft enterprise vulnerabilities
o Develops security metrics and manages reporting and compliance
o Serves as CIRT/CERT member
o Supports operational implementation of FISMA/NIST standards
o Conducts Computer Security Forensics
o Operates Security Tools, monitoring, response, and reporting including IPS/IDS, web content filtering, Advanced Malware Protection, Security Incident and Event Management, Vulnerability Identification and Analysis, security logging, Anti-malware, multi-factor authentication, password protection and secure document sharing and collaboration solutions. ((Windows Defender, Cisco Umbrella, Sentinel SIEM, Rapid7, HCL AppScan and Nessus scanners, LastPass password management, eShare secure file sharing & Collaboration)
o Manages IT Security awareness training program in cooperation with Learning Management team including developing and delivering IT Security awareness training modules.
o Manages multi-factor authentication system in coordination with Service Desk
o Responds to IT Security trouble tickets generated by customers and IT staff.
o Identifies solutions, works with customer and OCIO team to execute solutions and manages ticket input, update and resolution in OCIO ticketing system to maintain service level agreements.
Supports Security Engineering and tech solution support and expertise
o Participates in the certification and accreditation of OIG systems
o Identifies security risks and recommends risk mitigation strategies
o Reviews new and existing systems to address technical solutions to provide enhanced security and ensure baseline security requirements are met
o Develops security architecture, technical solutions for security products, and integrates
o Collaborates with members of CIO and Business units to develop security architecture and solutions for IT and business systems
o Develops and executes project plan to engineer, construct, deploy and monitor/manage IT Security infrastructure solutions.
o Evaluates security requirements associated with cloud-hosted environments and services and security requirements associated with mobile applications
Degree in Information Assurance, Cybersecurity, Information Systems, Computer Science, or related field
ISC2 certification(s) SANS GIAC, CISSP certification(s) (or equivalent); Microsoft Azure Security certification(s)
Secret Security Clearance (or ability to obtain S clearance for security Operations and engineering work)
Candidate will possess at least 5 years of specialized IT experience with at least 5 years in IT operations
Knowledge of information security principles, concepts, practices, systems software, database software, and immediate access storage technology to carry out activities relating to security certification and accreditation
Knowledge & Skill in implementing FISMA, NIST, OMB guidelines, and other Federal regulations and guidance. Experience interpreting and implementing FISMA/NIST requirements focused on the operational implementation and documentation of those requirements
Skill and Ability in executing Security Operations including incident detection, identification, management, response, and reporting. Must have experience in incident management in the Microsoft Azure cloud environment
Skill in making recommendations that significantly influence OIG's information security policies or programs. Experience building policies and preparing briefings to explain security programs and requirements to senior executives
Skill & Ability to provide expert technical advice, guidance, and recommendations to management and other technical specialists on critical information technology security issues
Skill & Ability to assess risk factors and advise on vulnerability to attack from a variety of sources and procedures for protection of systems and applications
Knowledge of security requirements associated with cloud-hosted environments and services and mobile application development and deployment
Ability to ensure coordination and/or collaboration on security activities
Ability to effectively communicate both orally and in writing with management and other technical specialists
Ability to plan, organize and manage tasks on time with minimal supervision
Implements and interprets the requirements for agency compliance with policy directives governing IT infrastructure protection.
Executes USPSOIG security policy and compliance management program
o Identifies current and potential IT security risks and recommends mitigation strategies
o Monitors agency compliance with infrastructure protection requirements across IT programs
o Participates in the development of security policies
o Participates in the certification and accreditation of OIG systems
Executes security related operational activities
o Manages security incident detection, response, remediation
o Conducts cyber threat and vulnerability analysis and remediation
o Configures and monitors security using Microsoft enterprise solutions; assessing and assist in remediation of Microsoft enterprise vulnerabilities
o Develops security metrics and manages reporting and compliance
o Serves as CIRT/CERT member
o Supports operational implementation of FISMA/NIST standards
o Conducts Computer Security Forensics
o Operates Security Tools, monitoring, response, and reporting including IPS/IDS, web content filtering, Advanced Malware Protection, Security Incident and Event Management, Vulnerability Identification and Analysis, security logging, Anti-malware, multi-factor authentication, password protection and secure document sharing and collaboration solutions. ((Windows Defender, Cisco Umbrella, Sentinel SIEM, Rapid7, HCL AppScan and Nessus scanners, LastPass password management, eShare secure file sharing & Collaboration)
o Manages IT Security awareness training program in cooperation with Learning Management team including developing and delivering IT Security awareness training modules.
o Manages multi-factor authentication system in coordination with Service Desk
o Responds to IT Security trouble tickets generated by customers and IT staff.
o Identifies solutions, works with customer and OCIO team to execute solutions and manages ticket input, update and resolution in OCIO ticketing system to maintain service level agreements.
Supports Security Engineering and tech solution support and expertise
o Participates in the certification and accreditation of OIG systems
o Identifies security risks and recommends risk mitigation strategies
o Reviews new and existing systems to address technical solutions to provide enhanced security and ensure baseline security requirements are met
o Develops security architecture, technical solutions for security products, and integrates
o Collaborates with members of CIO and Business units to develop security architecture and solutions for IT and business systems
o Develops and executes project plan to engineer, construct, deploy and monitor/manage IT Security infrastructure solutions.
o Evaluates security requirements associated with cloud-hosted environments and services and security requirements associated with mobile applications
Degree in Information Assurance, Cybersecurity, Information Systems, Computer Science, or related field
ISC2 certification(s) SANS GIAC, CISSP certification(s) (or equivalent); Microsoft Azure Security certification(s)
Secret Security Clearance (or ability to obtain S clearance for security Operations and engineering work)
Candidate will possess at least 5 years of specialized IT experience with at least 5 years in IT operations
Knowledge of information security principles, concepts, practices, systems software, database software, and immediate access storage technology to carry out activities relating to security certification and accreditation
Knowledge & Skill in implementing FISMA, NIST, OMB guidelines, and other Federal regulations and guidance. Experience interpreting and implementing FISMA/NIST requirements focused on the operational implementation and documentation of those requirements
Skill and Ability in executing Security Operations including incident detection, identification, management, response, and reporting. Must have experience in incident management in the Microsoft Azure cloud environment
Skill in making recommendations that significantly influence OIG's information security policies or programs. Experience building policies and preparing briefings to explain security programs and requirements to senior executives
Skill & Ability to provide expert technical advice, guidance, and recommendations to management and other technical specialists on critical information technology security issues
Skill & Ability to assess risk factors and advise on vulnerability to attack from a variety of sources and procedures for protection of systems and applications
Knowledge of security requirements associated with cloud-hosted environments and services and mobile application development and deployment
Ability to ensure coordination and/or collaboration on security activities
Ability to effectively communicate both orally and in writing with management and other technical specialists
Ability to plan, organize and manage tasks on time with minimal supervision