Information Security Analyst
MD, USA
Unissant
Unissant, Inc. is an innovative solutions development and consulting company committed to delivering simplicity through innovation. We meet this commitment by delivering state-of-the-art enterprise computing and processing solutions to both government and commercial clients. Our workforce continually strives to advance (y)our collective intellect through collaborative fortitude, and we are looking for further talent to join that effort! To learn more about our exciting organization, please visit us at www.unissant.com
We are seeking an Information Security Analyst to join our team and support our client in the greater Washington DC/Baltimore area.
*This position is contingent upon contract award
The Information Security Analyst must have a thorough knowledge of security principles, concepts, policy, and regulations and be able to identify risks in security systems and work with technical experts to resolve security issues. The successful candidate will identify key concepts, factors and risks based on conversations and document these in clear and concise reports. The candidate must also be able to interact with the contractor and government Information Security Office personnel and coordinate information assurance actions, investigations, and remediation of cyber security vulnerabilities within the enterprise.
Essential Duties and Responsibilities:
- Develop and maintain security processes and controls that ensure security posture meets and/or exceeds FISMA and other Federal security standards as required
- Update applicable controls according to NIST 800-53 rev.4
- Create documentation in support of the SA&A efforts to include Security Control Assessment Report, System Security Plan and Security Standard Operating Procedures
- Maintain Security applications to include installing updates and modify configurations to monitor the system.
- Foster an innovative and inclusive team-oriented work environment
- Support and maintain security tools to include McAfee EPO, Symantec Endpoint Management, Tenable Security Center, AppScan, Sonarqube - Web security testing and monitoring and Nessus - vulnerability scanner for Network Security, etc.
- Create scans and Reports using Tenable Security Center
- Create dashboards and custom search queries
- Support cyber incident response actions to ensure proper assessment, containment, mitigation and documentation
- Utilize tools such as Splunk and support cyber investigations and contribution to large- and small-scale computer security breaches
- Able to utilize IT security industry standard methods in providing secure systems
- Participate as part of a close team of technical specialists on coordinated responses and subsequent remediation of security incidents
Work experience:
- A minimum of 8 years' progressive experience in IT security methods and procedures
- Extensive knowledge in NIST Risk Management Framework and FISMA
- Experience in Cloud (AWS) security posture and recommendations
- Extensive knowledge in applying IT security techniques and methods
- Ability to seek out vulnerabilities in IT infrastructures
Job Skills:
- Demonstrated strong IT skills and knowledge including hardware, software and networks
- Ability to use logic and reasoning to identify the strengths and weaknesses of IT systems
- A forensic approach to challenges
Education:
- Bachelor's Degree is preferred
Certificates, Licenses & Registrations:
- CISSP, or CISM or any other related certification(s) preferred.
Communication Skills:
- Excellent verbal and writing skills
- Demonstrated experience communicating effectively across internal and external organizations.
- Work with colleagues in other technology departments as well as the business and product offices to establish effective, productive business relationships
- The ability to work well independently or with a team
Travel:
- N/A
Environmental Requirements:
- Mainly sedentary; in an office environment
- May be required to lift up to ten (10) pounds
- Flexible in working extended hours
- Telework is strongly encouraged!
The above statements are intended to describe the general nature and level of work being performed by the individual(s) assigned to this position. They are not intended to be an exhaustive list of all duties, responsibilities, and skills required. Unissant management reserves the right to modify, add, or remove duties and to assign other duties as necessary. In addition, where applicable and available, reasonable accommodation(s) may be made to enable individuals with disabilities to perform essential functions of this position.
Please note: Candidate(s) will be required to go through pre-employment screening.
Unissant, Inc. is a proud Equal Opportunity Employer! (EOE; M/F/Disability/Vets)
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: AWS CISM CISSP Cloud FISMA Incident response Monitoring Nessus Network security NIST NIST 800-53 Risk management RMF SonarQube Splunk System Security Plan Vulnerabilities
Perks/benefits: Flex hours
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Manager Pentest H/F jobs
- Open Chief Information Security Officer jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Security Researcher jobs
- Open Security Operations Analyst jobs
- Open Sr. Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open DevOps-related jobs
- Open EDR-related jobs
- Open IPS-related jobs