Security Analyst/ Information System Security Officer

MORSE is an innovative, employee-owned, tech company located in Kendall Square in Cambridge, MA specializing in solving multi-disciplinary problems faced by the US National Security Ecosystem. Our specially selected team of engineers, software developers and scientists develop algorithms, software integrated prototypes and solutions for Artificial Intelligence, Machine Learning, Manned and Unmanned Aerial Vehicles, Mission Planning, and Situational Awareness.

Job Summary

The Security Analyst/ Information System Security Officer (ISSO) is responsible for ensuring that security considerations are taken into account in both classified and unclassified IT environments. The Security Analyst serves as an advisor for all matters related to the security of the information systems. The Security Analyst uses various information security frameworks and agency-specific implementation guidance to obtain and maintain compliance for information systems

Responsibilities

• Ensure that systems are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the security plan.
• Participate in the systems development life cycle to ensure that the systems are designed with proper security features and safeguards.

• Maintain security architecture (SIEM, Vulnerability Scanning, DS/IPS).

• Collaborate with ISSMs, System Administrators, and Network Administrators to ensure information systems remain compliant.

• Draft policies and procedures related to the security of the information system and ensure compliance with government requirements.

• Test required controls, record assessments, and maintain the POA&M.

• Perform continuous monitoring of security controls as required by NIST 800-37 and the Cybersecurity Maturity Model Certification (CMMC).
• Analyze vulnerability scans for Linux, Windows, and AWS machines.
• Research CVEs to understand remediation actions and present findings to System Administrators.

Skills and Requirements

• 1 years of relevant cybersecurity experience.

• A strong understand of NIST 800-37, NIST 800-171, or similar regulatory frameworks.

• Prior experience implementing and assessing compliance with ACAS (Tenable) and HBSS (Trellix ePO) requirements.

• Security+ CE, or other certification which meets the IAM Level I standard from DoD 8570.01-M.

• Current Secret security clearance with the ability to obtain a Top Secret clearance and additional accesses as necessary. Current Top Secret preferred.

The team at MORSE takes pride in being the smart team that is easy to work with. We focus on steady, long-term success while maintaining a collaborative, enjoyable work experience for its employees. Our team values work-life balance through flexibility and other programs, along with a comprehensive benefits package for employees and families. For more information, please visit www.morsecorp.com.