Summit Technologies, Inc. is looking for a Cybersecurity Analyst to join our team supporting an important US government agency. This is an exciting opportunity to work with a team responsible for IT Security Risk and Compliance support by providing direct support to the Information System Security and Privacy Officer (ISSPO) in managing and documenting the ongoing security posture of the agency. The Cybersecurity Analyst will support IT management with control assessment, development, and maintenance, and risk assessment and response development. This is a hybrid role based in Washington, DC. You must be a US citizen, as this supports a government contract and requires a Public Trust clearance.

Duties and Responsibilities:

• Develop and maintain IT security controls from the NIST Special Publication 800-53 as described in Agency Security Policy.
• Collect information from subject matter experts to develop and validate control implementation statements.
• Consult with subject matter experts and review approved work instructions in development of IT security controls to ensure they accurately reflect security standards.
• Conduct risk assessments on issues impacting systems and propose necessary resolution(s).
• Document and communicate any control deficiencies identified during control development for POAM consideration.
• Support Continuous Security Monitoring of infrastructure and functional areas for compliance with agency Security Policy (SP) and System Security Plans (SSPs).
• Provide expertise and assistance in the development of the security policies and procedures and ensure compliance.
• Update the agency system security documentation with approved change updates including updating boundary and technical descriptions.
• Conduct detailed security review for any change that introduces new hardware or software, requires modification to a security baseline, requires a new connection to an external entity, significantly changes a publicly facing application or DMZ infrastructure.
• Review outputs from POAMs to assess completeness and make recommendations for any work needed or POAM closure.
• Support agency IT Governance, Risk and Compliance Activities such as management of standards, approvals, and waivers.
• Support the PM by providing information for status reports, status briefings, schedules, project plans, etc., both in written and oral form.

Required Skills and Experience:

• Experience using National Institute of Standards and Technology (NIST) Risk Management and Cybersecurity Framework.
• Experience with FISMA, NIST 800-53, general IT control implementation, assessment, and maintenance processes.
• Familiarity with Governance, Risk and Compliance (GRC) frameworks and tools, such as, RSAM, CSAM, or experience with SAA tools, such as Xacta.
• Familiarity with Cyber-attack patterns, techniques, tactics and procedures.
• Ability to tailor information security processes and tools, based on ever evolving and changing landscapes, doctrine, and risk scenarios.
• Good understanding of Public Key Infrastructure, encryption and hashing techniques.
• Understanding of Office of Management and Budget (OMB) circulars A-123 and A-130, Federal Managers Financial Integrity Act (FMFIA), FISCAM processes and procedures.
• Ability to work with highly technical and specialized content (verbal and written).
• Must be able to prepare and fluently deliver such content in English.
• Ability to prepare deliverables with very few minors, or no, edits prior to conveyance to the client.
• Ability to quickly review the work products of others, employ your knowledge of federal security doctrine, and ensure accurate feedback and recommended edits are delivered to the author(s).
• Ability to work in a fast-paced environment and deliver outstanding customer service.
• Ability to stay up to date on information technology trends and security standards.
• Excellent analytical thinking and problem-solving skills to assess potential risks and develop solutions.

Desired Skills:

• A solid understanding of IT security controls, tools, and concepts.
• Experience with IT platforms such as Microsoft, Cisco, Oracle, etc.

Education:

• Degree from an accredited university and 5 years IT controls or IT security experience in a variety of IT systems.

Certifications:

• Any of the following: CISSP, CISM, CompTIA Security+ :

Security Clearance

• Must be eligible to obtain a US Public Trust clearance.

If you feel you are qualified and want to be considered for this position, please supply the following to: jpx69uc55sf31mjeiqcrhp4pya@crelate.net , and please put the job number 6375 in the subject line:

• Updated resume including MM/YYYY for each employer.
• Best times/dates to interview (plus phone # you can best be contacted at).
• Availability to start once given formal offers.

Summit Technologies Inc. appreciates your interest. We will contact the best matching prospects and will consider you for future opportunities. We will not submit your resume without your prior knowledge and consent. We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, national origin, disability or veteran status.


Please Note :
caminobluff.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, caminobluff.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.