Scientific Research Corporation - North Charleston, SC
posted about 2 months ago
The Cyber Security Analyst will ensure the robust cyber security posture of the AWS IL5 Cloud environment through comprehensive measures, policies, and practices. This role is critical in maintaining the integrity and security of sensitive information and systems within the cloud infrastructure. The analyst will conduct regular risk assessments to identify potential vulnerabilities and threats within the AWS IL5 environment, developing strategies for risk mitigation and implementing necessary controls to address identified risks. A risk register will be maintained to document identified risks and corresponding mitigation actions, ensuring that AWS configurations align with IL5 security requirements, including encryption, access controls, and network segmentation. In addition to risk management, the Cyber Security Analyst will implement and enforce compliance with relevant security standards and regulations, such as NIST SP 800-53 and DoD IL5 requirements. Monitoring AWS configurations for deviations from security baselines is essential, and the analyst will promptly remediate any non-compliant settings. Strong IAM policies will be implemented to enforce least privilege access across AWS resources, with regular reviews of IAM roles and permissions to ensure alignment with this principle. The role also involves enabling multi-factor authentication (MFA) for privileged accounts and sensitive operations, deploying robust monitoring tools to detect unauthorized access attempts, suspicious activities, and security breaches. Establishing incident response procedures is a key responsibility, allowing for prompt responses to security incidents to minimize their impact. The analyst will conduct post-incident reviews to identify lessons learned and improve incident response processes. Encryption mechanisms will be implemented to protect data at rest and in transit within the AWS IL5 environment, with regular reviews of encryption policies and key management practices to ensure effectiveness. Providing regular security training and awareness programs to AWS IL5 users and administrators is also a vital part of this role, educating users about common cyber threats, phishing attacks, and best practices for secure usage of AWS resources. The analyst will encourage a culture of security awareness and proactive risk mitigation among all stakeholders. Periodic security assessments and audits will be conducted to evaluate the effectiveness of cyber security controls, identifying areas for improvement and implementing enhancements to strengthen the security posture of the AWS IL5 Cloud. Staying abreast of emerging cyber threats, vulnerabilities, and industry best practices is essential to adapt security measures accordingly. The position requires travel approximately 3-4 days a quarter, as required.