Cyber Security Analyst

$95,000 - $165,659/Yr

CLVG Consulting - Ashburn, VA

posted 3 months ago

Full-time - Mid Level
Remote - Ashburn, VA
Professional, Scientific, and Technical Services

About the position

We are seeking an experienced Cyber Security Analyst to join our team at CLVG Consulting, Inc. in Ashburn, VA. The successful candidate will play a vital role in ensuring the security and integrity of our organization. The Cyber Security Analyst will be responsible for testing, implementing, and maintaining various security measures, testing controls, and providing technical support to ensure the smooth operation of IT infrastructure. This position requires a proactive approach to identifying security risks and vulnerabilities, as well as the ability to collaborate effectively with government counterparts and vendors to ensure compliance with security protocols. In this role, you will forecast and track vendor activities, ensuring a repeatable and documented assessment methodology is applied to all DHS vendor systems under test. You will develop objectives for the security assessment and create a detailed roadmap for system testing. Identifying security risks and threat vulnerabilities across vendor systems and connection points within the accredited system boundary will be a key responsibility. You will finalize and obtain government lead approval for the test plan and collaborate with government counterparts to select and configure vulnerability assessment tools. Additionally, you will create a testing schedule for each application or system under test, coordinate testing schedules with vendors and facility managers, and ensure that supporting staff are familiar with the system, test plan, and procedures. You will refine or develop Standard Operating Procedures (SOP) for executing the contract plan, including Rules of Engagement (ROE) and test schedules in the Project Plan. Documenting test results in the Security Requirements Traceability Matrix (SRTM) and securely storing all materials according to DHS policy will also be part of your duties. You will assist in and/or brief the government task lead on vendor testing results and develop Security Assessment Reports (SAR) that document security control assessment results, including recommendations for correcting weaknesses or deficiencies. Analyzing findings and developing risk mitigation techniques will be essential, as will updating the SAR template annually and finalizing the report upon government team lead approval. Furthermore, you will provide direct mission system or technical support for vendor risk mitigation and assessment activities, engage in new and innovative technology identification, evaluations, testing support, systems evaluations, analytics, and other related tasks as directed by the Project Manager. Collaboration with other teams to develop and implement cyber security assessment and policies will also be expected.

Responsibilities

  • Forecast and track vendor activities, ensuring a repeatable and documented assessment methodology is applied to all DHS vendor systems under test.
  • Develop objectives for the security assessment and a detailed roadmap for system testing.
  • Identify security risks and threat vulnerabilities across vendor systems and connection points within the accredited system boundary.
  • Finalize and obtain government lead approval for the test plan.
  • Collaborate with government counterparts to select and configure vulnerability assessment tools.
  • Create a testing schedule for each application or system under test.
  • Coordinate testing schedules with vendors and facility managers.
  • Ensure supporting staff are familiar with the system, test plan, and procedures.
  • Refine or develop Standard Operating Procedures (SOP) for executing the contract plan.
  • Include Rules of Engagement (ROE) and test schedules in the Project Plan.
  • Provide written instructions to the test team detailing tasks, tools, and configuration management.
  • Conduct vendor execution kick-off meetings and perform testing as outlined in the test plan.
  • Document test results in the Security Requirements Traceability Matrix (SRTM) and securely store all materials according to DHS policy.
  • Assist in and/or brief the government task lead on vendor testing results.
  • Develop Security Assessment Report (SAR) documenting security control assessment results, including recommendations for correcting weaknesses or deficiencies.
  • Analyze findings and develop risk mitigation techniques.
  • Update the SAR template annually and finalize the report upon government team lead approval.
  • Provide direct mission system or technical support for vendor risk mitigation and assessment activities.
  • Support mission or system concepts, requirements, assessments, technology investigations, and performance evaluations.
  • Engage in new and innovative technology identification, evaluations, testing support, systems evaluations, analytics, and other related tasks as directed by the PM.
  • Collaborate with other teams to develop and implement cyber security assessment and policies.

Requirements

  • Must be a US Citizen, DHS clearance preferred.
  • Bachelor's degree in computer science, Information Technology, or a related field.
  • Experience in computer Cyber security.
  • Proficiency in vSphere, computer networking, and TCP.
  • Knowledge of remote access software and network installation.
  • Experience with SFTP and FTP for software deployment.
  • Familiarity with Agile methodologies.
  • Strong understanding of Cyber security principles and best practices.
  • Excellent analytical and problem-solving skills.
  • Ability to work independently and as part of a team.
  • Excellent communication skills.
  • Certification in IT security, such as CompTIA Security+ or CISSP, is an asset.

Nice-to-haves

  • Experience with vulnerability assessment tools.
  • Knowledge of security compliance frameworks.
  • Familiarity with cloud security practices.

Benefits

  • Hybrid work environment
  • Competitive salary range of $95,000 - $165,659 per year
  • Opportunities for professional development and training

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service