The Tatitlek - UNAVAILABLE, DC
posted 3 days ago
About the position
Tatitlek Federal Services Inc. provides technical, management and operational support to the Department of Technology Services Information Technology Security Office (ITSO) for Security Mission Integration (SMI). SMI's mission is to provide systems engineering, systems operations, data analytics, automation and programming services to other ITSO divisions and AO program offices. The content developer will create customized dashboards and data visualizations to allow analysts to understand cybersecurity data in meaningful ways. The work will include taking requirements from customers and building or customizing dashboards within Splunk leveraging Splunk Dashboard Studio, Search Processing Language, React and Extensible Markup Language (XML) to enable analysts to quickly understand the data or the aggregation of data.
Responsibilities
- Analyze and report agencies security posture trends.
- Analyze and report system security posture trends.
- Apply security policies to meet security objectives of the system.
- Assess adequate access controls based on principles of least privilege and need-to-know.
- Assess all the configuration management processes.
- Assess the effectiveness of security controls.
- Develop procedures and test fail-over for system operations transfer to an alternate site based on system availability requirements.
- Ensure all systems security operations and maintenance activities are properly documented and updated as necessary.
- Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
- Implement security measures to resolve vulnerabilities, mitigate risks and recommend security changes to system or system components as needed.
- Implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation.
- Mitigate/correct security deficiencies identified during security/certification testing and/or recommend risk acceptance for the appropriate senior leader or authorized representative.
- Plan and recommend modifications or adjustments based on exercise results or system environment.
- Properly document all systems security implementation, operations and maintenance activities and update as necessary.
- Provides cybersecurity recommendations to leadership based on significant threats and vulnerabilities.
- Verify and update security documentation reflecting the application/system security design features.
- Verify minimum security requirements are in place for all applications.
Requirements
- Associates Degree with at least two (2) years' experience in cybersecurity system analysis. Four additional years of related experience may substitute for degree.
- Minimum of one year of experience as a developer with a strong focus on delivering cybersecurity visualizations.
- Minimum of one year of experience in a CI/CD environment and ability to leverage tools such as GitLab, Jira, and an Interactive Development Environment (IDE).
- Experience developing system interconnects via API to include data exchange via XML and JSON.
- Proficient in Splunk's Search Processing Language, React and Kusto Query Language.
- Motivated self-starter with strong written and verbal communication skills. Knowledge of Information Security Concepts.
Benefits
- Satisfactory background screening
- Negative drug test
- Positive references
- Proof of identity and legal authorization to work in the United States
