Security Analyst

Job not on LinkedIn

October 22

Apply Now

Receive Emails with Similar Jobs

By Light Professional IT Services

WebsiteLinkedInAll Job Openings

Cybersecurity • Defense • IT Solutions

By Light Professional IT Services is a technology and systems engineering company specializing in supporting warfighters and federal agencies. They offer a range of services including communications, cybersecurity, modeling and simulation, and advanced training solutions. By Light focuses on mission readiness through innovative IT solutions, cloud services, and workforce optimization, ensuring their clients are prepared for future challenges.

1001 - 5000 employees

Founded 2002

🔒 Cybersecurity

📋 Description

• Utilize a GRC tool such as eMASS for risk management. • Review and update security documentation and support vulnerability management. • Respond to security incidents and provide detailed incident reports. • Recommend security enhancements to management or senior IT staff. • Stay current on latest intelligence in order to anticipate security breaches. • Review system weakness and identify vulnerabilities in the system by conducting regular audits. • Review and track Nessus, Database, and Fortify Scan findings. • Be comfortable with audit, security, FISMA, ISO 27001, HIPAA, and HITECH requirements. • Communicate complex and technical information to non-technical staff efficiently and clearly. • Conduct routine audits such as user access and permissions, matrix reporting for vulnerability remediation efforts, tracking Plan of Action and Milestones. NIST 800-37 Risk Management Framework and NIST SP 800-53 requirements analysis

🎯 Requirements

• 6+ years of experience in managing security programs for a variety of IT products, systems and networks both small and large and complex. • Ability to ensure that records are maintained, security updates are promulgated, and staff are properly briefed. • Ability to identify and mitigate network vulnerabilities and explain how to avoid them. • Experience with network architecture, topology, and protocols and familiarity with both operation systems and cloud platforms. • Experience in coordinating with organizational security teams to ensure program consistency and compliance with all security requirements. • Knowledge of organizational and agency level security requirements and ensures that systems and personnel comply with these standards. • NIST 800-53 and Certification and Accreditation experience required. • Must have comprehensive knowledge on the various levels of information security requirements.

🏖️ Benefits

• Medical, Dental & Vision Coverage • Wellness Program • 401(k) Matching • Disability (Short Term & Long Term) • Employee Assistance Program • Life Insurance • Education & Training • Generous Leave Policy (11 Federal Holidays, PTO, and Military Leave)