LU - Security Analyst 1.19
Focused HR Solutions · Columbia, SC · 27 mo ago
On-siteInformation TechnologyContract
Daily Duties / Responsibilities
- Assess and evaluate the organization’s information & cyber security solutions and processes.
- Provide technical advisory to influence the design and implementation of security information technology systems and networks.
- Guide junior analysts to identify and address risks, and lead the response to information security issues.
Technical Knowledge
- Understanding of information technology and security concepts.
- Experience or knowledge of operating systems (e.g., Android, iOS, Linux, Windows, MVS, VMWare).
- Experience or knowledge in performing vulnerability assessments, including scanning, analysis of results, and manual validation.
- Experience with secure networking technologies such as network firewalls and IDS/IPS technologies, Network Security Monitoring expertise, and Security Information and Event Management (SIEM) systems.
- Experience in information security incident response and risk management.
- Experience managing and responding to information security risks, threats and incidents.
- Experience with the development and integration of RMF tasks and artifacts into the System Development Life Cycle (SDLC).
General Duties And Responsibilities
- Assist in the day-to-day duties of SOC monitoring activities, tools and processes.
- Provide hands-on support for OCS security tools.
- Conduct threat hunts (specialized searches) for evidence of compromise.
- Monitor security technologies for alerts.
- Investigating incidents, gathering evidence, and analyzing data.
- Analyze anomalous activity and potential threats to Agency connected resources.
- Collaborate with OCS Staff and other agency staff, leadership, business partners and other parties/stakeholders to support security and compliance risk mitigation efforts.
Required Skills
- Hands-on experience or educational background in IT System Security or System Administration.
- Experience with incident response procedures and practices.
- Willingness to learn and take on new tasks.
- Willingness to work independently and as a member of a team.
- Willingness to collaborate and coordinate with multiple teams and vendors.
- Ability to multitask and prioritize tasks effectively in order to effectively report on the status of assigned work.
- Ability to multitask and prioritize tasks effectively in order to meet deadlines in a results-oriented environment.
- Intermediate skills in Microsoft Office products (Word, Excel, PowerPoint, Visio).
- Strong understanding of enterprise operations & secure best practices.
- Strong written and verbal communication skills.
- Ability to accept changes and constructive criticism and remain flexible in dealing with leadership and teams of varying technical and business knowledge.
Preferred Skills
- Prior Health Information Technology experience.
- Centralized Log Management experience.
- Familiarity with security regulatory requirements and standards (such as NIST 800 series, MARS-E).
- Experience performing or supporting information security compliance assessments and audits.
- Work and/or consulting experience in federal, state, city or local government.
- Cloud platforms/environments experience.
- Technical Certifications.
- Knowledge of information technology field, best practices, organization and operations.
- Consulting Experience.
- Cybersecurity experience.
- Experience in projects involving PCI/NIST security implementations and/or audits.
- MARS-E experience.
- Network Security Penetration Testing experience.
- Network Security risk/vulnerability assessments experience.
- Network Security Security Information Event Management (SIEM) systems development/configuration experience.
- Networking & Directories Incident Management experience.
- Information Security experience.
- Network security experience.
- Linux experience.
- Windows experience.
- Microsoft experience.
- Experience working with risk management.
- Firewall experience.
- Software development life cycle (SDLC) experience.
- NIST Security experience.
- Medicaid or healthcare experience.