Security Analyst
Position Details
This position supports the agency's cybersecurity and data protection operations, with a focus on DLP, Insider Risk Management, Copilot/AI data security, auditing, vendor security reviews, and device patching. The analyst will review and triage security alerts, investigate access and movement of sensitive information, perform system and vendor audits, document findings, assist with incident escalation, and work with technical and business teams to strengthen the agency's overall security and data governance posture.
Required Skills
Must Have/Required Skills: 3 years experience supporting enterprise cybersecurity operations, including threat monitoring, incident response, and risk analysis. 3 years hands-on experience working with data protection technologies such as data loss prevention (DLP), insider risk management tools, and data security posture management for AI (DSPM for AI).
Must Have/Required Skills: 3 years experience reviewing and triaging data related security alerts, analyzing access and movement of sensitive information, documenting findings, and escalating incidents according to established procedures. 3 years of collaborating with technical and nontechnical teams to resolve security issues and supporting continuous improvement in the agency's data security posture.
Required Experience
3+ years supporting enterprise cybersecurity operations.
3+ years of incident response, threat monitoring, and risk analysis.
3+ years of hands-on experience with: Data Loss Prevention (DLP), Insider Risk Management, Data Security Posture Management (DSPM).
3+ years reviewing and triaging security alerts.
3+ years investigating sensitive data access and movement.
3+ years documenting findings and escalating incidents.
3+ years collaborating with technical and business teams to improve security posture.
Preferred Skills
Nice to Have Skills: Experience working with AI driven security tools, Cortex, particularly DSPM platforms designed to manage sensitive data used by AI systems.
Nice to Have Skills: Experience finetuning DLP policies, refining insider risk alerts, or supporting data governance programs.
Nice to Have Skills: Familiarity with Azure security, identity-based access controls, conditional access, and security automation or scripting.
Required Education and/or Certifications
A bachelor's degree in cybersecurity, information technology, computer science, or a related field is required; equivalent experience may be considered.
A foundational security certification such as CompTIA Security+ or GIAC Security Essentials (GSEC) is required.
PREFERRED CERTIFICATIONS: Microsoft SC100, SC200, CEH, or an Associate level CISSP.