Senior Information Security Analyst - iQuasar
Washington, DC
About the Job
General Experience:
Ability to engage stakeholders, understand their needs, and then translate those needs into a minimum viable product.
Ability to translate analytic insights into concrete, actionable recommendations.
A collaborative, analytical thinker with outstanding written and oral communication skills and problem-solving capabilities, with a high attention to detail.
Detail-oriented, self-starter with excellent time management skills.
Ability to work well within cross-functional teams composed of business and technical team members.
Ability to work well under pressure.
Proficient using Office 365, SharePoint Online, SharePoint, and Visio.
Understanding of Federal Information Security regulations, standards, and practices such as the Federal Information Security Management Act (FISMA).
Understanding of Information Privacy concepts and best practices.
Understanding of Information Security and Compliance and Privacy concepts related to the handling of sensitive information.
BSc/BA in computer science, economics, mathematics, or relevant field or equivalent experience required
Mandatory Experience:
At least ten years' demonstrated experience with:
Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), and Security Information Event Management (SIEM) Systems.
Monitoring compliance using existing Information Security policies and procedures
Remediating security issues
Performing cyber and technical threat analyses
Performing security monitoring
Managing Active Directory
Operating Access Management tools (e.g. F5 APM)
Managing file and folder permissions
Scripting / automating tasks
Utilizing EDR tools for detection and response
Understanding of enterprise authentication and authorization mechanisms.
Demonstrated experience operating Identity and Access Management solutions.
Demonstrated experience securing and monitoring IaaS, PaaS and SaaS environments.
In-depth understanding of Federal Information Security regulations, standards, and practices such as the Federal Information Security Management Act (FISMA).
In-depth understanding of Information Privacy concepts and best practices and experience applying them.
In-depth understanding of the Federal Risk and Authorization Program (FedRAMP).
In-depth understanding of Risk Management Frameworks.
In-depth understanding of cybersecurity practices such as vulnerability discovery, evaluating, and deconstructing malware.
Source : iQuasar