Information Security Analyst IV

November 4

Apply Now

Receive Emails with Similar Jobs

eSimplicity

WebsiteLinkedInAll Job Openings

Cybersecurity • Information Technology • Telecommunication • Healthcare IT • Spectrum Management

51 - 200

Description

• eSimplicity is a modern digital services company that works across government • Seeking an Information Security Analyst IV • Responsible for providing security support services while meeting security control compliance requirements for a systems portfolio • Support continuously monitoring systems' cybersecurity posture • Facilitate security tool implementation and usage, ensuring compliance and proper configuration • Coordinate and respond to agency’s security-related inquiries • Provide subject matter expertise throughout all phases of the system development lifecycle

Requirements

• Minimum of 7+ years related experience • A bachelor's degree in computer science, Information Systems, Engineering, Business, or other related scientific or technical discipline • With six years of general information technology experience and at least four years of specialized experience, a degree is not required • Familiarity with Agile Methodologies • Working knowledge of AWS Security tools, their functionality, and purpose • Assist customer with defining appropriate change management processes (Responsible for documenting application criticality, privacy, and security impact analysis) • Knowledge of hardening standards (DISA STIG, CIS) • Understanding of NIST Risk Management Framework and NIST 800-53 rev5 • Experience with CI/CD, defining security decision gates and DevSecOps • Know the difference between SAST, DAST, IAST, and OAST tools and their functions, benefits, and weaknesses within CI/CD • Understanding of business security practices and procedures; knowledge of current security tools available; hardware/software security implementation; different communication protocols; encryption techniques/tools; familiarity with commercial products; and current Internet technology • Understands continuous automated security practices applied to data and application engineering teams • Prior experience managing systems in AWS cloud environments, familiarity with AWS Tools and Services • Experience with designing security “baked-in” to any architecture: Cloud and IaC, Applications, Web applications, Data Processing, Data-Centric Applications, AI/ML, CICD Pipelines; seek automation-driven designs • Demonstrated work experience with the following: computer networking, cryptography, security engineering and architecture, vulnerability assessments, or operating systems required • Broad experience using cloud services, Linux systems, Development/Data engineering core tools, GitHub, GitHub Actions, Security Tools, etc. • Demonstrated working knowledge of vulnerability and compliance scanning tools • Understands how to assess vulnerabilities and provide recommendations regardless of first-hand knowledge of the application or system • Proven ability to work effectively both independently and/or in a team setting • Must possess strong analytical and problem-solving abilities and strong critical-thinking skills in complex communication environments • Strong attention to detail • Required to manage/follow-through of multiple independent tasks dependencies across intra/inter-project teams • Excellent organizational and time-management skills in a fast-paced environment • Excellent customer service skills with the ability to deal tactfully, confidently, and ethically with both internal and external customers • Experience with Government Agency Security Assessment Process in support of maintaining and/or establishing an ATO and the appropriate security boundary • Experience with Atlassian Jira & Confluence • Excellent command of written and spoken English • Ability to obtain and maintain a Public Trust, residing in the United States

Benefits

• We offer a highly competitive salary • Full healthcare benefits