This role is hybrid- ONSITE 1x a week- 4x a week REMOTE!

Responsibilities:
- Lead mitigation / remediation process, following approved corrective action plans
- Support program to ensure appropriate implementation of the NIST Security Framework through the lifecycle of the system including but not limited to the pre-security assessment tasks and coordination with System Owners (SO)
- Responsible for coordinating with internal stakeholders and external vendors to gather requirements and execute cyber related tasks
- Coordinate and facilitate pre-assessment meetings with stakeholders
- Experience integrating diverse data streams and perform detail analysis
- Establishes data standards and acts as custodian of IT security and service delivery data sets and streams
- Experience in analyzing complex networks and systems from a security standpoint
- Experience in analyzing log data from various network components and operating systems as well as packet capture data
- Knowledge of the complex environment involving shared networks and multiple security enclaves
- Systems Engineering with network analyst\\engineering background
- Network security background with ability to analyze log data as well as familiarity of how to generate logs and metrics from product suites, such as Cisco, AirWatch, and desktop\\server OS
- Ability to manage and troubleshoot data feeds, Splunk familiarization
- Support process improvement and special project activities requiring engagement and collaboration with a variety of functional teams
- Applying auditing techniques for identifying problems
- Responding to data calls by gathering and analyzing pertinent information, forming conclusions, developing solutions and implementing plans
- Create, document, review and edit as appropriate (new and existing) system security documents
for completion and accuracy (to include but not limited to SCD, SSP, SIA, PIA, PTA, POA
Disaster Recovery Plan/DRP, etc.) to ensure security requirements are included

Required Education, Experience; Skills
- 5-7 years of experience working on IT security protocols and Risk Management Framework (RMF)
- Bachelor's degree
- A Certified Authorization Professional (CAP) or Systems Security Certified Practitioner (SSCP) while progressing toward a senior certification of CISSP and/or CISA
- Experience with JIRA
- Ability to obtain a Public Trust clearance.
- Proficient in Microsoft Office suite of tools including SharePoint; aptitude for quickly learning related tool sets.

Preferred Education, Experience & Skills• Security Development and Operations (SecDevOps)

• Expertise with Splunk
• Scripting tools to include Python, ShellScript, or Ansible
• Cloud security controls and implementation
• PKI implementation
• STIG compliance and vulnerability management
• Virtualization experience (VDI and; VMWare)
• Public, private and hybrid Cloud experience (AWS, Microsoft Azure, etc.)
• CISSP
• AWS Certified Security Specialty
• Microsoft Office365

Job Type: Full-time

Pay: $110,000.00 - $115,000.00 per year

Benefits:

• 401(k)
• Dental insurance
• Health insurance
• Paid time off
• Vision insurance

Compensation package:

• Weekly pay

Experience level:

• 5 years

Schedule:

• Monday to Friday

Education:

• Bachelor's (Required)

Experience:

• Information Security Specialist: 5 years (Required)
• IT Security Protcols: 5 years (Required)
• RMF Framework: 5 years (Required)
• Jira: 5 years (Required)
• Microsoft Office suite of tools including SharePoint: 4 years (Required)

License/Certification:

• CAP or SSCP Certification (or higher CISSP/CISA) (Required)

Security clearance:

• Confidential (Preferred)

Ability to Commute:

• Arlington, VA 22202 (Required)

Ability to Relocate:

• Arlington, VA 22202: Relocate before starting work (Required)

Work Location: Hybrid remote in Arlington, VA 22202