ISSO - Sr. Cyber Defense Analyst

Employment Type: Full Time Salary Exempt

Schedule: 8-hour workday; Monday - Friday, Core working hours 9AM-3PM Eastern Time

Location: Telework hybrid with flexibility to be onsite at client location to meet client requirements.

Employment Status: Must be a US Citizen

Education: BA/BS or higher preferred

Security Clearance: Ability to possess and maintain DoD Secret or higher Industry: Federal Government Contracting

Minimum 5 Years Of Related Experience.

Trewon Technologies is a competitive firm providing enterprise-wide solutions to federal clients. Trewon brings a sophisticated service line in IT-related solutions from Cyber Security, Business Intelligence, Data Analytics, Big Data, to Cloud technologies coupled with a diverse skill set in research and evaluation to federal clients. While working in specified fields, we also understand the importance of meshing business process optimization with solid data and program management.

Summary/Objective

Trewon is seeking a committed Sr. Cyber Defense Analyst to help support our federal client and team. This role requires organizational skills, effective communication, and the ability to collaborate within a team environment.Increase Cloud oversight and management support, enabling ISSO to keep pace with the growth in move toward Cloud technology and platforms. Skilled candidate with knowledge of cloud services, that can meet the immediate need of the migrated systems, automated processes, policies, and plans, ensuring appropriate ISSO oversight as prescribed by ISO/IEC 27018:2019 (Information technology - Security techniques - Code of practice for protection of personally identifiable information (PII) in public clouds), in accordance with E.O. Order and FISMA 2002 reporting. Increase in Cloud technology and move of various platforms to the Cloud requires an increase in ISSO Oversight responsibility. Demonstrate knowledge of cloud services that can meet the immediate need of the migrated systems, automated processes, policies, and plans to ensure appropriate ISSO oversight.

Enable quick and easy planning, development, creation, and interpretation of federal and department cloud related cybersecurity policies.

Responsibilities

• Enable quick and easy planning, development, creation, and interpretation of federal and department cloud related cybersecurity policies.
• Identify areas requiring further guidance, recommend corrective action, and provide ISSO Oversight and guidance as directed.
• Aid cloud system owners, domestic, and overseas ISSOs in the planning, designing, development, testing, and facilitating of cloud system cybersecurity functions and policies, including A&A of platforms and major systems that reside in the cloud.
• Assist in developing, updating and maintaining cybersecurity policies, plans, procedures.
• Analyze vulnerability scans and recognize vulnerabilities in security systems on classified and unclassified and other networks to include Non-Enterprise Networks (NENs) Cloud networks.
• Recognize vulnerabilities in security systems (e.g., vulnerability and compliance scanning).
• Collect data from a variety of cyber defense resources and present the results in a data visualization application, i.e., Power BI.
• Be able to navigate Microsoft Azure portal for cloud environment management. Understand Microsoft Defender for Cloud and ability to read Recommendations and Security Alerts.
• Demonstrate ability read and update internal policies, and plans, ensuring appropriate ISSO oversight.
• Navigate FedRAMP portal.
• Use a variety of security scanning and event correlation tools within AWS, Microsoft SCC, Google environments, etc.
• Think critically.
• Interact with other IT and cybersecurity engineers and technicians within the office, to provide full lifecycle redesign, maintenance, and support of ISSO mission, priorities, and taskings.
• Track installations, gather and analyze requirements, create and report analytics, develop tutorials, promotional aids and media, preparing memoranda, spreadsheets, calendars, and other artifacts, as needed.
• Highly organized with the ability to work on multiple simultaneous efforts.
• Proficiency in virtual communication tools and Microsoft Office Suite.
• Demonstrated problem solving, organizational and time management skills
• Experience in supporting Federal Government agencies, community- based organizations, or direct customer-facing projects.
• Effectively lead others to achieve shared goals through cooperation, sharing knowledge, joint problem-solving, and celebrating success.
• Basic Word, Excel, and PowerPoint skills, including formatting, designing basic quantitative graphs/figures, and slide design, if needed.
• Proven understanding of quantitative and qualitative research methodologies
  
  

Eligibility Requirements

• An undergraduate degree and 6 years' progressive experience in projects, demonstrating ability to provide tools and utilities to detect, identify, track, report, remediate, and/or mitigate vulnerabilities.
• 4 yrs of experience with NIST Risk Management Framework (RMF) and its implementation for successful Authorization and Accreditation (A&A) process and Authority To Operate (ATO) package.
• 2 yrs of experience with variety of security scanning and event correlation tools within AWS, Microsoft SCC, Google environments, etc.
• 2 yrs of experience with scanning and monitoring tools such as Nessus, Tenable, WebInspect, Splunk etc.
• 2 yrs of experience with scripting languages (PowerShell, Unix, Linux, Java Script etc)
• Experience with developing and managing multiple projects of high complexity with multiple tasks each.
• Professional certifications such as AWS, MS Azure, Google Cloud certification, ISACA CEH, ISC2 CISSP, and PMI-PMP are desirable but not required.
• Understanding of cybersecurity practices and the Federal Risk Management Framework with experience collaborating closely with stakeholders and end users.
• Reporting experience with MS-SQL; and data registers and business intelligence solutions such as Tableau, Power BI, and Excel.
• Ability to operate effectively in a fast-paced environment with competing, shifting priorities.
• Experience delivering presentations and leads client meetings. Excellent written, verbal and presentation skills.
  
  

Security Clearance: Secret or above

Citizenship: Must be a US citizen

Job Types: Full-time, Contract

COVID-19 Considerations

Position is remote hybrid with limited onsite work