Information Security Analyst Senior

Plan/lead Quarterly STIG implementation for assigned packages.

Plan/lead Annual Security Reviews for Assigned security packages

Monitors and analyzes security findings to identify security issues for remediation.

Evaluate change requests (from a security perspective) and assesses organizational risk and approve (as applicable); update security documentation in VRAM, ACAS, Project repositories and RMF as change requests are implemented.

Assists with implementation of countermeasures or mitigating controls

Request/review vulnerabilities scans and ensure issues are addressed by the System Engineers.

Researches, evaluates, tests, and implements new security software or devices

Conducts investigations of information systems security violations and incidents, reporting as necessary to management

Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices

Implements, enforces, communicates, and develops security policies or plans for data, software applications, hardware, telecommunications, and information systems security education/awareness programs

Performs periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance

Prepares incident reports of analysis methodology and results

Ensure compliance with regulations and privacy laws

May coach and provide guidance to less-experienced professionals

May serve as a team or task lead

EDUCATION AND EXPERIENCE: BA/BS or equivalent, 5+ years of experience

#tidewaterIT