Cybersecurity Analyst Task Lead, Senior (1007384), Family Promise of North/Central Palm Beach County, Ashburn, VA
Family Promise of North/Central Palm Beach County -
Ashburn, VA,
US
Cybersecurity Analyst Task Lead, Senior (1007384)
Date Posted: 2024-05-08
Job description
Enterprise Solutions and Management (ESM) is a rapidly growing government contractor that provides strategic IT services that meet mission needs for Defense and Federal customers. We are hiring a Sr Cybersecurity Analyst TL (KP) for an exciting opportunity located in Ashburn, Va.
JobDescription and Responsibilities
Exciting opportunity supporting a Department of Homeland Security (DHS) U.S. Customs and Border Protection (CBP) environment consisting of approximately 75,000 business users using CBP approved Windows or Mac baseline operating systems (OS). The program delivers Engineering, Operations, Cybersecurity, and Service Management in support of a) Windows 10 and Windows 11 platforms managed using Microsoft Endpoint Management solutions, Microsoft Endpoint Configuration Manager (MECM) and Microsoft Intune in a hybrid joined Azure and on premises co-managed Active Directory; and b) MacOS environment (MacOS Monterey, Big Sur, Catalina) using the Casper Administration Management (CAM) and JAMF mobile device management system. JAMF leverages on premises Active Directory for the management of devices.
The primary responsibilities of this role include:
- Engineer and implement scripts and/or automations to remediate vulnerabilities found
- When deemed appropriate or necessary perform manual remediations on affected systems
- Review and recommend overall work unit or agency process changes and/or policy changes. - Document recommendations in official policy format for Government leadership to review, sign, and enact into policy
- Author and present reports of findings and the remediation directions to a wide variety of audiences to include Government leadership, Field Technology Officers, and other stakeholders.
- Develop methods to detect, remove, block, and/or deny access to prohibited products and or versions identified to be vulnerable
Required Knowledge, Skills and Abilities (KSA)
Desired KSA
Minimum Training, Education, and Certifications
Minimum Clearance
Physical Requirements
Additional Requirements
ESM provides equal employment opportunity to all individuals regardless of race, color, creed, religion, gender, age, sexual orientation, national origin or ancestry, disability, genetic information, veteran status, gender identification or any other characteristic protected by state, federal or local law.
JobDescription and Responsibilities
Exciting opportunity supporting a Department of Homeland Security (DHS) U.S. Customs and Border Protection (CBP) environment consisting of approximately 75,000 business users using CBP approved Windows or Mac baseline operating systems (OS). The program delivers Engineering, Operations, Cybersecurity, and Service Management in support of a) Windows 10 and Windows 11 platforms managed using Microsoft Endpoint Management solutions, Microsoft Endpoint Configuration Manager (MECM) and Microsoft Intune in a hybrid joined Azure and on premises co-managed Active Directory; and b) MacOS environment (MacOS Monterey, Big Sur, Catalina) using the Casper Administration Management (CAM) and JAMF mobile device management system. JAMF leverages on premises Active Directory for the management of devices.
The primary responsibilities of this role include:
- Provide comprehensive cybersecurity services including but not limited to:
- Investigate and analyze cyber threats by gathering and examining vulnerability and log data from a variety of cybersecurity tools and resources (Nessus, Tanium, Digital Guardian, Splunk, Axonius) to identify possible threats to system, hardware, and application security.
- Engineer innovative methodologies to present aggregated findings, to include but not limited to: custom PowerPoint slides, Excel reports, Power BI dashboards, Splunk dashboards, Axonius dashboards, or custom designed reporting websites.
- Work with Information System Security Officer(s) and Manager to review and recommend changes to IT Security Plans on an as needed basis and/or upon system re-accreditation.
- Develop and implement remediation plans to address vulnerabilities found, to include but not limited to the following activities:
- Engineer and implement scripts and/or automations to remediate vulnerabilities found
- When deemed appropriate or necessary perform manual remediations on affected systems
- Review and recommend overall work unit or agency process changes and/or policy changes. - Document recommendations in official policy format for Government leadership to review, sign, and enact into policy
- Author and present reports of findings and the remediation directions to a wide variety of audiences to include Government leadership, Field Technology Officers, and other stakeholders.
- Develop methods to detect, remove, block, and/or deny access to prohibited products and or versions identified to be vulnerable
Required Knowledge, Skills and Abilities (KSA)
- Lead coordination, management, and execution of CS activities; provide input to management activities
- Investigate/analyze CS threats and vulnerabilities (whitelisting, etc.), support CS/RMF reporting and documentation (security plans, assessments, findings, etc.), review and recommend remediation strategies
- Direct experience detecting, monitoring, and remediating various aspects of CS, to include physical, SW, and network security; performing compliance control testing, knowledge of evolving cyber threats; developing recommendations and training programs to minimize CS risk; RMF; Zero Trust Architecture (ZTA); Federal Information Security Modernization Act (FISMA) compliance
Desired KSA
- Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations
- Candidate must communicate effectively with team members, team lead, management, and government customer
- Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision
Minimum Training, Education, and Certifications
- information Security Analyst; Experience: 3
- We apply the following substitution guidelines:
- No diploma plus 2 years' experience equals a High School (HS) diploma
- HS diploma plus 2 years' experience equals an Associate's degree
- Associate's degree plus 2 years' experience equals a Bachelor's degree
- Bachelor's degree plus 2 years' experience equals a Master's degree
Minimum Clearance
- CBP Background Investigation
Physical Requirements
- Required to stand, walk and sit; communicate verbally both in person and by telephone; use hands to finger, handle or feel objects or controls; reach with hands and arms. Regularly required to stoop, kneel, bend, crouch and lift up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, color vision and the ability to adjust focus.
- Physical demands associated with this position may include extensive walking (including stairs) throughout offices and between buildings. May require use of personal or Government vehicle to drive to local and/or remote office locations.
Additional Requirements
- Other duties as assigned.
ESM provides equal employment opportunity to all individuals regardless of race, color, creed, religion, gender, age, sexual orientation, national origin or ancestry, disability, genetic information, veteran status, gender identification or any other characteristic protected by state, federal or local law.