IT Security Analyst/Administrator

Information Technology Washington, District of Columbia


Description

IT Security Analyst/Administrator

This position is located in Washington, DC. You must be a US citizen in order to obtain the security clearance. The ideal candidate will oversee the IT Security Configuration Baseline and Approved Asset Management in a dynamic role requiring leadership and coordination with multiple IT teams. This environment supports over 1,100 Users and over 7,000 assets located in multiple locations in the Washington, DC area; as well as offices in New York, NY; Chicago, IL; and Kansas City, MO.


Responsibilities:

  • Coordinate, plan, schedule, and execute initiatives for the complete support and management of the IT security posture for the Federal client
  • Establish and maintain a CFTC Configuration Management program following Security Configuration Management (SecCM) Plan, Identify and Implement, Control Configuration Changes, and Monitor for compliance lifecycle management
  • Monitor security threats to baseline configurations (workstations, laptops, servers, network appliances, mobile devices, etc.)
  • Support the development of tailored security configuration baselines.
  • Work with the Security team to gain acceptance and approval of all security controls
  • Work with the Operations team to recommend vendor best practices for Active Directory (AD), Organizational Units (OUs) and Group Policy Objects (GPOs) to optimize compliance monitoring and reporting.
  • Work with the Operations team to load, set up collections, and run scans for standard compliance reports for all approved baselines.
  • Analyze changes to AD OUs/GPOs, privileged access activities, and support data loss prevention (DLP) project
  • Work with Security Operations supporting threats, weaknesses, and vulnerability management and remediation.
  • Work as a member of the incident response identification, declaration, and remediation support team through interaction with SIEM tools and processes.
  • Work with the Network Team for compliance monitoring to vendor recommended baselines for network appliances using Solar Winds.
  • Participate (as needed) in the Configuration/Change Control Board (CCB) for review and recommendations for Configuration baseline vulnerability identification and remediation before and after implemented changes
  • Support activities for the NIST Risk Management Framework (RMF) and Continuous Diagnostic and Mitigation
  • Conduct continuous independent research on configuration compliance standards and industry best practices through white papers and presentations to management
  • Develop and document configuration baselines and monitor compliance; and assist in deployment of new or updated configuration baselines from the test environment to UAT or Production.
  • Establish and manage new software and hardware approval process; including establishing White Lists by group, and blocking functionality to prevent installation of unauthorized software.
  • Assist in researching, evaluating, and developing relevant Information security policies and guidance.
  • Act as the lead security adviser/approver for the change control board.


Qualifications:

Though this position requires the selected individual to obtain a customer-specific Public Trust, one must also be eligible to obtain a higher clearance level if required, which includes the foundational qualification of US Citizenship.

 

  • Minimum of 5 years of technical experience
  • Bachelors of Science Degree (or equivalent experience)
  • Technical experience with Active Directory Objects and Policies (OU/GPO).
  • Technical experience with Microsoft Windows 7/8/10 and Server 2012R2 and above for all server types and roles
  • Technical experience with Security Operations Tools (such as Symantec (SEP/DLP), Solar Winds, ForeScout, AccelOpps, FortiSIEM, Cisco Sourcefire, Stealthwatch, IronPort, MIMESweeper, ProofPoint, TrendMicro, etc.)
  • Posses broad working knowledge of Incident Response activites.
  • Posses broad working knowledge of Configuration Management, Configuration Items, Configuration Baselines, CMDB management.
  • Posses knowledge of Risk Management Framework (RMF) for continuous monitoring
  • Possess broad knowledge of network architecture, asset and configuration management tools, baseline images and compliance folders.
  • Possess strong technical skills and analytic abilities, as well as experience performing network security analysis and risk management as it relates to the configuration .
  • Possess ability to perform complex technical tasks in pursuit of overall goals with minimal direction, limited access to systems, and resource restrictions.
  • Possess excellent written and professional oral communications skills to develop and present compliance reporting and security recommendations.
  • Possess the ability to translate an understanding of systems and applications into security baselines scan plans and perform hands on security scanning.
  • Demonstrated ability to analyze scan results and suggest mitigations for security problems.

Possess a broad knowledge of Information Security policies and guidance, as well as the ability to assist in researching, evaluating, and