Job Description
We are seeking a detail-oriented and analytical System Security Analyst (ConMon) to join our cybersecurity team in Herndon, United States. In this role, you will be responsible for implementing and maintaining continuous monitoring systems to ensure the security and integrity of our organization's information assets.
- Develop, implement, and manage continuous monitoring (ConMon) processes and systems
- Conduct regular risk assessments and vulnerability scans to identify potential security threats
- Analyze security events and incidents using SIEM tools and other security technologies
- Maintain and update a monthly Plan of Actions and Milestones (POA&M), inventory and other continuous monitoring deliverables as appropriate
- Develop and maintain security metrics and reports for management and stakeholders
- Collaborate with cross-functional teams to implement security controls and remediate vulnerabilities
- Stay up-to-date with emerging threats and security trends to enhance the organization's security posture
- Participate in incident response activities and contribute to the development of incident response plans
- Ensure compliance with relevant security standards and regulations (e.g., NIST, FedRAMP, FISMA)
- Provide technical guidance and support to other team members on security-related matters
- Conduct security awareness training for employees to promote a culture of security within the organization
Qualifications: Qualifications
- Bachelor's degree in Computer Science, Information Technology, or a related field
- 5 years minimum of experience in information security or a related field
- Strong knowledge of continuous monitoring (ConMon) systems and processes
- Proficiency in using Security Information and Event Management (SIEM) tools
- Experience with vulnerability assessment tools and techniques
- Solid understanding of network security protocols and best practices
- Familiarity with compliance frameworks such as NIST and ISO 27001
- Strong analytical and problem-solving skills with attention to detail
- Excellent written and verbal communication skills
- Ability to work efficiently in a fast-paced, dynamic environment
- Experience with security audits and assessments
- Relevant certifications such as CISSP, CEH, or Security+ are preferred
- Knowledge of regulatory compliance in information security
- Strong incident response and handling capabilities
Additional Information
Qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, sexual orientation, gender identity, disability or protected veteran status.