What are the responsibilities and job description for the Security Analyst position at C2 Essentials?
The Security Analyst will oversee, evaluate, and support the documentation, validation, and accreditation processes necessary to assure that IT systems meet the organization's security requirements :
Respond to crisis or urgent situations within the system to mitigate immediate and potential threats.
Use mitigation, preparedness, and response and recovery approaches, as needed, to maximize information security.
Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives.
Provide security advice and recommendations to leadership and staff based on NIST and FIPS guidelines.
Analyze system security assessment reports.
Develop estimates of the security risks associated with deployment of new technologies.
Use defensive measures and information collected from a variety of sources to identify, analyze, and report events
Pay is anywhere from $40,000.00 - $60,000.00 per year.
Qualifications
A bachelor's degree in information technology systems, computer science, or a related field and experience in information technology systems or a related area
At least 3 years of information security experience, including documenting system security controls in place to support the Assessment and Authorization processes.
CompTIA Security certification
Experience using Nessus, AIDE, Windows, Linux / RHEL
Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
Requirements
1-2 years of professional experience supporting information security / assurance programs, policies, processes, and operational procedures per various standard security frameworks / laws / standards / directives, e.g. : FISMA; OMB directives; Presidential Directives; NIST (SP-800 series; FIPS); HIPAA of 1996; Privacy Act
Comprehensive knowledge of the FISMA, HIPAA laws and Privacy Act of 1974
Experience writing System Security Plans using-depth knowledge of the NIST 800-53 security control requirements and standard methods for implementing security controls.
Understanding of risk assessment and risk management concepts, including POA&M support
Practical knowledge of IT System contingency planning and incident response
Good understanding of continuous monitoring and continuous authorization concepts
Good understanding of protection of PII and PIA concepts
Expert use of MS Office, especially Word, PowerPoint and Outlook
Good ability to articulate technical concepts, especially in the audit review process
Keep a pulse on the job market with advanced job matching technology.
If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution.
Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right.
Surveys & Data Sets
What is the career path for a Security Analyst?
Sign up to receive alerts about other jobs on the Security Analyst career path by checking the boxes next to the positions that interest you.
