What are the responsibilities and job description for the Security Analyst position at Gridiron IT Solutions LLC?

Job Description

Security Analyst

Location : Remote - local to DC area is preferred

Work Type : Remote

Remote Work : 100%

Job Description

The Cyber Security Analyst is responsible for monitoring, analyzing, and enhancing the security posture of the ACL Cloud environment. This role primarily involves threat monitoring, incident response, vulnerability assessment, and being able to support compliance efforts required by the Federally Mandated governance. The Analyst will collaborate with cross-functional teams to implement security measures, investigate incidents, and maintain security tools, ensuring the organization remains proactive against evolving cyber threats.

Responsibilities

1. Enterprise Threat Monitoring and Incident Response :

Monitor the ACL Cloud environment, system logs, and security alerts using enterprise-grade SIEM tools (e.g., Splunk, QRadar, ArcSightMonitor, Azure Defender, Kubernetes Security, Azure Monitor) for anomalies, such as unauthorized access attempts, unusual data flows, breaches, large data transfers, and port scans, as well as any performance degradations.
Investigate and respond to security incidents, gathering evidence, analyzing logs, and coordinating remediation efforts.
Provide actionable recommendations to prevent the recurrence of security incidents.
Continuously assess the security posture of ACL systems, identifying and implementing areas for improvement.

2. Security Tools Configuration and Maintenance :

Configure, manage and maintain ACL’s security monitoring tools to ensure continuous protection.

Regularly review system configurations and update settings based on industry standards and best practices.

Collaborate with Infrastructure and Architecture teams to address cloud misconfigurations and implement enhanced security measures.

3. Alert Management :

Set up and optimize security alerts within ACL monitoring tools to identify potential threats.

Prioritize and triage alerts based on severity, escalating critical incidents to appropriate teams for resolution.

4. Vulnerability Assessment and Penetration Testing :

Conduct routine vulnerability scans and coordinate system penetration testing to identify and address potential security weaknesses.

Document and report vulnerabilities, providing actionable recommendations for remediation.

Review and validate false positive justifications to ensure accuracy in threat detection processes.

5. User Activity Monitoring :

Track and analyze user behaviors and patterns to identify suspicious activities, including failed login attempts, unusual access patterns, and potential misuse of privileges.

Define baseline user behavior patterns and establish thresholds for anomaly detection to improve monitoring accuracy.

6. Cybersecurity Roadmap :

Conduct gap analysis on ACL security tools and processes, identifying areas for improvement and implementing solutions.

Develop and enhance security techniques, protocols, and designs, adhering to industry best practices and standards, including DISA STIGs.

Research and implement new security technologies to advance ACL’s cloud security capabilities.

Stay informed on emerging threats, vulnerabilities, and cybersecurity trends to enhance monitoring processes and refine security policies.

Leverage threat intelligence sources to detect and mitigate risks effectively.

Proactively assess and strengthen ACL’s security posture through the implementation of proactive security measures.

Qualifications

Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).

5 years of experience in cybersecurity, with experience overseeing cloud environments.

Proficiency in security tools and platforms, including log analysis, threat detection, and vulnerability scanning tools.

Strong knowledge of cybersecurity frameworks and standards, such as NIST, ISO 27001, and DISA STIGs.

Experience with incident response, threat intelligence, and security tool management.

Familiarity with cloud security best practices for platforms like AWS, Azure, or GCP.

Additional Qualifications

Certifications such as CISSP, CEH, Cloud Security, or similar.

Hands-on experience with threat intelligence platforms and vulnerability management tools.

Strong analytical and problem-solving skills with a proactive approach to cybersecurity.

Competencies

Excellent communication skills to collaborate with technical and non-technical teams.

Ability to prioritize and manage multiple tasks in a fast-paced environment.

A proactive mindset with a commitment to continuous learning and improvement.

Clearance :

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; ability to obtain a Federal Public Trust security clearance is required.

Compensation and Benefits

Salary Range : $72,000 - $105,000 (Compensation is determined by various factors, including but not limited to location, work experience, skills, education, certifications, seniority, and business needs. This range may be modified in the future.)

Benefits : Gridiron offers a comprehensive benefits package including medical, dental, vision insurance, HSA, FSA, 401(k), disability & ADD insurance, life and pet insurance to eligible employees. Full-time and part-time employees working at least 30 hours per week on a regular basis are eligible to participate in Gridiron’s benefits programs.

Gridiron IT Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status or disability status.

Gridiron IT is a Women Owned Small Business (WOSB) headquartered in the Washington, D.C. area that supports our clients' missions throughout the United States. Gridiron IT specializes in providing comprehensive IT services tailored to meet the needs of federal agencies. Our capabilities include IT Infrastructure & Cloud Services, Cyber Security, Software Integration & Development, Data Solution & AI, and Enterprise Applications. These capabilities are backed by Gridiron IT's experienced workforce and our commitment to ensuring we meet and exceed our clients' expectations.

Company Description

GRIDIRON IT is a Small Business specializing in IT talent search and placement. From executive search to cleared IT professionals, Gridiron IT provides top talent to government agencies, federal contractors, and commercial clients. Building on more than 20 years of recruiting excellence and solid relationships throughout the field, Gridiron IT is a trusted IT staffing resource in the National Capital Area and across the country. We work closely with our clients and consultants to understand their unique needs and make placements that make sense.

Company Description

Salary : $72,000 - $105,000

Apply for this job

Receive alerts for other Security Analyst job openings

Security Analyst

What are the responsibilities and job description for the Security Analyst position at Gridiron IT Solutions LLC?

What is the career path for a Security Analyst?

Job openings at Gridiron IT Solutions LLC

Not the job you're looking for? Here are some other Security Analyst jobs in the Washington, DC area that may be a better fit.

We don't have any other Security Analyst jobs in the Washington, DC area right now.

AI Assistant is available now!