• The IT Infrastructure & Security Analyst is a member of the Information Technology team and is responsible to support and maintain the organization's IT infrastructure environment, ensuring the reliability, performance and security of systems and networks. • The position will hold a hybrid role, providing technical support for our IT Infrastructure alongside our Managed Service Provider (MSP) while also owning several key Information Security activities. • The IT Infrastructure & Security Analyst works closely with both internal teams and the MSP to ensure that servers, network devices, endpoints and related infrastructure and software effectively support Quorum’s business needs. • The IT Infrastructure & Security Analyst operates independently, managing and/or supporting projects and deliverables across infrastructure, Azure Cloud and M365 platforms and tools. • In addition, the IT Infrastructure & Security Analyst provides first-line end-user client services support (help desk) as needed. • Responsibilities include monitoring outsourced security services, producing reports on the organization’s security posture (including patching status and vulnerability scans), and reviewing threat intelligence. • The role is also responsible for developing and delivering regular security education and awareness content, including bimonthly Information Security communications published in Microsoft Teams and SharePoint.

• Drive the structuring and alignment of intelligence outputs to ensure they deliver intelligence driven operational outcomes, support threat-informed security operations, investigations, and remediation decision-making without requiring direct analyst rework. • Direct the development and implementation of operational intelligence strategies to proactively address emerging threats and support enterprise objectives. • Enable consistent production of timely intelligence products focused on relevant and active threats to support enterprise threat management operations. • Drive cross-functional collaboration, facilitating integration of threat intelligence with risk management, incident response, and security operations. • Establish and maintain stakeholder engagement models, including onboarding, stakeholder profiling, intelligence requirement intake, and feedback mechanisms, to ensure intelligence outputs are aligned to evolving enterprise and business needs. • Direct intelligence collection planning and prioritization to ensure effective coverage of priority and emerging threats while minimizing duplicative or ad hoc collection efforts. • Evaluate and recommend enhancements to intelligence tools, processes, and frameworks to optimize operational efficiency and effectiveness. • Perform threat actor and infrastructure analysis, including research and data pivoting, to identify malicious campaigns and emerging threat activity. • Lead the analysis of threats to the enterprise and the production of finished intelligence that integrates tactical and operational insights and provides direction on threat-driven prioritization. • Set clear goals and measure performance against established KPIs, using data-driven insights to inform decisions and program improvements. • Effectively communicate and report CTI program metrics and KPIs to technical leaders, senior leaders, and executives to demonstrate program effectiveness and value.

• Perform SOC operations to include monitoring, reporting and response to malicious activity. • Manage and prioritize multiple clients and projects. • Prepare daily, weekly, and monthly reports detailing task and responsibility status. • Conduct CMMC assessments of cybersecurity control compliance in accordance with Cyber AB Cybersecurity Strategy. • Draft and review CMMC artifacts (e.g., SSP, POA&M, MOU/MOA, topology, network architecture, PPSM, policies and procedures, HW/SW lists) for RMF compliance. • Support ISO requirements and documentation. • Support Cybersecurity Test & Evaluation (CT&E) or Developmental Test & Evaluation (DT&E) activities for system security engineering and program protection activities. • Draft authorizations for artifacts in accordance with customer requirements. • Continue education and learning new and evolving technologies. • Provide training on cybersecurity best practices, protocol, processes and procedures. • Perform other tasks as appropriate and as assigned.

• Work closely with technical teams to implement secure system improvements that meet DoD cybersecurity standards. • Monitor and evaluate project progress, providing actionable reports to leadership and government officials. • Communicate with team, customers, and stakeholders in a clear, concise, timely, and professional manner. • Manage and maintain security authorization packages within the DoD RMF lifecycle • Ensure the confidentiality, integrity, and availability of systems through compliance with NIST 800-53 controls and DoDI 8500 series • Draft and maintain documentation including System Security Plans (SSPs), POA&Ms, and Continuous Monitoring strategies • Support system assessments, vulnerability scanning, and remediation efforts using tools like SonarQube, Checkmarx, Trivy, Dependency Track, eMASS, and Nessus • Support system assessments, vulnerability scanning, and remediation efforts relating to DISA STIGs • Interface with government security officials (e.g., ISSMs, AO representatives) to support audits, inspections, and reviews • Coordinate security engineering input into system designs and control implementation • Track and respond to cybersecurity incidents and ensure timely reporting and recovery efforts • Participate in Agile/DevSecOps development cycles, ensuring security is integrated from concept to deployment • Assist with personnel security awareness, training, and insider threat mitigation • Commute as needed to the nearest secured facility to perform duties in a higher environment.