Cyber Security Analyst
Location
United States
Posted
3 days ago
Salary
$80K - $92.5K / year
Seniority
Mid Level
Job Description
Cyber Security Analyst
LTS
Role Description LTS is seeking a Cyber Security Analyst to support the Department of Veterans Affairs (VA) Health Portfolio. The Health PMO support contract provides IT program management, project management, technical management, financial management, functional planning, and documentation analysis in support of the Enterprise Program Management Office (EPMO) Enterprise Program Management Division (EPMD) Health Portfolio. The VA Health Portfolio is focused on development and execution of quality IT projects that address the needs of Veterans and health care providers through management of health care information and sustainment of production software to keep the mission going. This individual will support cybersecurity efforts across multiple projects within a portfolio setting and proactively monitor upcoming cyber priorities across the VA Health portfolio. - Communicate and provide consultative support on the VA on matters related to system security certification & accreditation and Authority to Operate (ATO). - Coordinate and lead security and privacy activities within project teams and develop security and privacy related artifacts. - Review and identify system/applications security controls in accordance with NIST SP-800 53 Rev 4 guidance and VA Handbook 6500. - Responsible for on-time deliverables of assigned and related security and privacy artifacts. - Identify and mitigate risks to the program. - Demonstrated experience in a remote work environment. - Ability to proactively communicate and coordinate with various internal and external project stakeholders, depending on needs. - Identifying and communicate symptoms for process improvement. - Ability to work independently with minimal guidance and supervision. - Support a team of other cyber security professionals. - Support Application development/maintenance and IT operations with Agile practices. - Build and develop cyber security related artifacts. - Resolve requests for assistance in troubleshooting issues. - Participate in new and existing IT modernization, expansion, and improvement of security architecture and engineering projects support enterprise operations. - Support ATO, and the VA ISO/ISSO in support of ATOs, ServiceNow CAM tool and other security tracking systems. Typical tasks for this role include but are not limited to: - Authority-to-Operate (ATO) & Authority to Connect (ATC) remediation efforts. - System scans and audit preparation. - ServiceNOW updates, and reporting. - SOP Creation and Updating. - Artifact Research. - PIA (Privacy Impact Analysis) and PTA (Privacy Threshold Analysis) Documentation. - Program and administrative support (meeting notes, reports, org/role documentation, etc.). - Ad hoc remediation response support. - Communications support. Qualifications - Business Administration, Business Management, Computer Science, Information Systems, Operations Research, or related fields, plus 15 years of experience; 10 additional years of experience can be substituted for the degree requirement. - Ability to work in a fast-paced, collaborative environment. - Strong understanding and hands-on experience working with Federal Information Security Management Act (FISMA), NIST-800-53 guidance, HIPAA, and HITECH Act. - Must have experience achieving an ATO for projects within the VA or other Federal Agencies. - Experience supporting Information Assurance Certification and Accreditation (C&A) and associated IA processes, procedures, and activities with capability and expertise to implement applicable NIST and CNSS IA directives, instructions, guidelines. - Ticketing systems experience such as ServiceNow. - Experience in collaborating with other enterprise technologists both internal and external to resolve complex technical issues. - Ability to work both independently with minimal guidance and to supervise and lead collaborations with project team members, program customers, and program and external stakeholders on behalf of the VA Technical Lead. - Demonstrated experience in a remote work environment. - Ability to proactively communicate and coordinate with various internal and external project stakeholders, depending on needs. - Security+ or other applicable certification. - Experience applying security engineering concepts, processes, practices, and procedures on technical assignments, working with several different mission applications. - Analytical and investigation skills. - Experience with the VA Risk and Governance Tool. Nice to Have - Experience as a VA ISSO, ISO or System Steward. - Experience using Service Now (SNOW) Continuous Authorization and Monitoring (CAM) Tool. - Experience with Cloud Engineering and Agile/Scrum. - Experience in HBSS, ACAS, and NESSUS scanning, analysis, mitigation, and implementation. - Experience with cloud migration and security architecture. - Experience with event-driven architecture. - Knowledge of HL7. - Knowledge or experience with VistA. - Evaluation and creation of POA&Ms. - CISSP certification. - Experience with Federal Risk and Authorization Management Program (FedRAMP) is a definite plus. - Experience with achieving an ATO for Software as a Service (SaaS) and/or Cloud based applications is a definite plus. - Well versed in the VA Veteran-Focused Integration Process (VIP) project management methodology and other VA security related reporting methodologies. - Experience with the VA’s Governance, Risk management and Compliance (GRC) Tool, CAM, ServiceNow. - Security certification below preferred. - Preferred: CISSP (ISC2) or CISM (ISACA). - Acceptable: CEH (EC-Council), GSEC (SANS GIAC), or Security+ (CompTIA). Benefits - The opportunity to support high visibility federal missions in IT and healthcare. - A culture that values innovation, growth, collaboration, and quality. - Access to cutting-edge tools and technologies. - Comprehensive benefits for you and your family. - A career path that rewards ambition and performance. Pay Range $80,000 — $92,500 USD. LTS shares salary ranges to promote transparency. Compensation ranges are provided for informational purposes, and final compensation may vary based on experience, skills, location, and role requirements.
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
Senior Security Analyst
Digital ScienceAdvancing the research ecosystem. Together, we make open, collaborative and inclusive research possible.
• Partner as a trusted senior security advisor with engineering and product teams to embed secure-by-design principles early in the software development lifecycle. • Lead Cloud Security Assessments and design robust technical security controls to proactively identify, prioritize, and remediate architectural vulnerabilities. • Review and challenge proposed technology solutions and architectural designs, offering authoritative guidance to continuously raise the security maturity of our infrastructure teams. • Champion secure AI adoption by evaluating the data and security risks of emerging AI tools and workflows, ensuring they are deployed responsibly across the organization. • Drive incident response and vulnerability management initiatives, coordinating containment, eradication, and recovery efforts to safeguard business continuity. • Interrogate security data from across our global environment to surface trends, identify systemic weaknesses, and flag emerging threats before they materialize into incidents. • Optimize and manage core security technologies—including GRC reporting and threat detection platforms—to turn external threat intelligence into actionable defense strategies. • Own and deliver key strategic TechSec workstreams from initiation to completion, ensuring strong governance and transparent stakeholder communication throughout the project lifecycle.
Associate Cybersecurity Analyst
American Technology ServicesInnovative Solutions for Today's IT Challenges
• Continuously monitor security alerts from various security tools (SIEM, IDS/IPS, firewalls, etc.) to identify potential threats • Perform routine analysis of logs and network traffic to detect suspicious activities and potential security breaches • Escalate critical incidents to senior SOC analysts or other relevant teams as per the established protocols • Document security incidents, including the steps taken to resolve them, and maintain accurate records for audit and reporting purposes • Participate in ongoing training and development opportunities to enhance your cybersecurity knowledge and skills
• Monitor security events and alerts using security and monitoring tools • Assist in identifying, analyzing, and handling information security incidents • Conduct vulnerability scans and follow up on remediation plans • Assist in access management, user profiles, and permissions • Support the implementation and maintenance of security policies, standards, and procedures
• Monitorizar eventos e alertas de segurança através de ferramentas de segurança • Apoiar na identificação, análise e tratamento de incidentes de segurança • Realizar verificações de vulnerabilidades e acompanhar planos de correção • Auxiliar na gestão de acessos, perfis e permissões de utilizadores • Apoiar a implementação e manutenção de políticas de segurança



