MKS2 Technologies logo
MKS2 Technologies

Austin-based SDVOSB delivering application development, cybersecurity, instructional design and training to DOD and VA.

Senior ISSO Security Analyst

Security AnalystSecurity AnalystFull TimeRemoteSeniorTeam 201-500Since 2008H1B No SponsorCompany SiteLinkedIn

Location

United States

Posted

3 days ago

Salary

$100K - $115K / year

Seniority

Senior

Bachelor Degree10 yrs expExperience acceptedEnglishCyber Security

Job Description

Senior ISSO Security Analyst

MKS2 Technologies

• Use your experience to work with Veterans Affairs (VA) Information System Owners (ISO), Information System Security Officers (ISSO), site managers, and other system stakeholders to coordinate and drive the completion of Risk Management Framework (RMF) steps 0-6 ATO activities and requirements • Identify and mitigate risks, escalate project risks to leadership, understand and apply VA authorization policies and processes, and provide information system security expertise • Ensure the appropriate operational security posture is maintained for information systems throughout the system’s lifecycle from product acquisition and installation through decommission • Complete and maintain very detailed security documentation and coordinate to execute ATO support duties that documents security details related to system installations, a variety of IT systems, networks, hardware, and software in a variety of complex and simple installation sites • Work with your client to translate security concepts into actionable implementable solution recommendations to help the client make informed security decisions from all aspects of IT deployments ensuring full commissioning is completed through deployment into production and decommissioning • Act as an information security and RMF subject matter expert while broadening your skills in cybersecurity.

Job Requirements

  • Experience supporting all RMF steps, security categorizations, creating and updating security artifacts and FISMA security documents, control implementation details, and Plan of Action and Milestones (POA&M)
  • Experience with National Institute of Standards and Technology (NIST) SP 800-53 security controls, RMF, and system authorizations and security compliance standards and processes
  • Experience creating plans and approaches for executing product installation securely in accordance with agency authorization policy requirements for system major changes and development lifecycles, while identifying potential risks and working with system stakeholders to create mitigation strategies to reduce or eliminate risks
  • Experience analyzing authorization documents and associated artifacts against authorization requirements to identify gaps, establish a schedule to address outstanding authorization requirements, and coordinate directly with system stakeholders to address identified gaps in accordance with required deadlines
  • Ability to independently lead client-facing meetings and present complex ATO topics to the client
  • Ability to organize, manage, and maintain large amounts of discrete data with various expiration dates across multiple systems simultaneously
  • Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements
  • Bachelor’s degree in CS or Electronics Engineering and 10+ years of experience in information technology or 18+ years of experience in information technology in lieu of a degree.

Benefits

  • Benefits

Related Job Pages

More Security Analyst Jobs

CoE | Centro de Excelência Votorantim logo

Analista de Segurança da Informação Sr – Resposta a Incidente

CoE | Centro de Excelência Votorantim

Desafiamos o modo como as coisas são feitas. Sabemos que é possível fazer diferente. Escolhemos fazer juntos.

Full TimeRemoteTeam 501-1,000Since 2004H1B Sponsor

• Gestão de Incidentes: Liderar a resposta técnica a incidentes de segurança complexos (Ransomware, APTs, Insider Threats), desde a detecção até a lição aprendida (Post-Mortem). • Threat Hunting: Realizar caça proativa de ameaças na rede e nos endpoints, partindo de hipóteses baseadas em Threat Intelligence. • Forense Digital: Coletar e analisar artefatos digitais (memória, disco, logs) para reconstruir a linha do tempo do ataque. • Engenharia de Detecção: Criar e otimizar regras de correlação no SIEM e assinaturas de detecção (YARA, Snort/Suricata). • Automação (SOAR): Desenvolver playbooks e scripts (Python/PowerShell) para automatizar a resposta a alertas repetitivos. • Mentoria: Apoiar o desenvolvimento técnico de analistas júnior e pleno (N1/N2).

Brazil
Box logo

Security Analyst

Box

Box(NYSE: BOX)はインテリジェントコンテンツ管理(ICM)プラットフォームのリーディングカンパニーです。Boxのプラットフォームは、企業のコラボレーション促進や、コンテンツのライフサイクル全体の管理、重要なコンテンツの保護、そしてエンタープライズAIによるビジネスワークフローの変革を実現することを目指しています。

Full TimeRemoteTeam 1,001-5,000

Role Description Box's Security Incident Response Team (SIRT) is responsible for managing Box's security incidents. Box presents a unique opportunity to be a part of building our global security team at massive scale. We have built a world-class group with some amazing talent and this is a unique opportunity to grow with us. We need a Security Analyst with experience fighting security fires, who is comfortable being uncomfortable, and is willing to run point on incidents. You're passionate about helping the team better understand your areas of expertise and interest, and to share your knowledge in a collaborative environment that focuses on enabling the team to share their unique skills and perspectives. - Responding and investigating security alerts - Recognising trends in alerts to help strengthen Box's security posture and provide suggestions for enhanced alerts, detection coverage and automation - Executing and delivering work towards long-term goals and initiatives to support Box's overall security posture - Adapting to change and effectively organising work according to business priorities - The documentation of process and procedures Qualifications - Bachelor's degree in a technical engineering or IT related field or equivalent experience - A pulse on the tools, tactics and procedures the bad guys are using today and what they'll be using tomorrow. This includes Splunk, Burp Suite, etc. - Experience with formal security models like MITRE ATT&CK or CIS Critical Security Controls - You work well with the unpredictable, ever changing threat landscape that exists in cybersecurity - You can perform independently to collect data, perform analysis, and research findings to determine if abuse or exploitation occurred - Enthusiasm and passion for Cyber Security - Experience in three or more of the following: - Cloud Security - we're a cloud company! - System Security - MacOS/Linux/Windows - Network Security - IDS, PCAP - Malware Analysis & Forensics - Incident Response - Signature/Alerting Creation - Tools of the trade including RegEx, YARA - Scripting - We like Python but other languages like Golang are cool too - SIEM/Log Aggregation/Data Analytics/Query languages - Splunk SPL, Lucene, SQL, Elk DSL - Networking and Security certifications a plus - Cybersecurity Boot Camp experience/completion a plus - Familiarity with AI tools and AI security - Excellent communication skills Requirements - Must be willing to work a shift schedule (4 days x 10 hours, 1 weekend day) Benefits - Pension, medical and dental coverage - Robust wellness program including 25 days of vacation (plus your birthday off!) - Subsidized gym membership Equal Opportunity We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability, and any other protected ground of discrimination under applicable human rights legislation.

EMEA
Full TimeRemoteTeam 201-500Since 1999H1B No Sponsor

• Monitor and investigate security alerts and events across security tooling, cloud environments, business systems, and applications. • Support incident response activities including detection, analysis, containment, eradication, recovery, and lessons learned. • Develop and improve security monitoring, alerting, playbooks, and operational procedures. • Assist with threat hunting and proactive identification of security risks and suspicious activity. • Maintain awareness of emerging cyber threats, vulnerabilities, and attack techniques relevant to SaaS businesses. • Own day-to-day vulnerability management activities across infrastructure, cloud platforms, applications, and endpoints. • Work with technology teams to prioritise and coordinate remediation activities. • Track vulnerabilities through to resolution and provide reporting on remediation performance. • Support penetration testing activities and coordinate remediation of findings. • Support the security of cloud environments and SaaS platforms through implementation and monitoring of security controls. • Assist with identity and access management initiatives, including privileged access management, role-based access control, and identity governance. • Review cloud security recommendations and assist with remediation activities. • Partner with engineering teams to support secure software development practices. • Assist with the identification, triage, and remediation of application security vulnerabilities. • Support security testing activities including SAST, DAST, dependency scanning, and secrets detection. • Contribute to threat modelling and secure design discussions where appropriate. • Support the continued operation and improvement of the Information Security Management System (ISMS). • Assist with security audits, compliance activities, evidence collection, and control reviews. • Contribute to the development and maintenance of security policies, standards, procedures, and guidance. • Support risk assessments and assist with tracking risk treatment activities. • Help maintain compliance with frameworks and standards including ISO 27001 and applicable data protection requirements. • Respond to customer and prospect security questionnaires and due diligence requests. • Conduct security reviews of suppliers, partners, and third-party services.

United Kingdom
Alberta Blue Cross logo

Security Analyst – Information Technology

Alberta Blue Cross

Courage to fly, smile, move, start, stop, build, re-build and grow. We’re your Alberta benefits provider.

Full TimeRemoteTeam 1,001-5,000Since 1940H1B No Sponsor

• Respond to threats, alerts, and cybersecurity incidents, supporting activities from detection through remediation • Follow and support adherence to standard operating procedures and identify opportunities for improvement • Participate in the planning and execution of simulation exercises, such as phishing testing • Participate in vulnerability management activities from scanning through to remediation • Analyze threat intelligence sources and publicly disclosed vulnerabilities to assess relevance, exploitability, and potential impact • Support cybersecurity audits and associated remediation efforts • Collaborate with internal teams to support security risk assessments across systems and applications • Identify potential security risks and recommend remediation or mitigation options • Support the maintenance and improvement of security policies, procedures, and standards • Support the delivery and continuous improvement of security awareness and training initiatives • Support validation and tuning security controls across identity, endpoint, and cloud environments • Support the implementation of security tools, controls, and operational initiatives • Communicate effectively with various IT technical and business teams

Canada