BaltimoreRecruiter Since 2001
the smart solution for Baltimore jobs

Cyber Security Analyst

Company: Lehigh Technical
Location: Chestertown
Posted on: January 16, 2022

Job Description:

Job Description Privacy and Compliance

1. Defines standards and technical controls required by CMMC, CUI data handling, NIST framework and CIS

controls.

2. Audit's systems to ensure proper compliance and controls are in place where needed. i.e. endpoint

encryption, inventory, patching, remote wiping, account provisioning, etc.

3. Oversee state and federal compliance and regulation requirements.

4. Provide technical writing for system documentation. Compose and maintain all IT related policies and

procedures.

5. Assist with the creation, maintenance, and delivery of Employee Cyber Security Awareness program

Cyber Security Controls

6. Research/evaluate emerging cyber security threats and ways to manage them. Investigate security alerts.

7. Follow the change management process to secure the overall IT infrastructure. i.e. Active Directory,

Operating systems, hardware firmware, IoT devices, network traffic, etc.

8. Maintain a risk matrix to help prioritize cyber initiatives and maintain a cyber roadmap with associated

budgetary costs.

9. Provide strategic and technical recommendations following identification of vulnerabilities in operating

systems, applications, and network infrastructure. Oversight and hands on implementation to remediate

vulnerabilities required.

10. Implement, oversee and support security solution capabilities, such as firewalls, intrusion prevention and

detection, endpoint protection, data encryption, SIEM, and traffic filtering.

11. Understand and have accurate inventory of all IT assets to evaluate security controls and recommend

corrective actions to mitigate technical risks.

12. Prepare and deliver reports outlining test results and present to technical and non-technical staff. i.e.

measurable cyber maturing metrics and operational performance activities.

13. Develop, recommend, and maintain methodologies and tools to enhance the cyber maturity model.

14. Own the overall IT security posture to include composing comprehensive Business Resumption Plan,

Disaster Recovery Plan, Security Awareness Plan and IT Security Incident Handling Plan, etc.

15. Proactively monitor all IT assets for security breaches and follow the major incident plan if needed. Monitor

data flows on the network.

16. Schedule and perform frequent testing and simulate cyber-attacks. i.e. plan for disaster recovery and

create contingency plans in the event of any security breaches

17. Analyze high volume of logs to monitor activity and investigate potential malicious activity.

18. Protect and secure the cloud datacenter model to include various vendor hosted SaaS offerings.

Required Knowledge, Skills, and Abilities:

1. Excellent analytical and problem-solving skills

2. Excellent attention to detail

3. Understanding of Active Directory

4. A passion for Service Management

5. Able to work under pressure in a fast-paced environment and meet deadlines

6. Able to manage sensitive and confidential information

7. Self-motivation and able to take ownership and responsibility

8. Results oriented with continuous improvement focus

9. Manage priorities and efficient time management

10. Demonstrate initiative and proactive approach to daily tasks

11. Risk based decision making (risk analysis, mitigation, resolution, etc.) skills

12. Strong communication skills for both technical and non-technical audiences with focus on customer service

13. Strong knowledge of IT software and hardware

14. ITSM tool experience

15. Extensive knowledge of Microsoft desktop and server Operating Systems, VMware and networking

protocols

16. Excellent analytical and problem-solving skills.

17. Excellent understanding of web applications, servers, frameworks and protocols.

18. Ability to identify/remediate security weaknesses as well as perform live packet capturing for

troubleshooting, i.e. identify bottlenecks and performance issues.

19. Extensive knowledge of infrastructure and application security technologies to include cloud services.

Five (5) or more years' experience of direct IT security experience.

CMMC, GDPR, PCI knowledge as well as understanding of NIST requirements.

CEH, CISA, CISSP and/or Security+ certification preferred

Sonicwall firewall experience preferred.

Nesco Resource and affiliates (Lehigh G.I.T Inc, and Callos Resource, LLC) is an equal employment opportunity employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, or veteran status, or any other legally protected characteristics with respect to employment opportunities.

Keywords: Lehigh Technical, Baltimore , Cyber Security Analyst, Professions , Chestertown, Maryland

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Log In or Create An Account

Get the latest Maryland jobs by following @recnetMD on Twitter!

Baltimore RSS job feeds