This job has expired.
Location: Washington, DC
Salary: $50.00 USD Hourly - $60.00 USD Hourly
Description: The Judge Group is currently seeking a Security Analyst to support a large federal organization in Washington, DC. This position offers a hybrid schedule. For immediate consideration email your resume to rkissinger@judge.com.
- Robbie Kissinger
Job Responsibilities:
Application Support: Maintain and operate assigned business applications in line with the organization's IT security policies.
Catalog Management: Keep an updated catalog of IT enterprise and departmental applications, including system and vendor contacts, tier, location, and type (Cloud, on-premise, hybrid, colocation, etc.).
Policy Enforcement: Act as the primary contact for implementing and enforcing information security policies, such as account and configuration management.
Security Implementation: Participate in the implementation of security policies, standards, and procedures for assigned applications.
Interconnection Security: Ensure interconnection security agreements (ISAs) are in place for key interfaces.
Backup and Restore: Conduct annual backup and restore tests for on-premise applications.
Vendor Review: Collaborate in fusion teams to assess vendor capabilities and security posture for potential new systems.
System Upgrades: Work with operations and vendors to patch vulnerabilities and perform timely system upgrades.
Vendor Management: Manage relationships with third-party vendors for IT contracts related to assigned applications.
Risk Assessment: Review vendor capabilities and security posture for new IT systems/applications/services and provide risk recommendations.
Stakeholder Collaboration: Work with the CISO, CIO, system managers, and other stakeholders to finalize IT security requirements for third-party systems.
Contract Compliance: Ensure IT security requirements are included in contracts issued by the Contracts and Procurement Office (APC).
Third-Party Compliance: Ensure vendors comply with IT security policies and procedures as part of the third-party risk management program.
Vulnerability Management: Review vulnerability scan results for third-party applications/systems/devices and work with system managers and operations personnel to remediate critical and high vulnerabilities.
Required Knowledge and Skills:
Experience: At least 3+ years of progressive IT security experience in a complex organization.
Education: Bachelor's degree in Information Technology, Computer Science, Engineering, or a related field. Certifications in IT security (e.g., Security+, CAP, SSCP, CEH) are preferred but not mandatory.
Technical Skills: Proficiency in supporting, monitoring, testing, and troubleshooting hardware and software issues in computing and network environments.
Security Controls: Knowledge of SP 800-53 security controls and their application to IT systems.
Technology Awareness: Ability to stay current with evolving IT security technologies, such as identity and access management tools, patch management, and software distribution tools (e.g., Ivanti, Casper).
System Experience: Technical experience with Windows, Mac, and/or Linux systems.
Organizational Skills: Ability to plan, organize work, and meet deadlines with minimal supervision.
Subscribe to job alerts and upload your resume!
*By registering with our site, you agree to our
Terms and Privacy Policy.