Information Security Analyst
2 weeks ago
The Information Security Analyst is responsible for securing the MSRB by supporting existing controls and processes across multiple dimensions and domains, including MSRB Web Applications, Cloud environments, networks, SaaS platforms, and enterprise systems. The analyst will support operational security processes by triaging our security alerts, phishing reports, vulnerabilities, and end-user requests. The analyst will also perform routine maintenance and troubleshooting of security tools and platforms. We expect the Analyst to work effectively with internal stakeholders, including the information security team, MSRB leadership, developers, system, database, and network administrators.
The Analyst will assist with implementing new tools and controls, enhancing existing controls, and monitoring the evolving threat environment to make informed recommendations and changes. The Analyst may also contribute to incident response efforts, education, training, policy, and governance initiatives.
**Essential Duties and Responsibilities**:
- Operational Support:
- Directly triage and respond to security alerts, phishing reports, and end-user requests on a regular basis.
- Support maintenance and troubleshooting activities for the Information Security program, including maintenance related to visibility, logging, SIEM, and anti-malware controls
- Support vulnerability management processes, such as scanning, assessments, penetration testing, and remediation efforts.
2. Continuous Improvement and Attack Surface Reduction:
- Identify and implement improvements in vulnerability management, anti-malware and SIEM platforms.
- Assist with implementation of new security tools and controls to enhance the organization's security posture.
- Proactively monitor and understand the evolving threat environment and cybersecurity developments.
3. Enterprise Security:
- Identify configuration issues and improvement opportunities.
- Lead and assist defense-in-depth efforts.
- Review and improve security-related SaaS configurations.
- Assist with Identity and Access Management efforts, including access reviews and implementation of least privilege.
- Communication, Education, and Security Awareness:
- Assist with incident response efforts.
- Assist with selection and management of security awareness courses, simulated phishing campaigns, and other routine education exercises.
- Communicate security policies and best practices to end-users, fostering a security-conscious culture.
- Assist staff with monitoring for and ensuring compliance with security policies, procedures, standards, and guidelines.
- Educate staff on associated risks and benefits of technologies.
- Expertise in enterprise security or technology functions, including:
- Critical Thinking Can break problems down into manageable, ordered components and effectively communicate issues and plans to others. Can incorporate new knowledge quickly. Demonstrates the ability to use different problem-solving strategies and select the one that best meets the requirements of the situation. Gathers data to support recommendations and seeks approval before taking action to minimize risk and maximize impact.
- Good Judgment Takes self-governed, consistent action to prioritize and weigh cost and value in order to determine the action most appropriately aligned with organizational goals. Keeps the big picture in mind while focusing on specific issues. Weighs risks and tradeoffs reasonably. Reliably escalates when necessary.
- Proactivity Eager to tackle day-to-day tasks and help teammates solve problems. Works with more experienced teammates to assist with solving complex problems and complete tasks within time constraints. Takes a deep sense of ownership in their work, no matter how small the task.
- Collaborative Takes initiative to actively participate in team interactions. Draws on the strengths of fellow team members. Actively seeks opinions and ideas from people of varied background and experiences to improve decisions. Can effectively distill and communicate complex technical concepts to non-technical staff. Communicates effectively.
We are proud to be a collaborative organization that values diversity, equity and inclusion. We offer comprehensive benefits that support our employees’ overall mental and physical health and wellness. We aim to empower our employees with the resources they need to achieve a successful work-life integration.
A resume must be attached for full consideration. All applicants must demonstrate their ability to work in the U.S. without current or future employer sponsorship. No exceptions will be made.
-
Information Security Analyst
7 days ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
1 week ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
1 week ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
1 week ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
1 week ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
6 days ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
4 days ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
6 days ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
5 days ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information Security Analyst
6 days ago
Washington, United States Municipal Securities Rulemaking Board Full timeThe Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst who will play a key role in safeguarding our organization by actively engaging in operational security procedures. The Information Security Analyst will manage day-to-day security tasks, which include managing alerts, investigating phishing incidents, resolving end user...
-
Information/Operations Security Analyst
1 month ago
Washington, United States Dynamis, Inc. Full timeJob DescriptionJob DescriptionDynamis is seeking a Information/Operations Security Analyst to support the National Nuclear Security Administration's (NNSA) operational and technical support services of the Office of Defense Nuclear Security (NA-70). This position will either support the Washington, DC or Germantown, MD onsite office.DOE Top Secret, DOE Q...
-
Information Security Analyst
1 day ago
Washington, Washington, D.C., United States RightDirection Technology Solutions Full timeRightDirection Technology Solutions LLCDescription:An Information Security Analyst is needed to support the Dept of State customer base and will work as a member of the Global Talent Management (GTM Help Desk) in Washington, DC. This role is full-time, standard work week and hours, and hybrid (one week a month onsite).The User Security team will establish,...
-
Information Security Analyst
5 days ago
Washington, United States Super Systems Inc Full timeThis role is hybrid - 2x a week onsite-3x a week REMOTE The Senior Information Systems Security Analyst will support IT management with control assessment, development, and maintenance, and risk assessment and response development. Specifically, this job requires the following: - Develop and maintain IT security controls per NIST SP 800-53 and Agency...
-
Information Systems Security Analyst
2 weeks ago
Washington, United States Summit Technologies Full timeSummit Technologies Inc. is seeking an Information Systems Security Analyst to support our government client. The Information Systems Security Analyst will support IT management with control assessment, development, and maintenance, and risk assessment and response development. This is a hybrid role based in Washington, DC. Candidates must be eligible for a...
-
Information Systems Security Analyst
4 weeks ago
Washington, United States Summit Technologies, Inc. Full timeJob DescriptionJob DescriptionSummit Technologies Inc. is seeking an Information Systems Security Analyst to support our government client. The Information Systems Security Analyst will support IT management with control assessment, development, and maintenance, and risk assessment and response development.This is a hybrid role based in Washington, DC....
-
Senior Information Sysems Security Analyst
2 weeks ago
Washington, United States Summit Technologies Full timeSummit Technologies Inc. is seeking a Senior Information Systems Security Analyst to support our government client. The Senior Information Systems Security Analyst will support IT management with control assessment, development, and maintenance, and risk assessment and response development. This is a hybrid role based in Washington, DC. Candidates must be...
-
Information System Security Engineer
1 month ago
Washington, United States Information Protection Solutions Full timeJob DescriptionJob DescriptionRESPONSIBILITYAnalyze science, engineering, business, and other data processing problems to implement and improve computer systems. Analyze user requirements, procedures, and problems to automate or improve existing systems and review computer system capabilities, workflow, and scheduling limitations. May analyze or recommend...
-
Senior Information Sysems Security Analyst
6 days ago
Washington, United States Summit Technologies Full timeSummit Technologies, Inc. is seeking a Senior Information Systems Security Analyst to support our government client. Senior Information Systems Security Analyst support IT management with control assessment, development, and maintenance, and risk assessment and response development. This is a hybrid role based in Washington, DC. Candidates must be eligible...
-
Senior Information Sysems Security Analyst
1 month ago
Washington, United States Summit Technologies, Inc. Full timeJob DescriptionJob DescriptionSummit Technologies Inc. is seeking a Senior Information Systems Security Analyst to support our government client. The Senior Information Systems Security Analyst will support IT management with control assessment, development, and maintenance, and risk assessment and response development. This is a hybrid role based in...
-
Senior Information Systems Security Officer
8 hours ago
Washington, United States Information Protection Solutions Full timeJob Description Job Description Information systems security officers (ISSO) research, develop, implement, test and review an organization's information security in order to protect information and prevent unauthorized access. Officers inform users about security measures, explain potential threats, install software, implement security measures and monitor...
