Information Security Analyst I

2 months ago

Washington, United States Federal Reserve Board Full time
Position Description

Minimum Education

Bachelor's degree or equivalent experience

Minimum Experience

1

Summary

Supports the process of designing and implementing security measures to meet the needs of the organization's IT systems. Develops a foundational understanding of system architecture and the ability to design security solutions that can be applied to multiple systems. Uses data analytics to identify potential security risks and make data-driven decisions about how to improve security across the organization. Collaborates with other cybersecurity professionals to develop and implement security solutions that can withstand potential threats. With extensive guidance, provides technical and analytical information security support to ensure Board information and systems are adequately protected.

Duties and Responsibilities

  • Supports the implementation of risk management and continuous monitoring activities for technology portfolios. Utilizes foundational knowledge of risk management principles to evaluate and mitigate potential risks and identify emerging risks using established frameworks and guidelines. Participates in assessing the causes and sources of risk, the impacts, and the probability of occurrence.
  • With extensive guidance, supports planning and implementation of the cybersecurity initiative, such as Cybersecurity Executive Order directives including Zero Trust Architecture.
  • Coordinates with team members to create and communicate plans (action, operating, automation, strategic plans), options, and approaches to ensure continuous service and process improvement.
  • Helps design and/or develops new policies and procedures to address cybersecurity and operational risk and may make recommendations to senior management on resilience, information technology, and critical infrastructure. Shadows more senior staff to learn to improve upon business processes by employing a systematic approach of evaluating and optimizing underlying processes.
  • Utilizes foundational knowledge of and adherence to applicable governing standards to work closely with the Division of IT security teams to support compliance with the Board Information Security Program (BISP).
  • Supports the facilitation of the initiation and completion of all security assessments and meeting agreed upon schedules by the supported divisions and certifying agents.
  • Shadows more senior staff to provide premier IT and business consulting support to provide expert recommendations and function as a trusted advisor to clients and stakeholders. May include foundational knowledge of IT systems, strategic planning, researching new and emerging technologies, evaluating proposed IT solutions, supporting IT procurement activities, and briefing leadership.
  • Supports teammates to work with clients and vendors to implement information system security lifecycle plans in compliance with applicable security statutes and regulations.
  • With extensive guidance, works on project team to implement and measure the effect of minimally complex security, data loss prevention and privacy strategies. Effectively plans, prioritizes, and executes assignments and work activities with regular supervision.
  • Utilizes foundational knowledge of system security standards, best practices, trends, preventative measures, and disaster recovery processes to verify the effectiveness of the security controls protecting systems, which may entail developing and implementing test scripts and running security scans. May recommend security enhancements.
  • Participates in developing techniques and procedures for conducting cybersecurity risk assessments and compliance audits and evaluating and testing hardware, firmware, and software. Shadows more senior staff to enhance techniques and procedures for conducting cybersecurity risk assessments and compliance audits and evaluating and testing hardware, firmware, and software. Supports conducting cybersecurity risk assessments and compliance audits and evaluating and testing hardware, firmware, and software. Applies foundational understanding of the implications and impact of provisioning unnecessary access within systems.
  • Participates in designing reporting dashboards and creating data visualizations and reports for a variety of audiences. Effectively communicates technical terms to provide guidance on complex data and information in a succinct and compelling manner. Minimally skilled in developing written and oral communication to articulate technical concepts, ideas, and recommendations to various audiences. Support ad-hoc information security initiatives and special assignments.
Position Requirements

Duties and Responsibilities
  • Supports the implementation of risk management and continuous monitoring activities for technology portfolios. Utilizes foundational knowledge of risk management principles to evaluate and mitigate potential risks and identify emerging risks using established frameworks and guidelines. Participates in assessing the causes and sources of risk, the impacts, and the probability of occurrence.
  • With extensive guidance, supports planning and implementation of the cybersecurity initiative, such as Cybersecurity Executive Order directives including Zero Trust Architecture.
  • Coordinates with team members to create and communicate plans (action, operating, automation, strategic plans), options, and approaches to ensure continuous service and process improvement.
  • Helps design and/or develops new policies and procedures to address cybersecurity and operational risk and may make recommendations to senior management on resilience, information technology, and critical infrastructure. Shadows more senior staff to learn to improve upon business processes by employing a systematic approach of evaluating and optimizing underlying processes.
  • Utilizes foundational knowledge of and adherence to applicable governing standards to work closely with the Division of IT security teams to support compliance with the Board Information Security Program (BISP).
  • Supports the facilitation of the initiation and completion of all security assessments and meeting agreed upon schedules by the supported divisions and certifying agents.
  • Shadows more senior staff to provide premier IT and business consulting support to provide expert recommendations and function as a trusted advisor to clients and stakeholders. May include foundational knowledge of IT systems, strategic planning, researching new and emerging technologies, evaluating proposed IT solutions, supporting IT procurement activities, and briefing leadership.
  • Supports teammates to work with clients and vendors to implement information system security lifecycle plans in compliance with applicable security statutes and regulations.
  • With extensive guidance, works on project team to implement and measure the effect of minimally complex security, data loss prevention and privacy strategies. Effectively plans, prioritizes, and executes assignments and work activities with regular supervision.
  • Utilizes foundational knowledge of system security standards, best practices, trends, preventative measures, and disaster recovery processes to verify the effectiveness of the security controls protecting systems, which may entail developing and implementing test scripts and running security scans. May recommend security enhancements.
  • Participates in developing techniques and procedures for conducting cybersecurity risk assessments and compliance audits and evaluating and testing hardware, firmware, and software. Shadows more senior staff to enhance techniques and procedures for conducting cybersecurity risk assessments and compliance audits and evaluating and testing hardware, firmware, and software. Supports conducting cybersecurity risk assessments and compliance audits and evaluating and testing hardware, firmware, and software. Appl ies foundational understanding of the implications and impact of provisioning unnecessary access within systems.
  • Participates in designing reporting dashboards and creating data visualizations and reports for a variety of audiences. Effectively communicates technical terms to provide guidance on complex data and information in a succinct and compelling manner. Minimally skilled in developing written and oral communication to articulate


Position Requirements:

FR-23 Minimal Qualifications:

Requires a bachelor's degree in computer science, information technology, cybersecurity, or a related business technology field and one year of experience. Must have foundational knowledge in the following areas: business process improvement, risk management, system security, system design, information security, security standards, compliance , and project management. Must be able to work effectively with more senior staff. Must be able to support more senior staff with one or more of the following: designing security systems, investigating and resolving security breaches, consulting, technical writing, and communication.

FR-24 Minimal Qualifications:

Requires a bachelor's degree in computer science, information technology, cybersecurity or a related business technology field and three years of experience. Must have intermediate knowledge in the following areas: business process improvement, risk management, system security, system design, information security, security standards, compliance, and project management. Must be able to work effectively with more senior staff. Must be able to support more senior staff with one or more of the following: designing security systems, investigating and resolving security breaches, consulting, technical writing, and communication

FR-25 Minimal Qualifications:

Requires a bachelor's degree in computer science, information technology, cybersecurity or a related business technology field and four years of experience. Must have intermediate knowledge in the following areas: business process improvement, risk management, system security, system design, information security, security standards, compliance, and project management. Must be able to work effectively with more senior staff. Must be able to assist more senior staff with one or more of the following: designing security systems, investigating and resolving security breaches, consulting, technical writing, and communication.

Uses critical thinking to conceptualize and/or evaluate information to determine appropriate strategies and solutions, after being given moderate to minimal instruction and guidance from more senior staff. Applies technical expertise, initiative, reliability, and judgment. May help develop strategies for improving systems.

Works on a wide variety of low complexity tasks requiring critical thinking and analytical skills. Completes tasks and activities in a timely manner. May identify new initiatives/projects that will further the work of the section or division.

Has knowledge of dashboarding and automation tools, specifically PowerPlatform, and has experience with creating various automation solutions for compliance workflows. Experience with vendor risk management and security/procurement workflows.

There is a lead candidate for this position.

This position is hybrid, requiring a combination of telework and in-office presence in Washington, DC.

  • Information Security Analyst

    4 days ago

    Washington, United States Deputy Assistant Secretary for Information and Technology Full time

    About Our OrganizationThe Deputy Assistant Secretary for Information and Technology is a leading organization in the field of information technology. We are dedicated to providing innovative solutions to our clients, and we are seeking a talented Information Security Analyst to join our team.Job SummaryThis is an exciting opportunity for a highly motivated...

  • Information Security Analyst

    2 days ago

    Washington, Washington, D.C., United States RAMPS International Inc. Full time

    Key ResponsibilitiesAs an Information Security Analyst at RAMPS International Inc., you will be responsible for defining and implementing security configurations for threat detection/prevention tools, integrating threat, vulnerability, IT, and business intelligence to prioritize incident handling and investigation, and performing analysis for security events...

  • Information Security Analyst

    4 weeks ago

    Washington, United States VMD Corp Full time

    Description As a Vision, Mission, and Driven company, VMD has been delivering information technology solutions to the Federal government in Agile Engineering, Cybersecurity, and Critical Infrastructure Protection since 2002. Our mission has now expanded, and we have merged with Xcelerate Solutions to revolutionize end-to-end enterprise security. Together we...

  • Cyber Security Threat Analyst

    3 weeks ago

    Washington, Washington, D.C., United States General Dynamics Information Technology Full time

    About Cyber Security Threat AnalysisCyber security is a critical component of modern defense, and as a Cyber Security Threat Analyst with General Dynamics Information Technology (GDIT), you will play a vital role in protecting our nation's most sensitive systems.Salary Range: $134,597 - $172,500 per yearAbout the JobWe are seeking a highly skilled and...

  • Information Security Analyst

    1 week ago

    Washington, United States Brilliant Infotech Full time

    Job Title: Information Security Analyst Location: Washington, DC Duration: 12+ Months (Extendable) Assignment Type: OnsiteNeed Locals Only Due To Work RequirementsDescription Required skillset must include: 9+ years of experience in firewall and network administration (emphasis on firewall) Hands-on experience performing firewall administration (maintaining,...

  • Information Security Analyst

    4 weeks ago

    Washington, United States Chenega Corporation Full time

    **Summary** ** Telework, however must reside in the Washington D.C. area for requisite onsite work. ** Come join a company that strives for _Extraordinary People and Exceptional Performance_ ! **Chenega Services & Federal Solutions, LLC,** a **Chenega Professional Services** company, is looking for an **Information Security Analyst II** to join our team of...

  • Information Security Analyst I

    3 weeks ago

    Washington, United States Disability Solutions Full time

    Minimum EducationBachelor's degree or equivalent experienceMinimum Experience1SummarySupports the process of designing and implementing security measures to meet the needs of the organization's IT systems. Develops a foundational understanding of system architecture and the ability to design security solutions that can be applied to multiple systems. Uses...

  • Information Security Analyst

    1 month ago

    Washington, United States Chenega Corporation Full time

    Summary Come join a company that strives for Extraordinary People and Exceptional Performance ! Eagle One Solutions, Inc., a Chenega Professional Services ’ company, is looking for a Information Security Analyst to support a large federal IT organization. The ISA will provide information security expertise in support of the Information System Owner (ISO),...

  • Information Security Analyst I

    4 weeks ago

    Washington, United States Federal Reserve Board Full time

    Position Description Minimum Education Bachelor's degree or equivalent experience Minimum Experience 1 Summary Supports the process of designing and implementing security measures to meet the needs of the organization's IT systems. Develops a foundational understanding of system architecture and the ability to design security solutions that can be applied to...

  • Lead Information Security Analyst

    4 weeks ago

    Washington, United States Chenega Corporation Full time

    **Summary** Come join a company that strives for _Extraordinary People and Exceptional Performance_ ! **Eagle One Solutions, Inc.,** a **Chenega Professional Services** company, is looking for a **Lead Information Security Analyst** to lead and support a large federal IT organization. The **Lead Information Security Analyst** will provide information...

  • Information Security Analyst

    2 months ago

    Washington, United States VMD Corp Full time

    Description As a Vision, Mission, and Driven company, VMD has been delivering information technology solutions to the Federal government in Agile Engineering, Cybersecurity, and Critical Infrastructure Protection since 2002. Our mission has now expanded, and we have merged with Xcelerate Solutions to revolutionize end-to-end enterprise security. Together we...

  • Lead Information Security Analyst

    2 months ago

    Washington, United States Chenega Corporation Full time

    Summary Come join a company that strives for Extraordinary People and Exceptional Performance ! Eagle One Solutions, Inc., a Chenega Professional Services ’ company, is looking for a Lead Information Security Analyst to lead and support a large federal IT organization. The Lead Information Security Analyst will provide information security expertise in...

  • Government Security Analyst

    2 days ago

    Washington, Washington, D.C., United States Protection Strategies Inc Full time

    Key ResponsibilitiesAs a Government Security Analyst, you will initiate background investigations, manage receipt of security documents, conduct fingerprinting procedures, and ensure all documents required for suitability processing have been completed.

  • Senior Information Security Analyst Role

    5 days ago

    Washington, United States GTSC Talent Solutions Full time

    This Senior Information Security Analyst role is a critical part of our team at GTSC Talent Solutions. As a seasoned professional, you will provide advanced security services and solutions to support the success of our clients.The estimated salary for this role is $130,000 - $190,000 per year, based on industry standards and the location in the Washington,...

  • Information Security Specialist

    2 weeks ago

    Washington, Washington, D.C., United States General Dynamics Information Technology Full time

    About the JobWe are seeking an experienced Information Security Specialist to join our team at General Dynamics Information Technology.This role will involve managing the security aspects of an information system and providing day-to-day support for Collateral, Sensitive Compartmented Information (SCI), and Special Access Program (SAP)...

  • Sr. Information Security Analyst– Incident Response

    2 months ago

    washington, United States TalentRemedy Full time

    As a member of the Information Security Incident Response team, the Sr. Information Security Analyst– Incident Response will coordinate the response activities for cyber security incidents across the corporate environment. You’ll focus on reviewing, triaging, analyzing, remediating, and reporting on cyber security incidents. As the Sr. Information...

  • Sr. Information Security Analyst– Incident Response

    3 months ago

    Washington, United States TalentRemedy Full time

    As a member of the Information Security Incident Response team, the Sr. Information Security Analyst– Incident Response will coordinate the response activities for cyber security incidents across the corporate environment. You’ll focus on reviewing, triaging, analyzing, remediating, and reporting on cyber security incidents. As the Sr. Information...

  • Information Security Analyst

    3 weeks ago

    Washington, Washington, D.C., United States Critical Solutions Full time

    Job OverviewCritical Solutions is a leading provider of advanced threat monitoring and response services. We are seeking a highly skilled Information Security Analyst to join our team in Washington, DC.

  • Information Assurance Analyst

    6 days ago

    Washington, United States Sellers & Associates, LLC Full time

    About the RoleWe are seeking a highly skilled Information Assurance (IA) Analyst to join our team at Sellers & Associates, LLC. As an IA Analyst, you will play a crucial role in ensuring the security of our clients' systems and data.

  • Cyber Security Threat Analyst

    6 days ago

    Washington, United States Trustwave Full time

    Job OverviewCyber Security Threat Analysts play a vital role in helping organizations stay ahead of emerging threats. As a Cyber Security Threat Analyst at Trustwave, you will be part of a world-class team that uncovers and responds to cyber threats.About the JobThis is an exciting opportunity to join our TDR SpiderLabs Applied Intelligence (SLAI) team as a...