Security Analyst
The Judge Group Inc.

Job Info

---

Location: Washington, DC
Salary: $50.00 USD Hourly - $60.00 USD Hourly
Description: The Judge Group is currently seeking a Security Analyst to support a large federal organization in Washington, DC. This position offers a hybrid schedule. For immediate consideration email your resume to rkissinger@judge.com.
- Robbie Kissinger

Job Responsibilities:

Application Support: Maintain and operate assigned business applications in line with the organization's IT security policies.

Catalog Management: Keep an updated catalog of IT enterprise and departmental applications, including system and vendor contacts, tier, location, and type (Cloud, on-premise, hybrid, colocation, etc.).

Policy Enforcement: Act as the primary contact for implementing and enforcing information security policies, such as account and configuration management.

Security Implementation: Participate in the implementation of security policies, standards, and procedures for assigned applications.

Interconnection Security: Ensure interconnection security agreements (ISAs) are in place for key interfaces.

Backup and Restore: Conduct annual backup and restore tests for on-premise applications.

Vendor Review: Collaborate in fusion teams to assess vendor capabilities and security posture for potential new systems.

System Upgrades: Work with operations and vendors to patch vulnerabilities and perform timely system upgrades.

Vendor Management: Manage relationships with third-party vendors for IT contracts related to assigned applications.

Risk Assessment: Review vendor capabilities and security posture for new IT systems/applications/services and provide risk recommendations.

Stakeholder Collaboration: Work with the CISO, CIO, system managers, and other stakeholders to finalize IT security requirements for third-party systems.

Contract Compliance: Ensure IT security requirements are included in contracts issued by the Contracts and Procurement Office (APC).

Third-Party Compliance: Ensure vendors comply with IT security policies and procedures as part of the third-party risk management program.

Vulnerability Management: Review vulnerability scan results for third-party applications/systems/devices and work with system managers and operations personnel to remediate critical and high vulnerabilities.

Required Knowledge and Skills:

Experience: At least 3+ years of progressive IT security experience in a complex organization.

Education: Bachelor's degree in Information Technology, Computer Science, Engineering, or a related field. Certifications in IT security (e.g., Security+, CAP, SSCP, CEH) are preferred but not mandatory.

Technical Skills: Proficiency in supporting, monitoring, testing, and troubleshooting hardware and software issues in computing and network environments.

Security Controls: Knowledge of SP 800-53 security controls and their application to IT systems.

Technology Awareness: Ability to stay current with evolving IT security technologies, such as identity and access management tools, patch management, and software distribution tools (e.g., Ivanti, Casper).

System Experience: Technical experience with Windows, Mac, and/or Linux systems.

Organizational Skills: Ability to plan, organize work, and meet deadlines with minimal supervision.

Contact: rkissinger@judge.com

This job and many more are available through The Judge Group. Find us on the web at www.judge.com

This job has expired.