Associate Endpoint Security Analyst

IT Security Architect / Information Assurance Engineer IV (100% Remote)

We are seeking an experienced IT Security Architect / Information Assurance/Security Engineer IV to manage and enhance agency-wide information technology security solutions, operations, and maintenance. This 100% remote role, based in Virginia, focuses on solving complex security problems involving interfaces and inter-relationships across programs, systems, and critical agency infrastructure.

Key Responsibilities:

• Administer and manage a wide range of security systems and tools, specializing in cloud-based security solutions.
• Manage and operate Azure Security Center (Sentinel, Log Analytics, Azure WAF, Defender for Identity, Privileged Identity Manager) and the Microsoft 365 Security Suite (Defender, Advanced Threat Protection, Cloud Application Security, Protection Portal).
• Oversee Microsoft Security and Compliance Center, Microsoft Endpoint Manager (Intune), multi-factor authentication (MFA), web content filtering, and secure document sharing solutions.
• Serve as primary or alternate manager for all IT Security systems, including patch management, upgrades, integration engineering, and reporting.
• Execute security operational activities, including managing security incident detection, response, and remediation.
• Conduct cyber threat and vulnerability analysis and remediation.
• Develop security metrics and manage reporting and compliance activities.
• Serve as an Incident Response Team member.
• Support operational implementation of FISMA/NIST standards and industry best practices.
• Manage the IT Security awareness training program in coordination with the Learning Management team.
• Manage the Password Management system and respond to IT Security trouble tickets, ensuring SLA adherence.
• Provide technical expertise for Security Operations and Engineering, identifying security risks and recommending mitigation strategies.
• Review new and existing systems to ensure baseline security requirements are met and recommend security enhancements.
• Develop security architecture and technical solutions for security products.
• Collaborate across business components to develop security controls and solutions for complex business systems and applications.
• Develop and execute project plans for engineering, construction, deployment, monitoring, and management of IT Security infrastructure solutions.
• Evaluate, recommend, and implement security controls for cloud-hosted environments, services, and mobile device solutions.

Required Skills & Experience:

• Establish, implement, and interpret requirements for agency compliance with cybersecurity policy directives.
• Perform thorough security operations center analysis of potentially malicious or suspicious threats.
• Administer and sustain enterprise-level application security scanning tools (COTS, GOTS, Web Applications, cloud-based applications).
• Conduct risk and vulnerability assessments of planned and installed information systems.
• Conduct systems security evaluations, audits, and reviews.
• Develop cybersecurity plans, processes, and procedures.
• Participate in network and system design to ensure appropriate application security policies are implemented.
• Facilitate the gathering, analysis, and preservation of evidence for cybercrimes.
• Assess security events to determine impact and implement corrective actions.
• Ensure rigorous application of information security/cybersecurity policies and practices in IT service delivery.
• Expert technical advice, guidance, and recommendations on critical IT security issues.
• Ability to assess risk factors and advise on vulnerability to attack and protection procedures for systems and applications.
• Knowledge and skill in implementing FISMA, NIST, and OMB guidelines.
• Experience interpreting and implementing FISMA/NIST requirements focused on operational implementation and documentation.
• Knowledge of security controls for cloud-hosted environments, applications, and services.
• Experience developing System Security Plans, Security Assessment Reports, Continuous Monitoring Plans, and Plans of Action & Milestones (POA&Ms).
• Ability to plan, organize, manage tasks independently, and handle multiple tasks effectively.

Primary Requirements: Application Security & Development

• Must have hands-on experience with Static and Dynamic Application Security Testing (SAST/DAST) using tools such as HP Fortify, HP WebInspect, HCL Appscan, Snyk, Checkmarx, Synopsys, and Veracode.
• Specialized experience in Continuous Integration (CI) and Continuous Deployment (CD) practices.
• Specialized experience in manual code review to identify potential vulnerabilities and best coding practices.
• Specialized experience in application vulnerability and security assessments using tools like Burp Suite Pro, OWASP Zap Proxy, Kali Linux, Metasploit Pro, Accunetix, Insight AppSec, GitLab, Coverity, Fortify, and GitHub Enterprise.
• Specialized experience in assessing application vulnerabilities and bugs.
• Specialized experience creating security testing pipelines and test plans.
• Specialized experience implementing and deploying an organization-wide Application Security program (DAST and SAST) at the enterprise level.
• Knowledge of coding languages such as Java, .NET, Python, PHP, C++, C#.
• Extensive experience in preparing Test Plans, writing Test Cases, test Execution, and follow-up remediation efforts.

Education & Certifications:

• Bachelor's Degree in Cybersecurity/Information Technology Security or related field from an accredited college or university.
• Minimum of 5 years of specialized experience with hands-on skills in performing application security assessments and specialized experience in Secure SDLC and Source Code Analysis (Manual & Tools) on Web-based Applications.
• Advanced degree in Cybersecurity or related field (desired).
• Current Industry Certifications (or equivalent) in one or more of the following:
  • Certified Secure Software Lifecyle Professional (CSSLP)
  • Certified Cloud Security Professional (CCSP)
  • Offensive Security Certified Professional (OSCP)
  • EC-Council Certified Application Security Engineer (CASE)
  • GIAC Certified Web Application Defender (GWEB)
  • Azure Developer Associate
  • Microsoft 365 Certified Security Administrator Associate
  • Microsoft Certified Azure Security Engineer Associate

For applications and inquiries, contact: [email protected]