Eliassen Group
Cyber Security Analyst
Eliassen Group, Washington, District of Columbia, us, 20022
Cyber Security SMEClearance:
SecretEliassen Group is supporting a government integrator in the search for multiple Cyber Security SMEs. These positions
will require an active Secret clearance and be hybrid (mostly remote) in Washington D.C.We are seeking a highly skilled Cyber Security Subject Matter Expert (SME) to join our team. The ideal candidate will possess deep expertise in secure software architecture, design patterns, and defensive coding techniques. This role requires a proactive individual who can provide expert guidance during system upgrades, conduct in-depth evaluations of software systems, and ensure compliance with government-mandated security frameworks.Key Responsibilities:System Upgrades & Security Controls:Provide expert guidance during system upgrades, ensuring the implementation of security controls and compliance-driven optimizations.Collaborate with development and operations teams to integrate security controls throughout the Software Development Life Cycle (SDLC).Vulnerability Assessment & Mitigation:Conduct in-depth evaluations of software systems to identify vulnerabilities.Recommend and implement robust security solutions to mitigate identified risks.Logging & Auditing:Design and implement comprehensive logging mechanisms and audit trails.Ensure logging best practices and rigorous auditing standards are adhered to.Mentorship & Training:Mentor development teams on secure coding practices and compliance-driven development.Provide training sessions and workshops on cybersecurity best practices.Risk Management:Proactively identify potential security risks and vulnerabilities.Develop and implement strategies to mitigate these risks.Stakeholder Collaboration:Work closely with government stakeholders to understand security requirements.Ensure projects meet compliance obligations and government recordkeeping requirements.Relevant Experience:A bachelor's degree in computer science, Cybersecurity, Software Engineering, or a closely related technical field OR extensive, directly relevant experience.Deep expertise in secure software architecture, design patterns, and defensive coding techniques.In-depth understanding of data integrity principles, logging best practices, and rigorous auditing standards.Proven track record in designing and implementing robust security solutions within government-mandated compliance frameworks.Extensive experience in integrating security controls and testing throughout the SDLC.Desired Qualifications:Experience with Oracle database administration.In-depth knowledge of cybersecurity frameworks and federal compliance standards.Expertise in records management principles and auditing best practices.Understanding of government recordkeeping requirements and compliance frameworks.Strong understanding of log data formats, event correlation, and data retention policies.Proficiency in developing technical standards and documentation.Desired Certifications:Certified Information Systems Security Professional (CISSP)Oracle Certified Professional (OCP) Database AdministrationOracle Database Security SpecialistCertified Information Systems Auditor (CISA)Systems Security Certified Practitioner (SSCP)Relevant GIAC certification (GSEC, GPEN)Additional Information:Work Environment:
This position may require occasional travel and the ability to work in a fast-paced, high-security environment.Clearance Requirement:
Candidates must possess an active Secret clearance.
SecretEliassen Group is supporting a government integrator in the search for multiple Cyber Security SMEs. These positions
will require an active Secret clearance and be hybrid (mostly remote) in Washington D.C.We are seeking a highly skilled Cyber Security Subject Matter Expert (SME) to join our team. The ideal candidate will possess deep expertise in secure software architecture, design patterns, and defensive coding techniques. This role requires a proactive individual who can provide expert guidance during system upgrades, conduct in-depth evaluations of software systems, and ensure compliance with government-mandated security frameworks.Key Responsibilities:System Upgrades & Security Controls:Provide expert guidance during system upgrades, ensuring the implementation of security controls and compliance-driven optimizations.Collaborate with development and operations teams to integrate security controls throughout the Software Development Life Cycle (SDLC).Vulnerability Assessment & Mitigation:Conduct in-depth evaluations of software systems to identify vulnerabilities.Recommend and implement robust security solutions to mitigate identified risks.Logging & Auditing:Design and implement comprehensive logging mechanisms and audit trails.Ensure logging best practices and rigorous auditing standards are adhered to.Mentorship & Training:Mentor development teams on secure coding practices and compliance-driven development.Provide training sessions and workshops on cybersecurity best practices.Risk Management:Proactively identify potential security risks and vulnerabilities.Develop and implement strategies to mitigate these risks.Stakeholder Collaboration:Work closely with government stakeholders to understand security requirements.Ensure projects meet compliance obligations and government recordkeeping requirements.Relevant Experience:A bachelor's degree in computer science, Cybersecurity, Software Engineering, or a closely related technical field OR extensive, directly relevant experience.Deep expertise in secure software architecture, design patterns, and defensive coding techniques.In-depth understanding of data integrity principles, logging best practices, and rigorous auditing standards.Proven track record in designing and implementing robust security solutions within government-mandated compliance frameworks.Extensive experience in integrating security controls and testing throughout the SDLC.Desired Qualifications:Experience with Oracle database administration.In-depth knowledge of cybersecurity frameworks and federal compliance standards.Expertise in records management principles and auditing best practices.Understanding of government recordkeeping requirements and compliance frameworks.Strong understanding of log data formats, event correlation, and data retention policies.Proficiency in developing technical standards and documentation.Desired Certifications:Certified Information Systems Security Professional (CISSP)Oracle Certified Professional (OCP) Database AdministrationOracle Database Security SpecialistCertified Information Systems Auditor (CISA)Systems Security Certified Practitioner (SSCP)Relevant GIAC certification (GSEC, GPEN)Additional Information:Work Environment:
This position may require occasional travel and the ability to work in a fast-paced, high-security environment.Clearance Requirement:
Candidates must possess an active Secret clearance.