TalTeam
Cybersecurity Analyst - SaaS and AI Security
TalTeam, Washington, District of Columbia, us, 20022
Title: Cybersecurity Analyst - SaaS and AI Security
Technical Skill Set:
Cybersecurity Frameworks and Compliance :
Expertise in implementing and maintaining compliance with FedRAMP Moderate/High and NIST SP 800-53 standards. In-depth knowledge of IT security frameworks such as ISO 27001 and CIS Controls. Experience with HIP nd GDPR compliance for data protection and privacy.
Threat Detection and Response :
Proficient in using SIEM tools like Splunk, IBM QRadar, or Elastic SIEM for real-time monitoring and threat analysis. Skilled in conducting vulnerability assessments and penetration testing using tools like Nessus, Qualys, and Metasploit.
Encryption and Data Protection :
Expertise in implementing encryption protocols for data at rest and in transit, including AES-256, TLS 1.3, and SSL. Hands-on experience with public key infrastructure (PKI) and key management systems.
Identity and Access Management (IAM) :
Proficiency in designing and managing IAM systems, including RBAC and ABAC policies. Familiarity with multi-factor authentication (MFA) solutions and SSO implementations.
Cloud Security :
Experience securing cloud-based platforms on AWS, Azure, or GCP, including the use of native security tools (e.g., AWS GuardDuty, Azure Security Center). Knowledge of network segmentation, virtual private clouds (VPCs), and security groups.
Incident Response and Forensics :
Skilled in developing and executing incident response plans (IRPs) for cybersecurity breaches. Proficiency in digital forensics using tools like FTK, EnCase, and Autopsy.
Network Security :
Expertise in configuring and managing firewalls, intrusion detection/prevention systems (IDS/IPS), and VPNs. Knowledge of Zero Trust Architecture and software-defined networking (SDN).
Risk Management :
Experience performing risk assessments and developing mitigation strategies for complex systems. Familiarity with tools like RiskLens and FAIR for quantitative risk analysis.
Automation and Orchestration :
Proficient in using security automation tools like Ansible, Chef, or AWS Config to enforce security policies. Skilled in scripting for security operations using Python, Bash, or PowerShell.
Responsibilities in Project Context:
Compliance and Security Frameworks :
Design and implement FedRAMP-compliant security frameworks for the SaaS platform and AI solutions. Collaborate with the systems architect to integrate security into the platform's design and architecture.
Monitoring and Threat Detection :
Set up and manage SIEM tools to monitor system activities for vulnerabilities, breaches, and anomalies. Establish intrusion detection and prevention mechanisms to protect against external and internal threats.
Data Protection :
Encrypt sensitive client data using AES-256 and implement secure communication protocols like TLS 1.3. Ensure robust key management practices to protect encryption keys and digital certificates.
Identity and Access Management :
Configure role-based access controls to restrict platform access to authorized personnel. Implement MFA and SSO solutions to enhance access security.
Incident Response and Risk Management :
Develop an incident response plan tailored to the client's operational and regulatory environment. Conduct regular risk assessments and penetration tests to identify vulnerabilities and propose mitigation strategies.
Cloud Security :
Secure the SaaS platform's cloud environment by configuring VPCs, security groups, and firewall rules. Use cloud-native security tools like AWS GuardDuty or Azure Security Center for continuous monitoring.
Collaboration and Documentation :
Work closely with the program manager, systems architect, and senior developers to ensure security is embedded in all workflows. Maintain detailed audit logs and documentation to support compliance with federal regulations.
Tools and Technologies:
Security Platforms :
Splunk, IBM QRadar, Elastic SIEM Nessus, Qualys, Metasploit (for vulnerability assessments)
Encryption and Key Management :
OpenSSL, AWS Key Management Service (KMS) HashiCorp Vault for secret management
Network Security :
Palo Alto Networks, Cisco ASA, pfSense (firewalls) Snort, Suricata (IDS/IPS)
Cloud Security :
AWS GuardDuty, Azure Security Center, GCP Security Command Center Tools for automated security orchestration (e.g., AWS Config, Ansible)
Incident Response and Forensics :
FTK, EnCase, Autopsy Tools for malware analysis like Cuckoo Sandbox
Key Deliverables:
FedRAMP Compliance Report :
Documentation of implemented security controls and audit logs for federal review.
Incident Response Plan :
A comprehensive guide outlining steps to detect, respond to, and recover from security breaches.
Monitoring Dashboard :
Real-time security monitoring interface providing insights into system health, threats, and anomalies.
Risk Assessment Report :
Identification of potential vulnerabilities and recommendations for mitigation.
**Talteam Inc. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.**
Cybersecurity Frameworks and Compliance :
Expertise in implementing and maintaining compliance with FedRAMP Moderate/High and NIST SP 800-53 standards. In-depth knowledge of IT security frameworks such as ISO 27001 and CIS Controls. Experience with HIP nd GDPR compliance for data protection and privacy.
Threat Detection and Response :
Proficient in using SIEM tools like Splunk, IBM QRadar, or Elastic SIEM for real-time monitoring and threat analysis. Skilled in conducting vulnerability assessments and penetration testing using tools like Nessus, Qualys, and Metasploit.
Encryption and Data Protection :
Expertise in implementing encryption protocols for data at rest and in transit, including AES-256, TLS 1.3, and SSL. Hands-on experience with public key infrastructure (PKI) and key management systems.
Identity and Access Management (IAM) :
Proficiency in designing and managing IAM systems, including RBAC and ABAC policies. Familiarity with multi-factor authentication (MFA) solutions and SSO implementations.
Cloud Security :
Experience securing cloud-based platforms on AWS, Azure, or GCP, including the use of native security tools (e.g., AWS GuardDuty, Azure Security Center). Knowledge of network segmentation, virtual private clouds (VPCs), and security groups.
Incident Response and Forensics :
Skilled in developing and executing incident response plans (IRPs) for cybersecurity breaches. Proficiency in digital forensics using tools like FTK, EnCase, and Autopsy.
Network Security :
Expertise in configuring and managing firewalls, intrusion detection/prevention systems (IDS/IPS), and VPNs. Knowledge of Zero Trust Architecture and software-defined networking (SDN).
Risk Management :
Experience performing risk assessments and developing mitigation strategies for complex systems. Familiarity with tools like RiskLens and FAIR for quantitative risk analysis.
Automation and Orchestration :
Proficient in using security automation tools like Ansible, Chef, or AWS Config to enforce security policies. Skilled in scripting for security operations using Python, Bash, or PowerShell.
Responsibilities in Project Context:
Compliance and Security Frameworks :
Design and implement FedRAMP-compliant security frameworks for the SaaS platform and AI solutions. Collaborate with the systems architect to integrate security into the platform's design and architecture.
Monitoring and Threat Detection :
Set up and manage SIEM tools to monitor system activities for vulnerabilities, breaches, and anomalies. Establish intrusion detection and prevention mechanisms to protect against external and internal threats.
Data Protection :
Encrypt sensitive client data using AES-256 and implement secure communication protocols like TLS 1.3. Ensure robust key management practices to protect encryption keys and digital certificates.
Identity and Access Management :
Configure role-based access controls to restrict platform access to authorized personnel. Implement MFA and SSO solutions to enhance access security.
Incident Response and Risk Management :
Develop an incident response plan tailored to the client's operational and regulatory environment. Conduct regular risk assessments and penetration tests to identify vulnerabilities and propose mitigation strategies.
Cloud Security :
Secure the SaaS platform's cloud environment by configuring VPCs, security groups, and firewall rules. Use cloud-native security tools like AWS GuardDuty or Azure Security Center for continuous monitoring.
Collaboration and Documentation :
Work closely with the program manager, systems architect, and senior developers to ensure security is embedded in all workflows. Maintain detailed audit logs and documentation to support compliance with federal regulations.
Tools and Technologies:
Security Platforms :
Splunk, IBM QRadar, Elastic SIEM Nessus, Qualys, Metasploit (for vulnerability assessments)
Encryption and Key Management :
OpenSSL, AWS Key Management Service (KMS) HashiCorp Vault for secret management
Network Security :
Palo Alto Networks, Cisco ASA, pfSense (firewalls) Snort, Suricata (IDS/IPS)
Cloud Security :
AWS GuardDuty, Azure Security Center, GCP Security Command Center Tools for automated security orchestration (e.g., AWS Config, Ansible)
Incident Response and Forensics :
FTK, EnCase, Autopsy Tools for malware analysis like Cuckoo Sandbox
Key Deliverables:
FedRAMP Compliance Report :
Documentation of implemented security controls and audit logs for federal review.
Incident Response Plan :
A comprehensive guide outlining steps to detect, respond to, and recover from security breaches.
Monitoring Dashboard :
Real-time security monitoring interface providing insights into system health, threats, and anomalies.
Risk Assessment Report :
Identification of potential vulnerabilities and recommendations for mitigation.
**Talteam Inc. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.**