Quadrant
Security - Information Assurance Analyst (Sr)
Quadrant, Oklahoma City, Oklahoma, United States, 73116
Security Information Assurance Analyst
Oklahoma City, OK
MUST:
Experienced Senior Security/Information Assurance Analyst
8+ years of Cyber security/Information assurance
Project/Program teams and communicating results to matrixed
Strong understanding, and knowledge of, NIST SP 800-53 rev 4 requirements and how-to tailor requirements based on agency security policies and directives
Ability to write and communicate effectively with Federal System Owners (SOs), Information System Security Officers (ISSOs), and ISS Assurance Managers
Working with automated tools, including Nessus, Client WebInspect, MetaSploit, BurpSuite, App Detective, nMap, and Kali Linux
Required one of the following certs: CISSP, GCED, CASP, CISA
Bachelor's Degree in a technical field, such as Engineering, Computer Science or Cyber Security required
DUTIES:
Perform information systems security (ISS) monitoring and event detection for FAA National Airspace System (NAS) assets
Monitor numerous sources of collected security data including system security event logs, system Internet Protocol (IP) data flows, Intrusion Detection System (IDS) alerts and payload, and system performance monitoring services
Conducting/analyzing Security Assessments on various size information systems to include security testing using automated tools such as Nessus and Client WebInspect, collecting artifacts during the assessments, Experience conducting analysis of test data, reviewing security documents such as the SCD, SSP, ISCPs and SOPs, and other artifacts collected as part of the assessment
Developing/analyzing Security Assessment Reports
Coordinate with other NAS monitoring entities to obtain all required event information and full situational awareness
Establish and maintain security event tickets throughout the event lifecycle
Coordinate with applicable stakeholders to develop security event remediation strategies and timelines
Conduct security event telephone conferences as required to provide situational awareness to appropriate entities
Perform upward reporting activities for events as needed
Coordinate with the FAA Intelligence Organizations to obtain relevant external threat Intelligence from various sources via secure means as required by information classification
Process acquired Intelligence into actionable information that has relevance to NAS operations and defines any required mitigation actions
Support cyber security Tabletop Exercises (TTX) on-site and remotely and participate in After Action Reviews (AAR)
Quadrant is an affirmative action/equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, status as a protected veteran, or status as an individual with a disability.
Oklahoma City, OK
MUST:
Experienced Senior Security/Information Assurance Analyst
8+ years of Cyber security/Information assurance
Project/Program teams and communicating results to matrixed
Strong understanding, and knowledge of, NIST SP 800-53 rev 4 requirements and how-to tailor requirements based on agency security policies and directives
Ability to write and communicate effectively with Federal System Owners (SOs), Information System Security Officers (ISSOs), and ISS Assurance Managers
Working with automated tools, including Nessus, Client WebInspect, MetaSploit, BurpSuite, App Detective, nMap, and Kali Linux
Required one of the following certs: CISSP, GCED, CASP, CISA
Bachelor's Degree in a technical field, such as Engineering, Computer Science or Cyber Security required
DUTIES:
Perform information systems security (ISS) monitoring and event detection for FAA National Airspace System (NAS) assets
Monitor numerous sources of collected security data including system security event logs, system Internet Protocol (IP) data flows, Intrusion Detection System (IDS) alerts and payload, and system performance monitoring services
Conducting/analyzing Security Assessments on various size information systems to include security testing using automated tools such as Nessus and Client WebInspect, collecting artifacts during the assessments, Experience conducting analysis of test data, reviewing security documents such as the SCD, SSP, ISCPs and SOPs, and other artifacts collected as part of the assessment
Developing/analyzing Security Assessment Reports
Coordinate with other NAS monitoring entities to obtain all required event information and full situational awareness
Establish and maintain security event tickets throughout the event lifecycle
Coordinate with applicable stakeholders to develop security event remediation strategies and timelines
Conduct security event telephone conferences as required to provide situational awareness to appropriate entities
Perform upward reporting activities for events as needed
Coordinate with the FAA Intelligence Organizations to obtain relevant external threat Intelligence from various sources via secure means as required by information classification
Process acquired Intelligence into actionable information that has relevance to NAS operations and defines any required mitigation actions
Support cyber security Tabletop Exercises (TTX) on-site and remotely and participate in After Action Reviews (AAR)
Quadrant is an affirmative action/equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, status as a protected veteran, or status as an individual with a disability.