Summary
* Hybrid, must reside in the Washington D.C. area for weekly onsite work. *
Come join a company that strives for Extraordinary People and Exceptional Performance ! Chenega Services & Federal Solutions, LLC, a Chenega Professional Services ' company, is looking for an Information Security Analyst II to join our team of IT experts at the Federal Housing Finance Agency's (FHFA) Office of the Chief Information Officer (OCIO). As a key member of our security team, you will be responsible for developing and designing robust security architectures, conducting threat assessments, and leading incident response efforts to protect against threats and vulnerabilities. You will also oversee the implementation and management of security monitoring tools, ensure compliance with regulatory standards, and mentor junior IT staff.
Our company offers employees the opportunity to join a team where there is a robust employee benefits program, management engagement, quality leadership, an atmosphere of teamwork, recognition for performance, and promotion opportunities. We actively strive to channel our highly engaged employee's knowledge, critical thinking, innovative solutions for our clients.
Responsibilities
Develop and Design Robust Security Architectures: Create and maintain comprehensive security architectures for networks, systems, and applications to protect against emerging threats and vulnerabilities.
Conduct Threat Assessments and Vulnerability Scans: Regularly assess potential security risks through threat assessments and vulnerability scans to identify areas of improvement.
Lead Incident Response Efforts: Coordinate incident response efforts to address and mitigate security breaches or cyberattacks, analyze and interpret threat intelligence, and develop incident response plans.
Implement and Manage Security Monitoring Tools: Oversee the implementation and management of SIEM (Security Information and Event Management) systems to monitor network and system activity for signs of suspicious behavior, anomalies, and potential security incidents.
Ensure Compliance with Regulatory Standards: Ensure that security measures comply with relevant legal, regulatory, and industry standards (e.g., GDPR, HIPAA, PCI-DSS).
Prepare for and Assist with Audits: Prepare for and assist with audits to ensure that security controls and practices meet compliance requirements.
Evaluate and Implement Security Tools and Technologies: Evaluate, implement, and manage security tools and technologies, such as firewalls, intrusion detection/prevention systems, and encryption solutions.
Stay Current with Advancements in Cybersecurity: Stay current with advancements in cybersecurity technologies and recommend updates or new tools as necessary.
Mentor Junior IT Staff: Mentor and provide guidance to junior network engineers and IT staff, assisting with their professional development.
Maintain Detailed Documentation: Maintain detailed documentation of security incidents, response actions, security policies, and procedures.
Prepare and Present Reports: Prepare and present regular reports on security status, incidents, and improvements to senior management and stakeholders.
Collaborate with IT and Security Teams: Work closely with other IT and security teams to integrate security measures into all aspects of IT operations and development.
Qualifications
Bachelor's Degree in Computer Science, Information Assurance, or related field, or equivalent experience as a senior IT professional.
Experience with information security, including threat assessments, vulnerability management, incident response, and compliance.
Knowledge of relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, PCI-DSS).
Familiarity with security monitoring tools, such as SIEM systems, and experience with implementing and managing security tools and technologies.
Certifications in information security, such as CISSP or CompTIA Security+, are highly desirable.
Knowledge, Skills and Abilities:
Advanced analytical skills: Excellent problem-solving skills, with the ability to analyze complex security issues and develop effective solutions.
Strong communication skills: The ability to communicate effectively with technical and non-technical stakeholders, including senior management.
Demonstrated ability to work independently and execute on a day to day basis, and employ a hands on approach.
Final salary determination based on skill-set, qualifications, and approved funding.
Many of our jobs come with great benefits - Some offerings are dependent upon the role, work schedule, or location, and may include the following:
Paid Time Off
PTO / Vacation - 5.67 hours accrued per pay period / 136 hours accrued annually
Paid Holidays - 11
California residents receive an additional 24 hours of sick leave a year
Health & Wellness
Medical
Dental
Vision
Prescription
Employee Assistance Program
Short- & Long-Term Disability
Life and AD&D Insurance
Spending Account
Flexible Spending Account
Health Savings Account
Health Reimbursement Account
Dependent Care Spending Account
Commuter Benefits
Retirement
401k / 401a
Voluntary Benefits
Hospital Indemnity
Critical Illness
Accident Insurance
Pet Insurance
Legal Insurance
ID Theft Protection
Teleworking Permitted?
Yes
Teleworking Details
Hybrid, must reside in the Washington D.C. area
Estimated Salary/Wage
USD $120,000.00/Yr. Up to USD $158,000.00/Yr.
Chenega Corporation and family of companies is an EOE.
Equal Opportunity Employer/Veterans/Disabled
Native preference under PL 93-638.
We participate in the E-Verify Employment Verification Program
S:SKINTIAGP11