Security Analyst - SBG

SBG, a DSS, Inc. company, specializing in engineering, information technology, cyber-security, intelligence, and training, is looking for a hard-working results-oriented Security Analyst. We are seeking highly motivated individuals with a positive attitude looking to join our rapidly growing company. The ideal candidates for this position have strong attention to detail, analytical and ethical, who can excel in a very fast-paced government contractor environment. 

**Contingent Upon Contract Award**

OVERVIEW

The Security Analyst will have extensive experience and a deep understanding of the concepts, terminology, processes, policies, and implementation of information security. The Security Analyst must be capable of solving complex problems across a wide variety of information systems. A critical aspect of the role involves distinguishing between critical and non-critical systems and networks, ensuring the highest standards of protection are maintained where most needed. This role requires knowledge of the latest security measures throughout all phases of the information system life cycle.   This role needs experience in understanding the FedRAMP process, completing Authority to Operate (ATO) materials, providing guidance on security interoperability, and working with non-technical personnel on security needs and postures.

The Security Analyst will: 

• Implement and manage information security policies and protocols

• Stay updated with the latest security trends, threats, and technology

• Evaluate, test, and recommend new security tools and technologies

• Analyze and troubleshoot security issues across systems and networks

SECURITY AND PRIVACY DUTIES AND RESPONSIBILITIES

Individuals working for SBG Technology Solutions, Inc, a DSS, Inc. will be subject to security and privacy requirements as explained in HIPAA, FedRAMP, and NIST 800-53. Additionally, they are required to undergo specific FedRAMP training to ensure compliance with all associated controls and responsibilities in the day-to-day performance of their duties. Individuals working in departments that are considered to be in the high-risk category will be required to undergo advanced training based on their role and level of access. Individuals with access to modify data and the configuration baseline will require further training.

The preceding functions are examples of the work performed by employees assigned to this job classification.  Management reserves the right to add, modify, change or rescind work assignments and make reasonable accommodation as needed.

Required

• Minimum of 5 years of experience in a governance risk and compliance role

• Strong understanding of information security principles and best practices

• Experience with security controls across the information system life cycle

• Ability to address and solve complex technical problems

• Excellent analytical and communication skills

• Broad knowledge of cyber security technologies across the industry

• Intermediate knowledge of the cyber kill chain and defensive methodologies

• Intermediate knowledge of security controls (NIST standards, ISO, PCI, COBIT)

• Knowledge of FedRAMP

• Communication skills to interface with Government and Third Party technical and non-technical personnel in a professional manner

EDUCATION:

• Bachelor's degree in Information Systems, Information Security, Computer Science, or related field; equivalent combinations of work experience and\or education will be considered.

CERTIFICATION (S)

Desired:

• Certified Information Systems Security Professional (CISSP)

• GIAC/SANS Certifications (GSEC, GISP)

• PMI Project Management Professional (PMP)

PHYSICAL DEMANDS:

SBG, Inc. is an Equal Opportunity Employer

If you need an accommodation seeking employment with SBG, Inc., please e-mail recruiting@sbgts.com or call (703) 299-9093. Accommodations are made on a case-by-case basis.