Cyber Analyst Remote in DMV area

at  Watershed Security

COMPANY OVERVIEW

Watershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: “To inspire trust and respect with our customers and employees. Integrity in all we do.”

QUALIFICATIONS AND SKILLS

• Develop technical documentation and artifacts for Authorization to Operate (ATO) packages
• Perform application and database vulnerability management; manages, mitigates, tracks and reports on Plans of Action and Milestones (POA&M) status in coordination with IT engineers/administrators
• Oversee system patching, hardening (STIGs), fixes, updates, and upgrades
• Perform Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) code reviews and supports application security testing
• Configure, tune, troubleshoot, and manage SIEM tools and capabilities
• Perform application and database continuous monitoring; configure tools, review results and report on security relevant risks from audit logs and other cybersecurity data sources
• Coordinate execution of Integrated Master Schedule (IMS) cybersecurity requirements
• Submit system risk recommendations to key stakeholders based upon technical analysis
• Advise technical team and key stakeholders on cybersecurity risks involved with software implementation and system changes
• Experience managing, operating and configuring Cloud CDM tools such as Security Hub and GuardDuty
• Problem solver who can take initiative and work independently or with a team and present findings to executive staff

Required

• Experience in SSE and System Security including Critical Program Information (CPI) analysis, protection solution development, integration, testing, V&V, and complete System Security life cycle
• Experience in supporting SSE activities as described in DoD Acquisition guidelines
• IAT II such as Security+
• Well organized and detail oriented with excellent writing, verbal, and soft skills.
• Able to network and configure vulnerability scanners and monitoring tools
• Must have an active Top Secret clearance
• Remote in DMV area for occasional onsite needs

Preferred/Desired

• Certifications CEH or CISSP
• Bachelor’s Degree in an engineering, scientific, or technical discipline
• 3 years of relevant experience in System Security Engineering (SSE) and System Security with DoD major platforms
• Do you have 3 years of experience with network and configure vulnerability scanners and monitoring tools
• 3+ years’ experience operating and maintaining DHS/CISA Continuous Diagnostics and Mitigation (CDM) program.
• Experience managing, operating and configuring Cloud CDM tools such as Security Hub and GuardDuty

Responsibilities of this position also include, but are not limited to:

• Attending mandatory, annual training sessions
• Providing regular status reports to management summarizing progress, challenges, metrics, and recommendations
• Collaborating with team members to ensure effective communication and coordination
• Attending recurring team meetings or huddles
• Assisting in the development of new initiatives

RESPONSIBILITIES AND DUTIES

Watershed Security is seeking a qualified Cyber Analyst with specialized Continuous Monitoring expertise to provide Cloud and occasional on-premise Cyber Security support, with mid-level analysis capabilities in support of a Federal Civilian Financial monitoring entity. The role focuses on this organization IT Operations Team and executive stakeholders on implementation of Secure Software Development Life Cycle (SSDLC) and continuous monitoring for cloud platforms in an application development environment. Provides cybersecurity operations and engineering oversight and guidance on the NIST Risk Management Framework Controls.

Responsibilities of this position also include, but are not limited to:

• Attending mandatory, annual training sessions
• Providing regular status reports to management summarizing progress, challenges, metrics, and recommendations
• Collaborating with team members to ensure effective communication and coordination
• Attending recurring team meetings or huddles
• Assisting in the development of new initiative