Support the aggregation of individual assessments to measure the overall cybersecurity posture of business units.
Requirements
- Minimum of 2 years’ experience conducting federal cybersecurity assessments.
- Proven experience with compliance assessments related to NIST 800-53 rev 4 or newer and FISMA.
- Proficiency in using Splunk as a SIEM for event log analysis and threat detection.
- Knowledge of the MITRE ATT&CK Framework and its application in threat hunting and detection.
- Experience in a SOC Analyst role with Splunk is highly desirable.
- Ability to identify, map, and analyze data flow within enterprise networks.
Responsibilities
- Monitor and analyze cybersecurity assessment data flows to ensure accuracy and integrity.
- Recommend and implement quality improvement initiatives for cybersecurity assessment processes.
- Develop and maintain mappings between existing controls and judiciary assessment metrics.
- Conduct comprehensive federal cybersecurity assessments measuring compliance with NIST 800-53 rev 4 or newer control family.
- Assess compliance with the Federal Information Security Modernization Act (FISMA) during federal assessments.
- Document findings comprehensively and provide actionable recommendations for implementing appropriate controls.
- Utilize Splunk as a Security Information and Event Management (SIEM) tool to analyze event logs and build detections.
Other
- Strong customer-facing skills with an ability to document and recommend compliance solutions.
- Excellent problem-solving skills and attention to detail.
- Strong communication and documentation skills.
- Ability to work independently and manage multiple tasks effectively in a fully remote environment.
- This is a fully remote role and can be performed from an approved location.
