IT Security Analyst Job at GovServicesHub, Richmond, VA

UjUxNy90amJscGc5dGU2Si9lVzQ0MldJTHc9PQ==
  • GovServicesHub
  • Richmond, VA

Job Description

Job Location: Virginia(Hybrid)

Job Description:

For this position we are really looking for someone who is strong in Security Operations (Vulnerability Management, Penetration Testing, Incident Response, Identity Access Management, etc.). A few of the candidates were strong in Risk Management (Risk Assessment, Data Classification, Audits, etc.) but we already have those skills on our team. The remaining candidates mostly struggled to answer basic technical questions relating to security and seemed to mostly come from more IT Operations backgrounds. We are looking for an experienced person as this is not an entry level opening. 

General things to consider when screening:

  1. Experience with vulnerability management is key for this position.
  2. Experience with application penetration is key for this position.
  3. Experience with Dev SecOps/Secure Software Development Lifecycle (Secure SDLC/SSDLC)/Secure by Design is key for this position.
  4. Scripting and automation experience is highly desired for this position.
  5. Interpersonal skills and being able to talk with and manage stakeholders are key for this position. 

Analyze the security impact of application, configuration, and infrastructure changes to ensure compliance with the security standard as part of the change management lifecycle.

·Assess the configurations of applications, servers, and network devices for compliance with the security standard.

·Analyze and document how the implementation of new system or new interfaces between systems impacts the security posture of the current environment.

·Assess and document the security impact and risks of newly discovered vulnerabilities in the environment.

·Coordinate resolution of application and infrastructure security vulnerabilities with System Owners, IT, and vendors. Track resolution of vulnerabilities and provide regular updates to management.

·Coordinate resolution of endpoint security vulnerabilities with users and provide regular updates to management.

  • Respond to, and investigate, security incidents and provide thorough post-event analyses.
  • Perform internal application penetration testing, document findings, and recommend improvements to improve the organization’s security posture.
  • Complete annual password security audits and coordinate completion of agency wide user access audits in compliance with the security standard.
  • Determine the protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately.
  • Create and maintain desk procedures and process documentation for all responsibilities.

Benefits

Skill

Required /Desired

Amount of Experience

Candidate Experience

NIST 800-53 rev 5 and/or Criminal Justice Information System (CJIS) specifications for an information security management system.

Required

5

 

Software development lifecycle, vulnerability management processes, role-based authentication methodologies, etc.

Required

5

 

Familiarity with programming languages such as Python, Java, JavaScript, C++, C#, SQL, HTML, CSS, and/or COBOL.

Required

5

 

Expertise in using automated vulnerability scanners like Nessus, Qualys, Retina, and/or Tenable.

Required

5

 

Familiarity with web application security testing tools like Burp Suite, Fortify, and/or AppScan.

Required

5

 

Basic scripting skills (e.g. WDL, VBScript, JavaScript, PowerShell, Python) for automation

Required

5

 

IT security or risk assessment certifications are advantageous (CISM, CCSP, CISSP, CEH, CompTIA Pentest+ and/or CompTIA Security+)

Required

5

 


Job Tags

Contract work,

Similar Jobs

Cintas

Production Associate - Garment Hanger/Inspector - 2nd Shift Job at Cintas

 ...Requisition Number: 200644 Job Description Cintas is seeking a Production Associate - Garment Hanger/Inspector to support the Rental Division. The Garment Hanger/Inspector is responsible for safely and accurately placing customer garments on hangers and for visually... 

  • Bakersfield, CA
  • Full Time
  • 30+ days ago

Crime Scene Resources, Inc

Digital Forensic Examiner Job at Crime Scene Resources, Inc

 ...current on technological trends to maintain the highest level of understanding of digital forensics best practices Collect, analyze, disseminate...  ...video, audio, GPS, RF, or other media formats including computers and cellular phone technology Recover digital and analog... 

  • Gainesville, FL
  • Full Time
  • $55.01k - $85.8k
  • 30+ days ago

Kaiser Permanente

Optometrist - PD Job at Kaiser Permanente

 ...conditions. Provides complete high quality optometric/vision care services to members.Essential Responsibilities:+ Upholds Kaiser Permanente's Policies and Procedures, Principles of Responsibilities and applicable state, federal and local laws.+ Provides treatment of... 

  • Riverside, CA
  • Full Time
  • 1 days ago

Focus Search LLC

Senior Accountant Job at Focus Search LLC

 ...Focus Search LLC is recruiting for a Senior Accountant with a growing Medical Services software company, headquartered in the Seattle area. This role will support financial reporting, tax filings, and process improvements. This role involves preparing financial statements... 

  • Seattle, WA
  • Full Time
  • 30+ days ago

State of Indiana

Seasonal Environmental Assistant Job at State of Indiana

 ...accommodation Currently enrolled or recent graduate of an Environmental or closely related (e.g. geology, archaeology, natural resources, ecology, etc.) program Benefits of Employment with the State of Indiana: This seasonal position does not offer benefits and is... 

  • Fort Wayne, IN
  • Full Time
  • 30+ days ago
Apply Now
Job Summary
  • Location
    Richmond, VA
  • Job Type
    Full Time
  • Date Posted
    2025-07-07
  • Expiration date
    2025-08-06