Information Engineer/Data Threat Analyst- 100% Remote

DUTIES/RESPONSIBILITIES

• Apply analytical and computational techniques and methodologies to identify problems and recommend solutions.


• Perform enterprise-wide strategic systems planning, business information planning, and business analysis and develop an associated recommendation


• Perform process and data modeling in support of the planning and analysis efforts using both manual and automated


• Provide technical guidance in software engineering techniques and automated support


• Review weaknesses in Tenable .io (TIO) and other security toolsets to identify common weaknesses that are present across the enterprise and develop enterprise strategies for


• Leverage the Continuous Monitoring Splunk Dashboards and other relevant data sources to correlate data and events across information


• Identify and advise on process improvements for enhancing the current toolset in support of the client's Continuous Monitoring Program to facilitate the identification and prioritization of risk, to include additional data sources, data fields, etc.


• Assist the organization in understanding and prioritizing security risks across the enterprise and quantifying the cost of risk to the enterprise


• Coordinate with the Enterprise Information System Security Officer {ISSO) to understand weaknesses across the enterprise and document associated remediation strategies and milestones in the form of Plans of Action & Milestones (POA&Ms).


• Review data feeds, understand and identify risk/ impacts, and report on critical weaknesses affecting the


• Correlate weaknesses documented as system-level POA&Ms to determine the need for the creation of Program Level POA&Ms .

REQUIRED SKILLS/ABILITIES

• Previous experience developing, maintaining, administering, and/or evaluating cloud solutions in AWS, Azure, and/or Google.


• Previous experience developing, maintaining, administering, and/or evaluating technology solutions build using Windows, CentOS, Red Hat Enterprise Linux Server, ExtremeXOS, and/or


• Previous experience supporting Department of Homeland Security federal clients


• Previous experience using one or more of the following tools: io, NexusIQ Server, Splunk Enterprise v 7.3 and higher, DoJ CSAM.


• Previous experience analyzing data from security scanning tools such as Tenablio, Qualys Guard, Acunetix, Frontline, Nexpose, etc.


• Working knowledge of the NIST SP 800-37 Risk Management


• Works well independently and possesses a solid understanding of cyber security concepts.


• Ability to communicate clearly and effectively via written and verbal communication in both formal and informal

CERTIFICATION REQUIREMENTS

• CISA, CISM, and/or CISSP preferred, but not