Information Technology (IT)
Strategy - Planning
Central Research, Inc. is actively seeking a Security Analyst. The Security Analyst is a critical position that supports all domains of security under general direction of the assigned IT leader. As a contributor to the IT team the analyst will evangelize and enforce Corporate and IT policies to ensure consistent compliance and maintainability of compliance certifications such as PCI DSS, FISMA, ATO, DFARS, HIPPA and ISO.
Responsibilities & Duties:
Maintain, update and write security policies as needed to comply with regulatory and company requirements
Maintain user security by enforcing access controls, monitoring and evaluating security standards
Understand and evangelize industry best practice, including security policies, standards, procedures and guidelines for the compliance framework
Responsible for vulnerability remediation follow-up and guidance
Identify areas of policy non-compliance by using the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs)
Responsible for tracking and monitoring software viruses through use of the Incident Response Program; documentation of Security and DR Incidents within the guidelines of the Incident Response Plan
Continuously assist in updating the company’s incident response and disaster recovery plans
Schedule regular cybersecurity reports (i.e., event logs, firewalls, cyber incidents) and disseminate the results with appropriate personnel
Perform assessments and continuous monitoring of implemented security controls as well as conduct periodic audits/assessments against regulations & standards such as FISMA, HIPAA, PCI DSS, HITRUST, and ISO 27002
Keep current on new technological challenges and advancements to target and referential platforms of CRI
Recommend equipment upgrades to environment as business needs dictate
Mentor, train and develop assigned staff to be individual contributors, enabling them to deliver tier 1 and 2 infrastructure services such as patching
Assist with projects as assigned by IT management
Associate degree in computer science or related field
2 years’ experience with most recent 12 months specifically in a security role in an enterprise environment
Ability to obtain and maintain a 6c suitability security clearance
US Citizenship required per contract
Ability to work with customers, clients and employees, respond to questions in meetings, group settings, and in writing relaying technical information in understandable format to a variety of technical levels of comprehension
A+ and Sec+ and other security related certifications
CNA or MCP certification
Military background in network security or similar environment
IT Experience in a Department of Education Collection Center
IT Experience within the Federal Government or Military DoD
Experience working within the cyber warfare or cyber warfare counterintelligence arenas
Knowledge, Skills & Abilities:
Intensive analytical skills necessary to comprehend real time security issues
Comprehension of networking/distributed computing environment concepts
Good technical skills with a thorough understanding of data communications and data center technology.
Strong attention to detail
Strong oral and written communication skills
PowerShell Scripting, Windows Command Line helpful in determining possible infections
Ability to demonstrate a knowledge and understanding of PCI controls, ITIL, and NIST 800 53.
Ability to demonstrate and effectively communicate with various levels of end users and IT staff on how to trouble shoot, identify issues, resolve problems, remediate issues and follow standard methodologies
Ability to prepare and effectively communicate both in written format and verbally, the development and implementation of related security policies Advanced problem-solving skills required to find solutions to problems that are technically complex and require collection, interpretation and analysis of data from diverse sources
Ability to assist our company in evolving and growing rapidly, having a positive impact on its culture while contributing to a positive, collaborative and proactive environment to work in
Ability to work successfully in situations that may at times be stressful
Central Research is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability. Click here to view the Equal Employment Opportunity Posters.
If you’d like to view a copy of the company’s affirmative action plan, please call 703-382-1970.
If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment selection process, please contact our recruiting office at (703) 382-1363. This telephone line is reserved solely for job seekers with disabilities requesting accessibility assistance or an accommodation in the job application process. Please do not call about the status of your job application if you do not require accessibility assistance or an accommodation. Messages left for other purposes, such as following up on an application or non-disability related technical issues, will not receive a response.
NOTE: This job description is not intended to be an exhaustive list of all duties, responsibilities or qualifications associated with the job. It is intended to describe the general nature and work responsibilities of the position. This job description and the duties of this position are subject to change, modification and addition as deemed necessary by the Company.
Central Research Inc. (CRI) provides management and financial service solutions to federal, state and commercial sectors.
What was founded in 2002 as a Service-Disabled Veteran Owned Small Business has grown to a large corporation, with more than 700 employees across nine states, including our headquarters in Lowell, Arkansas, and our Washington, D.C.-metro office.
Our growth and success reflect our ability to offer quality customized solutions in a client-focused environment. Through our values-driven culture, we’re committed to delivering industry-leading results for our clients.