Cybersecurity Analyst

We're going places, hop on board. Our value is in our employees - smart, passionate, and fun people. Grow with us! As a growing business, every NuAxis Innovations employee impacts the success and direction of this company. We all share a true passion for technology and enjoy working together to develop solutions, share ideas, and exchange knowledge. At NuAxis Innovations, we celebrate diversity and the unique perspective each team member brings to his/her job, team, and community. We are currently seeking a talented and motivated Cybersecurity Analyst for a Full-Time position. Job Summary:

• Apply the guidance provided in all relevant National Institute of Standards and Technology (NIST) Special Publications in the delivery of IT security services.
• Security Monitoring, Intrusion Detection, and Analysis.
• Perform near real-time monitoring of the client's network, to include all local area networks and connected Major Applications, using existing and future Government furnished security tools in order to detect evidence of an intrusion or misuse.
• Perform incident response, as defined by FISMA, in support of all security incidents related to client's information or information systems.
• Ensure timely and effective identification, isolation, containment, coordination, and documentation of security incidents in compliance with prevailing US-CERT and client security policies and standards.
• Participate in regular Incident response testing.
• Provide support for the: 1) ongoing compliance with the U.S. Government Configuration Baseline (USGCB); 2) resolution of known vulnerabilities and areas of non-compliance; 3) upgrades to client's infrastructure; 4) changes to security architecture; 5) change management activities with the development/review of implementation plans, back out plans, and security impact analyses; and 6) security engineering services required for the implementation of new applications. Evaluate, configure, implement, administer, maintain, and upgrade (as applicable) security tools with oversight provided by federal staff. This includes the testing, troubleshooting, and coordinated deployment of agent installations across the enterprise.
• Provide a security analyst and/or engineering staff member to support the Advanced Security Operations Center (ASOC) team on an as needed basis.
• Provide administrative service for support, maintenance and the development, configuration and deployment of enhancements to a Security Information and Event Manager (SIEM).
• Develop, document, and implement a continuous monitoring program for the client's information systems and obtain approval of the continuous monitoring strategy by all applicable stakeholders. CSAM is the web-based enterprise-wide application that maintains details and artifacts related to client IT Security boundaries.
• Provide Assessment and Authorization (A&A) support services for the client information systems developed or maintained hereunder prior to going into production.
• Subsequent to the initial authorization to operate, information systems follow the ongoing authorization process and associated continuous monitoring requirements as prescribed by OMB and NIST.
• Assess the effectiveness of a subset of implemented controls on an ongoing basis to inform the AO's decisions regarding the continued use and operation of the system. A&A documents will be maintained in the Cyber Security Assessment and Management solution (CSAM) or as instructed by the government oversight lead.
• Perform annual security control assessments in accordance with the client's Continuous Monitoring Plan.

• 10+ years of relevant work experience, including at least 4 years of specialized experience in the area of network, hardware and operating system security management.
• Requires experience in wide area and local area network configurations and platforms, hardware installation and configuration, and IT security concepts.