Enterprise Security Analyst II
The Enterprise Security Analyst will provide information assurance and cyber security support. Works with the IT work centers to develop risk response recommendations for the government client organization including avoidance, transference, acceptance or mitigation of security risks and vulnerabilities.
The Security Analyst provides direct support for organizing, planning, implementing and maintaining the Cyber security program of USAF. Works with work centers to ascertain their risk response decision. Responsibilities will include support to vulnerability management, scanning and remediation, patch management, and threat and vulnerability assessment. The candidate will have experience in reviewing information security activities including policies and procedures and presenting findings in verbal and written reports. Experience in one or more of the following: LAN/WAN networking, systems administration of Windows-based platforms, firewalls, IDS/IPS design and implementation, computer forensic techniques, databases, web and mail servers, and general systems design and operation is highly desired. The candidate will review and coordinate the implementation of DoD policies and procedures concerning Information Assurance. They will be actively involved in staying abreast of and informing the agency of the current government directives, instructions, guidance or policies regarding or impacting Information Assurance. WORKING HOURS: Shift flexibility mandatory.
Active Secret security clearance (or ability to be granted an interim Secret clearance)
MS SCCM certified MCSE 70-291 (Server 2003)
MCSE 70-642 (Server 2008)
Possess Security + 7+ Years IT or Enterprise Network Experience
ITIL V-3 Foundation
Familiarity with Vulnerability Life-Cycle Management (VLMS)
Host Based Security System (HBSS)
Familiarity with USAF Notices to Airman (NOTAM) process
Familiarity with Time Compliance Network Orders (TCNO) process
Familiarity with Time Compliance Technical Orders (TCTO) process
Maintenance Task Orders (MTO) process
Server virtualization technologies, specifically VMWare ESX 3.5