IT Security Analyst, Public Sector

Job Summary:

The IT Security Analyst supports the implementation and continuous improvement of cybersecurity controls, monitoring, and compliance activities across cloud and endpoint systems. This role uses data collected from a variety of cyber defense tools to analyze events that occur within their environments for the purposes of mitigating threats. They are responsible for the analysis and development of the integration, testing, operations, and maintenance of systems security.

Job Duties:

• Monitors and analyzes security event data across Microsoft 365 GCC High services, including Office, Entra ID, Intune, Defender, and Purview
• Supports the configuration, implementation, and maintenance of secure baseline architectures in accordance with NIST SP 800-171
• Conducts regular control testing and analyzes data to identify trends, deviations from baselines, and control effectiveness
• Ensures all systems security operations and maintenance activities are properly documented and updated 
• Performs regular system patching, configuration reviews, and vulnerability remediation activities in coordination with change control processes
• Documents and maintains detailed and auditable records for control evidence, system events, and incident response activities
• Assists in evaluating and applying cybersecurity-enabled technologies or compensating controls to mitigate identified risks
• Conducts phishing simulations and cybersecurity awareness campaigns
• Responds to system alerts and coordinates for triage, escalation, or containment
• Contributes to System Security Plans (SSPs), Plan of Action & Milestones (POA&Ms), and other artifacts for audit readiness
• Works with stakeholders to resolve security incidents
• Other duties as assigned

Supervisory Responsibilities: 

• N/A

Qualifications, Knowledge, Skills, and Abilities:

Education:

• High School Diploma or GED, required
• Bachelor's degree in cloud computing, information technology, information science, informatics, software engineering, or information systems, preferred
• Annual 40 hours of continuous learning, (may include professional memberships, forums, lunch and learns, roundtables, online training courses, and maintaining certifications), required

Experience:

• Three (3) or more years information technology, information systems, cybersecurity, computer science, software engineering, or computer engineering experience, required

License/Certifications:

• AZ-104 – Microsoft Azure Administrator, preferred
• AZ-500 – Microsoft Azure Security Technologies, preferred
• MS-900 – Microsoft 365 Fundamentals, preferred

Software:

• Proficiency with Microsoft Defender and Microsoft Sentinel, preferred
• Proficiency with Microsoft Power Apps, preferred

Language:

• N/A

Other Knowledge, Skills, and Abilities: 

• Knowledge of FedRAMP, NIST SP 800-53, NIST SP 800-171, NIST CSF, Cybersecurity Maturity Model Certification (CMMC), ISO 27000 
• Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy 
• Knowledge of cybersecurity and privacy principles
• Knowledge of cyber threats and vulnerabilities
• Knowledge of authentication, authorization, and access control methods
• Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption)
• Knowledge of network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML)
• Knowledge of network traffic analysis methods
• Ability to conduct vulnerability scans and recognize vulnerabilities in security systems
• Ability to accurately and completely source all data used in intelligence, assessment and/or planning products

Join us at BDO, where you will find more than a career, you’ll find a place where your work is impactful, and you are valued for your individuality. We offer flexibility and opportunities for advancement. Our culture is centered around making meaningful connections, approaching interactions with curiosity, and being true to yourself, all while making a positive difference in the world. 

At BDO, our purpose of helping people thrive every day is at the heart of everything we do. Together, we are focused on delivering exceptional and sustainable outcomes and value for our people, our clients, and our communities. BDO is proud to be an ESOP company, reflecting a culture that puts people first, by sharing financially in our growth in value with our U.S. team.  BDO professionals provide assurance, tax and advisory services for a diverse range of clients across the U.S. and in over 160 countries through our global organization.

BDO is the first large accounting and advisory organization to implement an Employee Stock Ownership Plan (ESOP). A qualified retirement plan, the ESOP offers participants a stake in the firm’s success through beneficial ownership and a unique opportunity to enhance their financial well-being. The ESOP stands as a compelling addition to our comprehensive compensation and Total Rewards benefits* offerings. The annual allocation to the ESOP is fully funded by BDO through investments in company stock and grants employees the chance to grow their wealth over time as their shares vest and grow in value with the firm’s success, with no employee contributions. 

We are committed to delivering exceptional experiences to middle market leaders by sharing insight-driven perspectives, helping companies take business as usual to better than usual. With industry knowledge and experience, a breadth and depth of resources, and unwavering commitment to quality, we pride ourselves on:

• Welcoming diverse perspectives and understanding the experience of our professionals and clients
• Empowering team members to explore their full potential
• Our talented team who brings varying skills, knowledge and experience to proactively help our clients navigate an expanding array of complex challenges and opportunities
• Celebrating ingenuity and innovation to transform our business and help our clients transform theirs
• Focus on resilience and sustainability to positively impact our people, clients, and communities
• BDO Total Rewards that encompass so much more than traditional “benefits.”  Click here to find out more!

*Benefits may be subject to eligibility requirements.

Equal Opportunity Employer, including disability/vets