Senior Cyber Security Analyst

About NFF

Since 1996, NFF has designed, architected, and delivered IT network and security solutions to many state, and local government agencies, K-20 educational institutions, federal agencies, and large enterprise businesses across the mid-Atlantic. NFF is a technology services and solutions provider, specializing in next-generation IT infrastructure including networks, data centers, cloud migrations, IT security, collaboration and mobility, and full/part-time staff augmentation services.   Our solutions, professional services and IT staffing portfolio are centered around building more resilient, secure, adaptive, and intelligent IT infrastructure and include comprehensive assessment, architecture, design, integration and installation services, and ongoing performance management services though our Network Operations Center (NOC). 

NFF is a Cisco Gold Partner with a Customer Experience Specialization and was a “Cisco Top-5 Mid-Atlantic SLED Partner” in 2019, 2020 and 2022. NFF has maintained Cisco Gold Partnership since 2008, is the only Cisco Gold Partner headquartered in the District of Columbia. In addition to Cisco, NFF has key partnerships with many manufacturers and IT solution providers including, Rapid7, Arctic Wolf, VMware, NetApp and Splunk.

NFF is a District of Columbia (DC) Certified Business Enterprise (CBE) and a SBA Certified Small Business with headquarters in downtown Washington, DC. Our dedication to quality is reflected in our accomplishment of being awarded multiple ISO 9001:2015 certifications.

About this Position / Responsibilities

• Supports the Director, Cyber Security Services, in ensuring preparedness to address cyber risks.• Maintains user access controls for computing resources.• Monitors SOC operations to detect, analyze, and respond to cyber incidents, including intrusion attempts, malware infections, and other security threats, across IT and OT networks.• Analyzes security events and incidents within the Computing and Network environment, investigating root causes, assessing impact, and coordinate and document response actions to mitigate risks and minimize operational disruptions.• Tests, implements, deploys, maintains, reviews, and administers the infrastructure software required to effectively manage the network defenses and resources.• Monitors network to actively remediate unauthorized activities.• Assists in disaster recovery operations, using preparation, identification, mitigation, remediation, and recovery approaches, as needed to maximize business resilience and information security.• Collaborates with the Director, Cyber Security Services, to incorporate threat intelligence obtained from third-party providers into Cyber Controls, enhancing ability to proactively identify and mitigate emerging threats.• Conducts and reports outcomes of vulnerability and penetration testing on IT and OT systems, identifying and prioritizing vulnerabilities for remediation to reduce the risk of exploitation by malicious actors. • Uses advanced threat hunting techniques and tools to identify and neutralize threats before they escalate.• Documents security incidents, investigations, and response activities in accordance with established procedures, ensuring accurate and thorough reporting for compliance, audit, and legal purposes. • Determines deviations from acceptable configuration, vendor, or IT Policy.• Generates security metrics, dashboards, and reports to provide visibility into key cybersecurity performance indicators, trends, and emerging risks for the senior executive team.• Oversees the receipt and distribution of IT assets owned, leased, or subleased by organization to IT and OT, including creation and maintenance of supporting documentation to manage the acquisition and disposal of IT assets.• Continuously assesses and improves cybersecurity capabilities, processes, and procedures, leveraging lessons learned, industry best practices, and emerging technologies to enhance overall cyber resilience and readiness.

Qualifications

Required Experience:

• Minimum 5 years of experience in Information Systems.• A Bachelor’s degree in Information Systems, Computer Science, or a related technical field from an accredited college or university.• Strong understanding of the key functions of cybersecurity, cyber risk mitigation strategies, and event and incident flows within a Security Event and Incident (SEIM) system.• Ability to define the problem, generate and select alternatives, and implement solutions.• Intermediate understanding of MITRE and Adversarial Tactics, Techniques and Common Knowledge (ATT&CK) framework for Information Technology and Operational Technology Networks.• Strong understanding of one or more computer programming and/or scripting languages (PowerShell, KQL, Python, etc.).• Intermediate understanding of network ports, protocols, and services, host and network-based Intrusion Prevention Systems (IPS).• Advanced understanding of system and network logging events.• Familiarity with the National Institute of Standards and Technology NIST 800-53 Control Families and the NIST Cyber Incident Response steps.

• Must be willing to work a hybrid onsite arrangement – 3 days onsite in DC, 2 days remote.

Required Skills:

• Cybersecurity Tools & Technologies• Information Security• Access Control• Incident Response• Adaptable & Agile• Attention to Detail• Analytical & Problem-Solving Skills• Teamwork• Communication Skills

Preferred Experience:

• Experience in cybersecurity incident response and network security monitoring and must be proficient in using technology tools such as CheckPoint, Azure, Microsoft Entra, Defender, and Purview.• Master’s degree in cybersecurity, information technology security, computer engineering, computer information systems, computer science or related field from an accredited college or university.• Certifications in cybersecurity, such as a CompTIA Security+, GIAC Certifications, or similar.

Preferred Skills:

• Cyber Threat Intelligence• Vulnerability Assessment• Cyber Risk Analysis & Mitigation• Continuous Monitoring• Emerging Trends in Cybersecurity• Business Alignment• Enterprise Security Messaging• KPI/KPR Validation and Oversight• Security Compliance Reporting• Training Design and Development

NFF Disclosures

NFF offers a competitive salary, comprehensive benefits and flexible paid time off options, for eligible employees:

• Medical, Dental and Vision, Health Savings Account, Flexible Spending Account
• STD, LTD, Supplemental life insurance and ADD&D
• Comprehensive 401k plan
• Paid Time Off

NFF is an Equal Opportunity Employer.

Important Notice: All NFF Inc communications come from @nffinc.com. Emails from other domains claiming to be NFF are likely scams. Be cautious, verify senders, and report suspicious messages immediately.