Cybersecurity Risk Management Analyst, Sr.

At The One 23 Group, our mission is to set the benchmark for excellence in government services. We empower our clients in the Department of Defense, Intelligence Community, and Federal Civilian sectors to excel with our advanced capabilities. Our dedication lies in fostering a people-first culture, underpinned by steadfast ethical principles. Embracing innovative technologies and process improvements, we are steadfast in our journey toward a future that is both bright and transformative.

Our expertise spans consulting and analytics, digital workplace solutions, and cyber compliance. With our global footprint, we place a strong emphasis on nurturing our people and culture, which forms the core of our successful strategies in leadership and financial management. We pride ourselves on our extensive experience and effective approach, ensuring that we lead with both innovation and integrity.

The One 23 Group, a Virginia-based Government Contractor, seeks a Cybersecurity Risk Management Analyst, Sr.

• Lead cybersecurity risk assessments and mitigation strategies across the organization.
• Develop and implement complex security designs in hardware, software, and operational systems.
• Oversee the certification and accreditation process, ensuring compliance with NIST, FISMA, and other Federal regulations.
• Manage incident response teams and lead forensic investigations to determine the cause and impact of security breaches.
• Prepare high-level security reports and present findings to senior management and stakeholders.
• Develop security policies and procedures that align with Federal requirements and best practices.
• Conduct periodic network vulnerability scans and penetration testing to ensure systems remain secure.
• Provide mentorship and guidance to junior cybersecurity staff.

Qualifications:

• Education: Bachelor’s degree in Computer Science, Information Systems, or related field.
• Experience: At least 8 years of relevant experience in cybersecurity or risk management.
• Certifications (Desired): GISP, CISM, CISSP, Sec+.

Skills:

• Expert knowledge of Federal cybersecurity regulations and compliance frameworks, including NIST and FISMA.
• Advanced experience with security tools like ACAS, Nessus, and vulnerability management platforms.
• Demonstrated experience in leading security incident response and recovery efforts.
• Strong technical leadership skills with a proven ability to manage large-scale cybersecurity programs.

Clearance: 

Must have a minimum active SECRET clearance (US citizenship required).