Cyber Security Specialist

Title: Cyber Security Specialist

Location:

Remote, must be based in TX or NM

Job Type:

Full-time

About Us:

As a Cyber Security Specialist, you will play a critical role in safeguarding our organization's information systems and assets. You will be responsible for identifying and resolving security vulnerabilities, implementing robust security measures, and ensuring compliance with industry standards. Your expertise in system administration, network security, and information security policies will be essential in protecting our digital infrastructure.

You will conduct regular audits, upgrade security controls, and provide insightful reports to keep stakeholders informed of system status and performance. Additionally, you will stay abreast of the latest security trends and technologies, contributing to continuous improvement and innovation within our security framework. Your proactive approach and problem-solving skills will be vital in maintaining the integrity, confidentiality, and availability of our information systems.

Job Responsibilities:

• Maintain system compliance with NIST 800-171 R2 / CMMC 2.0 L2, including all related documentation
• Safeguard information system assets by identifying and solving potential and actual security problems.
• Protect systems by defining access privileges, control structures, and resources.
• Recognize problems by identifying abnormalities and reporting violations.
• Implement security improvements by assessing current situations, evaluating trends, and anticipating requirements.
• Determine security violations and inefficiencies by conducting periodic audits.
• Upgrade systems by implementing and maintaining security controls.
• Keep users informed by preparing performance reports and communicating system status.
• Maintain quality service by following organization standards.
• Maintain technical knowledge by attending educational workshops and reviewing publications.
• Contribute to team effort by accomplishing related results as needed.

Qualifications / Skills:

• Knowledge of Microsoft Office 365 and Azure.
• In-depth knowledge of NIST 800-171 r2 / 800-53.
• Experience reviewing, updating, or creating policy/procedure documents based on NIST controls.
• System administration and network security expertise.
• Strong problem-solving skills and information security policy knowledge.
• On-call network troubleshooting capabilities.
• Knowledge of firewall administration and best practices.
• Understanding of network protocols, routers, and switches.
• Ability to inform others and drive process improvement.

Education, Experience, and Licensing Requirements:

• Bachelor's degree in Computer Science, Information Systems, or equivalent education or work experience.
• 4+ years of prior relevant experience.
• Advanced certifications such as SANS GIAC/GCIA/GCIH, CISSP, CASP, and/or SIEM-specific training and certification.
• Hold DoD-8570 IAT Level 2 baseline certification (Security+ CE or equivalent) at start date.
• Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.
• Hands-on experience analyzing high volumes of logs, network data (e.g., Netflow, FPC), and other attack artifacts in support of incident investigations.
• Experience with vulnerability scanning solutions.
• Familiarity with the DOD Information Assurance Vulnerability Management program.
• Proficiency with any of the following: Anti-Virus, HIPS, ID/PS, Full Packet Capture, Host-Based Forensics, Network Forensics, and RSA Security.
• In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform.
• Understanding of mobile technology and OS (i.e., Android, iOS, Windows), Virtualization technology, and Unix and basic Unix commands.