BRTRC

Returning Candidate?

Risk Management Analyst

Risk Management Analyst

ID 
2017-2270
# of Openings 
1
Job Locations 
US-DC-Washington DC
Posted Date 
9/27/2017
Category 
Cyber Security

More information about this job

Overview

BRTRC Federal Solutions is seeking a Risk Management Analyst who will provide support to a large government customer for a new 5 year contract. 

 

The selected candidate will perform annual assessment support with in-depth technical security assessments and determine deviations from acceptable configurations, enterprise or local policy, assess the level of risk, and develop and/or recommend appropriate mitigation countermeasures in operational and non-operational situations. 

 

Ideal candidates must be comfortable in a fast-paced, on-the-job training environment where they will be presented with opportunities to expand and improve their abilities.  The Risk Management Analyst should have a solid understanding and demonstrated experience with security concepts and frameworks such as: networking and networking services (such as DHCP, DNS, TCP/IP, routing and switching), Network Mapping, Vulnerability Scanning, and the NIST Risk Management Framework (RMF).

 

This is a full-time salaried position, located in Washington, DC.

Responsibilities

The analyst will participate in continuous monitoring activities for Information Systems including review of system and application security threats and vulnerabilities, assessment of the robustness of security systems and designs, and remediation plans. The successful candidate will also evaluate how changes to system configurations will impact the security posture and provide guidance to system owners and internal stakeholders on mitigation strategies.  Candidates should be analytical, have a strong technical ability, effective task management skills and the ability to communicate effectively.  They will be required to maintain security documentation and be able to bridge the gap between technical details and a non-technical audience.

Qualifications

  • Ability to understand how system level changes can impact the levels of risk to the organization
  • Knowledge of IA principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
  • Demonstrated analytical problem solving and troubleshooting ability
  • Strong written and oral communication skills, and the ability to communicate technical information to a non-technical audience
  • Ability to work independently and in a team

 

Requirements: 

  • Bachelor’s degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field
  • At least three (3) years of professional experience in with DIACAP or Risk Management Framework in a government setting
  • Ability to obtain a DoD security clearance

 

Preferred Education, Credentials and/or Experience:

  • Prior experience with compliance domains (NIST 800-53, NIST Cyber Security Framework, etc.)
  • Desired Certifications: CISSP, CRISC, or related.
  • Desired Software Experience: Log Management tools, SIEM
  • Knowledge of enterprise level design, defense in depth techniques, and current threats and trends in Information Security

 

  About Us:  BRTRC Federal Solutions is a growing company offering a  fast-paced work environment with a  diverse variety of challenges and opportunities. As a mid-sized company, there is minimal corporate hierarchy, which means each individual has the ability to work directly with management and have a voice in the current and future operations, culture and working environment of the company.

 

Compensation and Benefits:

We provide  an excellent compensation package with benefits that include medical, dental, vision, short- and long-term disability, and life insurance.  We also provide a generous 401(k) plan following eligibility.

 

EEO/AA Employer/Vets/Disabled