IT Security Analyst

Curtiss Wright
Cheswick, United States of America
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
$ 86K

Job location

Cheswick, United States of America

Tech stack

Configuration Management
CompTIA Security+
Computer Security
Information Systems
Information Leak Prevention
Data Security
Information Security Management
Software Vulnerability Management
Vulnerability Analysis

Job description

The IT Security Analyst is responsible for supporting the operational security posture for Curtiss-Wright (CW) Information Systems (IS). The IT Security Analyst assists the IT Security Manager in meeting duties and responsibilities related to compliance with internal and external Information Assurance (IA) requirements and standards such as: NIST 800-171, NISPOM, RMF, NIST 800-53 and CMMC., * Maintain situational awareness of current security posture of CW IS and apply guidance where needed

  • Provide incident response readiness and support across several IS platforms of various mission impact
  • Assist the IT Security team with managing governance, risk and compliance by monitoring system activity and access controls, reviewing and updating policies, performing and updating risk assessments, and driving resolution of Plan of Action & Milestones (POA&M) items
  • Perform continuous monitoring and vulnerability management activities such as IS event analysis and vulnerability identification, reporting, and resolution
  • Evaluate IS change requests and provide professional guidance to the Configuration Control Board
  • Participate in the architecture of new IS implementation solutions that meet the needs of the business
  • Assist the IT Security team with supporting third-party auditors from various federal and non-federal organizations
  • Perform secure data transfer agent activities when required

Requirements

  • Due to DoD requirements, candidates must be US citizens
  • Must be able to obtain and maintain DOD security clearance
  • Bachelor's Degree in Cybersecurity or related field and at least 2 years of experience OR 6 years of experience in lieu of a degree
  • Strong communication skills, analytical thinking, and problem-solving skills
  • Ability to prioritize tasks and efforts
  • Ability to analyze risks, review risk mitigations, and determine residual risk
  • Ability to work within a team environment and convey knowledge and skill to other members of the team in support of information security efforts
  • Ability to maintain information security certifications commensurate with applicable requirements (e.g. CompTIA Security+, SANS GIAC or ISC^2 CISSP)
  • Knowledge of the NIST 800-171 and/or NIST 800-53 security control implementation guidance
  • Experience with maintaining and operating information system security and vulnerability scanning software (e.g. Trellix ePolicy Orchestrator and Endpoint Security, Trellix Enterprise Security Manager, Tenable.sc, Trellix Data Loss Prevention, etc.) is preferred
  • Experience with DOD Risk Management Framework and the Enterprise Mission Assurance Support Service (eMASS) is a plus

Benefits & conditions

Pulled from the full job description

  • Referral program
  • Employee stock purchase plan
  • Health insurance
  • 401(k) matching
  • Paid time off
  • Profit sharing, This position is 100% onsite

Salary: $59,700 - $86,300 per year

Please note that the salary range information provided is a general guideline only, reflecting a position based in PA. Criteria such as the candidate's qualifications and relevant experience, the scope of the specific position, as well as market and business considerations will be evaluated when extending an offer.

We Take Care of Our People: Paid Time Off I 401K with Employer Match and Profit Sharing I Health and Wellness Benefits I Learning and Development Opportunities I Referral Program I Competitive Pay I Recognition I Employee Stock Purchase Plan I Inclusive & Supportive Culture

About the company

EMD a business unit of Curtiss-Wright in Cheswick, PA designs, manufactures, tests, and provides after-market support for the most advanced, proven and reliable critical function pumps, motors, generators, seals, control rod drive mechanisms and power conditioning electronics available anywhere in the world today. Curtiss-Wright EMD has a long-standing and distinguished reputation for the design, development, manufacture, and qualification of critical-function machining solutions for the United States Navy and the commercial nuclear utility industry. http://www.emd.cwfc.com

Apply for this position