Senior Cyber Security Analyst

Crowned Grace, Inc
Washington, United States of America
3 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 125K

Job location

Washington, United States of America

Tech stack

Kubernetes Security
Microsoft Access
Java
.NET
Microsoft Active Directory
Amazon Web Services (AWS)
User Authentication
Azure
C Sharp (Programming Language)
Catalyst
Cloud Computing
Cloud Computing Security
Computer Security
Databases
System Configuration
Disaster Recovery
Multi-Factor Authentication
Supervisory Control and Data Acquisition (SCADA)
IBM Maximo
Identity and Access Management
Information Technology Operations
Networking Hardware
Internet Protocol Security (IP SEC)
Intrusion Detection and Prevention
Intrusion Detection Systems
Virtual Private Networks (VPN)
Information Systems Security Architecture Professional
Python
Network Security
Microsoft SQL Server
Windows Server
Network Architecture
Network Segmentation
Oracle Applications
Powershell
Remote Access Technology
Azure
Runbook
SAP IS-U
SharePoint
Security Information and Event Management
Virtualization Technology
vSphere
Software Vulnerability Management
Esri GIS (Software)
Network Routers
Scripting (Bash/Python/Go/Ruby)
Identity Services Engine
Cloud Platform System
Multi-Cloud
Firewalls (Computer Science)
Kubernetes
Information Technology
Process Control Systems
Operational Systems
3-tier Architectures
TACACS+ Protocol
Oracle Erp
Cisco Switches
Cisco networks
Docker
SSL VPN

Job description

The Senior Cyber Security Analyst serves as a hands-on senior contributor and technical advisor, leading threat monitoring, incident response, vulnerability management, and security engineering activities across on-premises, cloud, and hybrid platforms. The role works closely with the network infrastructure, systems administration, database, and SCADA/Process Control System (PCS) teams to ensure that security controls are designed, implemented, and maintained in alignment with DC Water's security architecture and applicable regulatory standards. Key Responsibilities

  • Monitor, triage, and investigate security events and alerts across the enterprise using SIEM, endpoint detection and response (EDR), intrusion detection/prevention systems (IDS/IPS), and related security tooling.

  • Lead and coordinate incident response activities, including detection, containment, eradication, recovery, and post-incident root cause analysis, and produce clear incident documentation and lessons-learned reports.

  • Perform proactive threat hunting and analysis of indicators of compromise, correlating threat intelligence with internal telemetry to identify and mitigate emerging risks.

  • Plan and execute vulnerability management activities, including scanning, risk-based prioritization, remediation tracking, and validation across servers, endpoints, network devices, and applications.

  • Design, implement, and tune security controls across hybrid environments, including firewalls, VPN, network segmentation, and multi-DMZ architectures, IDS/IPS, and secure remote access.

  • Administer and improve identity, access, and security controls across on-premises and cloud environments (Active Directory and Azure Entra ID/IAM), including multi-factor authentication, conditional access, least-privilege enforcement, and security hardening.

  • Coordinate with the SCADA/PCS engineering team to ensure IT, PCS, and SCADA security architectures are aligned, and support the segmentation, monitoring, and protection of the Authority's operational technology environment.

  • Conduct security assessments, configuration reviews, and control gap analyses against recognized frameworks, and recommend risk-based remediation.

  • Support security governance, risk, and compliance activities, ensuring operation in compliance with current and future corporate, industry, and regulatory standards (e.g., NIST Cybersecurity Framework, AWIA, HIPAA, and other evolving cybersecurity protocols).

  • Develop, update, and maintain security documentation, standard operating procedures, runbooks, hardening baselines, and asset inventories.

  • Provide Tier 3 security engineering support and advanced problem resolution for critical security issues escalated by IT Operations and other teams, and mentor junior analysts as a subject matter expert.

  • Partner with infrastructure, systems, database, and application teams to embed security into system design, changes, upgrades, and cloud migration initiatives, following established change management protocols., * This is a hybrid assignment requiring three (3) days onsite per week at Blue Plains or Headquarters (HQO) and two (2) days remote.

  • Initial assignment length is six (6) months, with the possibility of extension based on business needs and performance.

  • The selected candidate may be subject to background and security screening consistent with DC Water's requirements for access to critical infrastructure systems.

  • DC Water will provision the necessary IT equipment for the selected candidate., MANTECH seeks a motivated, career and customer-oriented Cyber Incident Response Analyst to join our team in McLean, Virginia. Our team provides 24x7x365 cybersecurity support to on…

  • 17 days ago

Requirements

  • Experience: Minimum of seven (7) years of progressive experience in cyber security, information assurance, or information security, including hands-on incident response, vulnerability management, and security operations.

  • Education: Bachelor's Degree in Computer Science, Information Technology, Cyber Security, or a related field (equivalent experience may be considered).

  • Certification: Certified Information Systems Security Professional (CISSP) required.

  • Technical Depth: Demonstrated expertise with SIEM and security monitoring tools, EDR, IDS/IPS, and firewall technologies, including experience configuring and managing stateful and application-proxy firewalls in multi-DMZ environments.

  • Networking & Access: Strong understanding of enterprise/hybrid networking, secure authentication (RADIUS, TACACS+), IPSEC and SSL VPN, and identity and access management across Active Directory and Azure Entra ID.

  • Frameworks: Working knowledge of security frameworks and regulatory requirements, such as the NIST Cybersecurity Framework, and experience applying risk-based security controls.

  • Communication: Excellent written and oral communication skills, with the ability to document findings and present risk to both technical and non-technical stakeholders.

Preferred Qualifications

  • Experience securing operational technology (OT), SCADA, or industrial control system (ICS) environments, ideally at a water, wastewater, or other critical-infrastructure utility.

  • Additional certifications such as CISM, CCSP, GIAC (e.g., GCIH, GCIA, GICSP), CEH, or a cloud security certification (Azure/AWS).

  • Hands-on experience with Cisco security platforms (Cisco ISE, Catalyst Center), Checkpoint firewalls, and Microsoft/Azure security tooling.

  • Familiarity with virtualization and container security (VMware vSphere, Windows Server, Docker/Kubernetes) and cloud/hybrid security architecture.

  • Experience supporting disaster recovery and business continuity planning and testing.

  • Scripting or automation skills (e.g., Python, PowerShell) to support detection, response, and reporting.

DC Water Technical Environment The selected candidate will operate within a diverse enterprise environment that includes, but is not limited to, the following technologies:

  • Network & Security: Cisco switches, routers, firewalls, Cisco ISE and Catalyst Center; Checkpoint firewalls; IDS/IPS; IPSEC/SSL VPN; RADIUS and TACACS+.

  • Identity & Cloud: Active Directory, Azure Entra ID/IAM, Microsoft Azure, and hybrid/multi-cloud architecture.

  • Compute & Virtualization: VMware vSphere, Windows Server, and Docker/Kubernetes.

  • Data & Applications: Oracle and MS SQL databases; Oracle ERP, SAP ISU, IBM Maximo, ESRI GIS, SharePoint, and various custom .NET/C#/Python/Java systems.

  • Operational Technology: SCADA and Process Control Systems, including Modicon PLC platforms, requiring close coordination on IT/OT security architecture.

About the company

Crowned Grace International seeks a Senior Cyber Security Analyst for the DC Water Department of Information Technology (DIT) to strengthen the security posture of the Authority's enterprise information technology (IT) and operational technology (OT) environments. As one of the largest water and wastewater utilities in the United States, DC Water operates critical infrastructure that must remain resilient against evolving cyber threats while meeting corporate, industry, and regulatory security requirements.

Apply for this position