Senior Cybersecurity Analyst

Alexandria, VA


At Criterion Systems, we developed a different kind of business—a company whose real value is a reputation for excellence built upon the collective skills, talents, perspectives, and backgrounds of its people. By accepting a position with Criterion Systems, you will join a group of professionals with a collaborative mindset where we share ideas and foster professional development to accomplish our goals. In addition to our great culture, we also offer competitive compensation and benefit packages, company-sponsored team building events, and advancement opportunities. To find out more about how Criterion can help you take your career to the next level please visit our website: www.criterion-sys.com.

The National Science Foundation Cyber Security and Privacy (CS&P) Services contract team supports a layered, defense-in-depth cyber security environment that provides successive cyber security controls for approximately 2,500 employees at the Alexandria, Virginia Headquarters and additional employees at other locations. The CS&P Services Team is responsible for a comprehensive, agency-wide Cyber Security Program that encompasses all aspects of cyber security. Strategic objectives for the CS&P Services contract are:  data loss prevention; improve network and system security; risk based management; security incident management; and cyber security training and awareness.

Criterion Systems’ has a position open for a Senior Cyber Security Analyst in Alexandria, Virginia.

This position will be a member of the Cyber Security Operations Team with the responsibility of performing as a Continuous Diagnostics and Mitigation (CDM) Subject Matter Expert (SME).This Senior Cyber Security Analyst position requires providing superior technical knowledge and infrastructure experience to successfully deliver the availability, security, and operations of a varied and complex heterogeneous network. Knowledge of high-level functional systems of analysis, design, integration, documentation and implementation solutions is required. You will assist management and peers with analysis and evaluation of new and existing products, preparation of recommendations for system improvements, optimization, development, and maintenance.

Job Responsibilities:

  • Perform Information Security Continuous Monitoring and Department of Homeland Security (DHS) Continuous Diagnostics Mitigation (CDM) governance and integration
  • Implement future phases of the CDM Tool Suite and collaborate with the DHS CDM vendor
  • Improve network and system security – Maintain a layered defense in depth architecture and comply with federal security initiatives, e.g. Federal Information Security Modernization Act (FISMA), Office of Management and Budget (OMB) memos, National Institute of Standards and Technology (NIST) Cyber Security Framework and DHS CDM
  • Review and perform evaluation of new, existing, and proposed products
  • Manage and maintain phishing campaigns
  • Familiarity and experience using the customer’s tools, technologies and products:
  • FireEye AX, FireEye HX, FireEye NX, FireEye PX, Cylance, Security Onion, EnCase, CyberArk, ForeScout CounterACT, Splunk Enterprise, RSA Archer, ServiceNow, Tenable Security Center (SC), McAfee Endpoint Protection, McAfee ePolicy Orchestrator (ePO), McAfee VirusScan Enterprise (VSE), McAfee Host Intrusion Prevention System (HIPS)
  • Amazon Web Services (AWS) and other cloud tools, technologies and products: AWS Configuration Manager, AWS GuardDuty, AWS Secrets Manager, AWS Parameter Store, Web Application Firewalls, AWS CloudWatch, Twistlock, Secrets, Key Management Services (KMS)
  • Information Security Controls and Continuous Monitoring
  • Perform tasks for continuous monitoring of system configuration components
  • Conduct security impact analyses of changes to the system
  • Support ongoing assessments of security controls and provide status reports
  • Perform scans and assessments of assets connected to the customer’s networks and develop/deliver reports to the security management team
  • Take immediate and appropriate counter measures upon knowledge or discovery of threats
  • Perform as a subject matter expert regarding all Federal Information Security Management Act (FISMA) topics, including attending briefings and meetings
  • Validate the quality of system artifacts
  • Collect and analyze intelligence regarding cyber threats and vulnerabilities; direct and coordinate the response to such threats and vulnerabilities using the latest methods and tools available
  • Identify, test, and promulgating security patches
  • Develop the vulnerability and incident response status portion of the Daily Tag-Up Report
  • Manage the tools used to provide continuous monitoring of FISMA security control set CDM Tools
  • Support of Inspector General (IG) Monitoring
  • Modernize the customer’s established processes and procedures
  • Support the customer in achieving a risk based and cost effective cyber security program compliant with NIST Cyber Security Framework areas
  • Identify, Protect, Detect, Respond, and Recover
  • Identify, develop and support the NIST procedures and artifacts for annual IG metrics
  • Knowledge of Federal Risk and Authorization Management Program (FedRAMP)

Minimum Requirements:

  • 7 Years of Experience with a mix of the duties from above
  • Bachelor’s Degree or 4 years of experience to be used in lieu of the degree
  • US Citizen
  • Eligible and ability to obtain a NACI/Public Trust clearance
  • Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM) or SANS GIAC Security Essentials (GSEC)

Preferred Qualifications:

  • Certified Ethical Hacker
  • CompTIA Security +

Criterion Systems is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit https://criterion-sys.com/careers.


Benefits

Health

Criterion offers comprehensive health benefits including medical, dental, vision, life and disability insurance. Most of our plans are available at no cost for employee only coverage.

Time Off

Employees begin accruing PTO at 15 days per year and acquire more based on seniority. In addition to PTO, Criterion provides 10 holidays and bereavement, military, jury duty, and family medical leave.

Financial

  • Roth and Traditional 401(k) Plans with company matching contributions
  • Health Care and Dependent Care Flexible Spending Accounts
  • Health Savings Accounts
  • Commuter Benefits

Educational

All employees are eligible to use up to $3,000 annually for approved professional development, including trainings, memberships, seminars, and degree programs.

Employee Testimonials

Pets of Criterion

We love our furry friends!

Equal Employment Opportunity and Affirmative Action Employer

Criterion Systems, Inc. is committed to equal employment opportunity and non-discrimination at all levels of our organization. We believe in treating all applicants and employees fairly and make decisions without regard to an individual’s protected status: race/ethnicity, color, national origin, ancestry, sex/gender, gender identity/expression, sexual orientation, marital/parental status, pregnancy/childbirth or related conditions, religion, creed, age, disability, genetic information, veteran status, or any other protected status.

Know Your Rights

Applicants have rights under Federal Employment Laws: Family and Medical Leave Act | Equal Employment Opportunity | Employee Polygraph Protection Act. Criterion participates in E-Verify. Review Right to Workinformation.

Need an Accommodation?

Criterion is committed to Equal Employment Opportunity and providing reasonable accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for a position with Criterion and need special assistance or an accommodation to apply, please send an email with your request to recruiting@criterion-sys.dev1-ironistic.com or call us at 703-942-5800. Determination on requests for reasonable accommodation are made on a case-by-case basis.