Cyber Security Analyst

Job Description

Job Description

At TAYS, every team member is vital. We recognize and celebrate diverse insights, believing they fuel our innovative spirit.

We are not just tech-savvy; we are people-centric. You will have a voice. Your unique perspective will help us to solve complex problems, and we welcome your ideas.

Here, you will collaborate closely with our clients, forging lasting relationships. We are on a quest for the brightest minds who relish technical challenges.

If you are ready to contribute to our vibrant high-tech community, high touch let's uncover possibilities together!

Opportunity :

TAYS is seeking an experienced Cyber S ecurity Analyst to join our dynamic team! The successful candidate will possess deep expertise in network security, system vulnerabilities, and risk management.

This role requires a strong understanding of network protocols, security architecture, and the ability to conduct thorough assessments of security systems.

This role will also be responsible for ensuring compliance with relevant security policies and regulations. This position is based in Woodlawn, MD, and requires an experienced multi-tasker with robust analytical, problem-solving, communication and people skills.

This is a permanent, W2 position and will consist of a hybrid schedule. The Cyber S ecurity Analyst must reside within 2 hours of Woodlawn, MD.*

Primary Responsibilities :

• Understand and analyze how traffic flows across the network, including TCP / IP, OSI model, and ITIL v3.
• Expertise in network protocols such as TCP / IP, DNS, Dynamic Host Configuration, and directory services.
• Knowledge of network security architecture concepts, including Defense-in-Depth application, topology, protocols, and components.
• Identify and mitigate system and application security threats and vulnerabilities, including buffer overflow, mobile code, cross-site scripting, PL / SQL injections, race conditions, covert channels, replay, and return-oriented attacks.
• Conduct vulnerability scans and recognize vulnerabilities in security systems.
• Apply host / network access controls (e.g., access control lists).
• Perform technical and non-technical risk and vulnerability assessments of relevant technology areas, including local computing environments, network and infrastructure, enclave boundaries, and supporting infrastructure.
• Conduct required reviews such as TSCM and TEMPEST countermeasure reviews.
• Identify systemic security issues based on vulnerability and configuration data analysis.
• Maintain knowledge of applicable Computer Network Defense (CND) policies, regulations, and compliance documents.
• Ensure adherence to Information Assurance principles and organizational requirements related to confidentiality, integrity, availability, authentication, and non-repudiation.
• Demonstrate proficiency in continuous monitoring and adherence to NIST FISMA Cybersecurity Framework and related publications (e.

g., NIST SP 800-37, 800-53, 800-53a, 800-115).

• Use network analysis tools to identify vulnerabilities and conduct security assessments.
• Demonstrate technical proficiency across multiple system platforms and validate industry standards against organizational standards.
• Oversee risk management and cybersecurity projects, especially in large agencies, and develop custom test procedures to support security control assessments.

Minimum Qualifications :

• Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or Information Technology, or equivalent experience.
• Extensive experience in overseeing risk management and cybersecurity projects, especially within large agencies.
• Comprehensive experience with viruses, worms, and security operations, including creating custom intrusion signatures and populating sensors with newly available signatures.
• The ability to obtain and maintain a Public Trust.
• Proficiency in network protocols, security threats, and vulnerability analysis.
• Expertise in identity and access management, including PKI concepts.
• Ability to assess the robustness of security systems and use social engineering techniques.
• Skilled in performing risk and vulnerability assessments, both technical and non-technical.
• Strong understanding of Computer Network Defense policies and Information Assurance principles.

Desired Qualifications :

• CompTIA A+
• CompTIA Security+
• CompTIA CySA+
• CompTIA Network+
• Certified Ethical Hacker (CEH)
• Certified Information Systems Security Professional (CISSP)
• Active Public Trust or higher.

Why TAYS is the Perfect Place for You :

• Flexibility : Enjoy a work-life harmony with our flexible working options.
• Remote Work : While our heart is in Baltimore, most of our roles support remote work.
• Benefits : Competitive packages, including tuition reimbursement.
• Leisure : Generous PTO, including 11 federal holidays and 2 floating holidays.
• Team Events : Quarterly gatherings for team bonding or community service.
• Military Friendly : We value the dedication and discipline of veterans and service members and urge them to apply.

Commitment to Diversity :

TAYS Inc. is an equal opportunity employer. We consider all qualified applicants for employment without regard to race, color, national origin, religion, creed, sex, sexual orientation, gender identity, marital status, parental status, veteran status, age, disability, or any other protected class