Position Title: Cybersecurity Analyst (Fedramp)
Location: Remote CST or PST
Duration: 6+ Month Contract
Mandatory Skill Set: FedRamp Certification / FedRamp Implementation experience, Delinea/Thycotic Secret Server and PAM
Federal Project experience will be a huge plus
Job Description:
Detail-oriented with strong organizational abilities.
Foundational understanding of security principles.
Excellent communication skills.
FedRamp:
Possess FedRAMP Certification.
Proficiency in conducting scans, analyzing findings, and collaborating with teams for timely remediation to ensure compliance.
Capable of working both independently and within cross-functional teams.
Technical Expertise:
Privileged Access Management (PAM):
Strong proficiency with Delinea's Thycotic Secret Server/BeyondTrust.
Demonstrated knowledge of Active Directory and networking.
Thorough understanding of identity lifecycle management for privileged and user accounts.
Exposure Management:
Extensive experience with Tenable and Wiz.
Proficient in executing various scans (daily, weekly, ad-hoc, monthly), including PCI Compliance, Web Application Scanning, Vulnerability Management, Attack Surface Management, and Identity Exposure.
Proven ability to coordinate vulnerability remediation efforts with asset owners (identified through Tenable/Wiz/Google Mandiant).
Digital Certificates (DigiCert):
General understanding of digital certificate concepts.
Access Reviews:
Privileged Access Reviews: Familiarity with Google Sheets and Mail Merge, along with a general understanding of Active Directory fields (e.g., nested groups, disabled/expiring accounts, Organizational Units).
AD Termination Reviews: Familiarity with Google Sheets and VLOOKUP commands, and a general understanding of Active Directory fields (e.g., disabled/expiring accounts, Organizational Units).
Security Scorecard - Ground level work experience on issues