Senior SOC Analyst

NIST800, NIST CSF
Contract W2, Contract Independent, Contract Corp-To-Corp, 12 Months
Depends on Experience
Work from home available Travel not required

Job Description

VEGA IS HIRING! Actively searching for a Senior Security Analyst/ SOC Analyst, for a long-term project with our direct client in Washington, DC.

  • Knowledge of several of the following frameworks/regulations: NIST Special Publication 800-53 Rev. 4 /5 ”Security and Privacy Controls for Information Systems and Organizations”, the HIPAA Security and Privacy Final Rule (45 CFR Part 164), NIST 800-171 “Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations”, NIST CSF, NIST RMF, FedRAMP, HITRUST, CIS benchmarks, CIS Top 20, Cloud Controls Matrix (CCM), COBIT, CMMC, ISO 27001.
    • Knowledge of developing SSPs based on NIST 800-171, 800-53, and FedRAMP.
    • Experience in conducting security and privacy risk assessments, completing risk exception and acceptance requests using SIG, SOC2 Type 2, and other security attestation documents.
    • Skilled at working with a variety of stakeholders (internal and external to the organization) to understand and assess cybersecurity strengths, weaknesses, and gaps in adherence to controls with the ability to develop solutions and documentation to address identified security coverage gaps.
    • Cyber security business and systems subject matter expertise – especially in Application security, Data Security, Data Governance, and Network Security domains.
    • Experienced with responding to internal and external audit requests, working with, and communicating to auditors and assessors, understanding the extent of appropriate evidence needed to satisfy audit and assessment requests.
    • Experience with working with enterprise or cybersecurity specific risk registers.
    • Experience with GRC (Governance, Risk, and Compliance) systems or IRM (Information Risk Management) systems.
    • Excellent written skills to be used in the development, review, and refinement of cybersecurity standards, SOPs, and policy with communication skills (verbal and written) to communicate to all levels of the organization.
    • Proven experience supporting data security risk teams with demonstrated business process, workflow, task analysis, and metrics/results measurement. Exposure to user-acceptance testing and requirements analysis knowledge.
    • Proven ability to elicit, document, analyze and verify requirements.
Dice Id : vega
Position Id : MW 13100
Originally Posted : 2 weeks ago
Have a Job? Post it

Similar Positions

SOC Cyber Security Analyst
  • iQuasar LLC
  • Alexandria, VA, USA
Cyber SOC Analyst (Tier 3)
  • GuidePoint Security
  • Springfield, VA, USA
SOC Analyst
  • Zachary Piper Solutions, LLC
  • Chantilly, VA, USA
SOC Analyst
  • Apex Systems
  • Alexandria, VA, USA
SOC Analyst
  • Leidos
  • Milford Mill, MD, USA
Tier III SOC Analyst
  • Zachary Piper Solutions, LLC
  • Herndon, VA, USA
Tier II SOC Analyst
  • Zachary Piper Solutions, LLC
  • Millersville, MD, USA
Senior Cyber Security Analyst
  • Tantus Technologies, Inc
  • Washington, DC, USA