Quantam ยท 1 day ago
Information Security Analyst
United States
Full-time
Remote
Mid Level
$33/hr - $41/hrQuantam Solutions provides IT solutions and consulting for various clients, and they are seeking a highly motivated Information Security Analyst. This mid-level position involves monitoring network security, investigating breaches, implementing security measures, and collaborating with stakeholders to enhance cybersecurity.
DeliveryInformation TechnologyRoboticsSoftwareTransportation
Responsibilities
Monitor network resources for security issues
Monitor a Security Information and Event Management (SIEM) system to enhance the overall cybersecurity of our client: Data Collection, Event Correlations, Incident Detection, Investigation and Analysis, Response and Mitigation, Tuning and Optimization, Compliance Monitoring
Investigate security breaches and other cybersecurity incidents
Develop an audit to determine whether information systems are protected, controlled, and provide value to the organization
Conduct audit follow-up to evaluate whether risks have been sufficiently addressed
Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs
Communicate audit progress, findings, results, and recommendations to stakeholders
Document security breaches and assess the damage they cause
Work with the security team to perform tests and uncover network vulnerabilities
Fix detected vulnerabilities to maintain a high-security standard
Develop cabinet-wide best practices for IT security
Help colleagues install security software and understand information security management
Research security enhancements and make recommendations to management
Stay up to date on information technology trends and security standards
Maintain and update relevant system and process documentation and develop ad-hoc reports as needed
Assist in the development of security tool requirements, trials, and evaluations, as well as security operations procedures and processes
Provide off-hours support on an infrequent, but as-needed basis
Work trouble tickets in the ticketing system
Conduct meetings and work closely with system owners and departmental leads in all business areas where ePHI and other confidential system data is found
Assist with continuous monitoring of activities documenting within the eGRC tool whether security and other related activities are consistently performed
Perform various support activities for other projects including obtaining information and documentation to demonstrate policies, procedures, and operational processes that adhere to various regulations, policies, standards, and other compliance requirements
Collaborate with cross-agency staff to disseminate and engage appropriate Security Teams for any new projects, tasks, and/or initiatives
Lead and coordinate any special projects and/or tasks as directed by management
Prepare reports for management
Qualification
Required
Monitor network resources for security issues
Monitor a Security Information and Event Management (SIEM) system to enhance the overall cybersecurity of our client: Data Collection, Event Correlations, Incident Detection, Investigation and Analysis, Response and Mitigation, Tuning and Optimization, Compliance Monitoring
Investigate security breaches and other cybersecurity incidents
Develop an audit to determine whether information systems are protected, controlled, and provide value to the organization
Conduct audit follow-up to evaluate whether risks have been sufficiently addressed
Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs
Communicate audit progress, findings, results, and recommendations to stakeholders
Document security breaches and assess the damage they cause
Work with the security team to perform tests and uncover network vulnerabilities
Fix detected vulnerabilities to maintain a high-security standard
Develop cabinet-wide best practices for IT security
Help colleagues install security software and understand information security management
Research security enhancements and make recommendations to management
Stay up to date on information technology trends and security standards
Maintain and update relevant system and process documentation and develop ad-hoc reports as needed
Assist in the development of security tool requirements, trials, and evaluations, as well as security operations procedures and processes
Provide off-hours support on an infrequent, but as-needed basis
Work trouble tickets in the ticketing system
Conduct meetings and work closely with system owners and departmental leads in all business areas where ePHI and other confidential system data is found
Assist with continuous monitoring of activities documenting within the eGRC tool whether security and other related activities are consistently performed
Perform various support activities for other projects including obtaining information and documentation to demonstrate policies, procedures, and operational processes that adhere to various regulations, policies, standards, and other compliance requirements
Collaborate with cross-agency staff to disseminate and engage appropriate Security Teams for any new projects, tasks, and/or initiatives
Lead and coordinate any special projects and/or tasks as directed by management
Prepare reports for management
Ability to set the tone for the organization and motivate management and team
Understanding of information security regulations, including the Federal Information Security Management Act (FISMA), Federal Risk and Authorization Management Program (FedRAMP), ISO 27001, COBIT, NIST, and ITIL
Maintaining security, assessing and evaluating security, and doing security incident forensic work
Knowledge of vendors and their products including: Experience with Government agencies, particularly the Department of Defense (DoD) on information security matters
Experience with Government Classified systems and the associated security requirements
Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; and participating in professional organizations
Proficiency in Microsoft Office Suite (Word, Excel, Outlook)
Innovative and creative mindset
Basic network security knowledge (general principles)
Excellent documentation and communication skills
Ability to organize tasks into milestones and successfully execute to project completion
Can work independently with little direct supervision
General cyber-security understanding
Preferred
Bachelor's degree in Computer Science, Software Engineering, or a related field (equivalent professional experience may be considered for substitution for the required degree on an exception basis)
Candidates With One or More of the Following Certifications is a Plus: Offensive Security Certified Professional (OSCP), Offensive Security Defensive Analysis (OSDA), Cybersecurity Analyst (CySA+), CompTIA Security+, CompTIA Advanced Security Practitioner (CASP+), CompTIA Pen Test+, Certified Network Defender (CND), GIAC Security Essentials (GSEC), System Security Certified Practitioner (SSCP)
Benefits
Health benefits
Paid time off
401(k) plan
Company
Quantam
Quantam is The Public Sector Company.
Founded in 1997
1001-5000 employees
H1B Sponsorship
Quantam has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (1)
2024 (1)
2023 (13)
2022 (2)
2021 (2)
2020 (1)
Funding
Current Stage
Late StageLeadership Team
Richard Van Staten
Chief Executive Officer/Owner
Company data provided by crunchbase