FedTec

Job Overview

We are seeking a Cybersecurity Analyst responsible for implementing, monitoring, and managing security tools and processes across infrastructure, identity, applications, and data environments. The ideal candidate will work to protect the organization’s assets by identifying vulnerabilities, monitoring threats, and ensuring security compliance across on-premise and cloud environments.

Key Responsibilities:

• Monitor, analyze, and respond to security alerts and incidents across network, endpoints, cloud, and application environments.
• Implement and manage identity and access management (IAM) controls, including MFA, RBAC, and privileged access management.
• Maintain and monitor application security processes, including secure code reviews and vulnerability scanning.
• Support infrastructure security through patch management, configuration baselines, and firewall/IDS/IPS monitoring.
• Oversee data security initiatives, including encryption, DLP policies, and data classification efforts.
• Perform regular vulnerability assessments and remediation tracking using tools such as Nessus, Qualys, or similar.
• Assist in developing, maintaining, and enforcing security policies and procedures.
• Collaborate with IT and application teams to integrate security into the development and operational lifecycle (DevSecOps).
• Assist in preparing security reports and metrics for compliance and executive dashboards.
• Stay current on emerging threats, vulnerabilities, and technologies to recommend proactive security measures.

Required Qualifications:

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or equivalent work experience.
• 2–4 years of experience in cybersecurity operations or analysis roles.
• Experience with SIEM tools (Splunk, Sentinel, etc.) for monitoring and incident investigation.
• Familiarity with IAM tools and concepts, including MFA, SSO, and lifecycle management.
• Knowledge of application security principles and vulnerability management practices.
• Experience working with security tools for endpoint, network, and cloud environments.
• Understanding of encryption, data protection, and regulatory compliance requirements.
• Strong analytical and troubleshooting skills.
• Effective verbal and written communication skills.

Preferred Qualifications:

• Security certifications such as Security+, CySA+, SSCP, or equivalent.
• Exposure to cloud platforms (AWS, Azure, GCP) and their native security services.
• Experience with scripting (Python, PowerShell) for automating security tasks.

Familiarity with frameworks like NIST, CIS, or ISO 27001

Job Types: Part-time, Contract

Pay: $89,307.86 - $107,553.55 per year

Work Location: Hybrid remote in Laurel, MD 20707