Security Analyst/Information Systems Security Officer (ISSO)

About the Company

Dynanet Corporation Overview:

• Dynanet started with a focus on IT infrastructure and operations, helping organizations enhance their networks and overcome the limitations of 1990s technology.
• From strengthening communication channels to introducing innovative ways to collaborate and share information, Dynanet played a crucial role in shaping the early stages of digital transformation.
• The company’s efforts helped organizations build the very fabric of connectivity that now powers our modern world.
• Over the last three decades, Dynanet has grown into a trusted partner for organizations looking to innovate boldly and transform seamlessly.
• While technology continues to evolve and unlock new opportunities, for nearly 30 years, Dynanet remains committed to delivering solutions that drive lasting change for its customers.
• Through agility, foresight, and an unwavering dedication to excellence, Dynanet continues to empower organizations to thrive in a rapidly changing digital landscape.
• Our story is more than just a story of technology, it is a story of vision, growth, and transformation that has shaped the past and continues to pave the way for the future.

About the Role

• The Security Analyst/Information Systems Security Officer (ISSO) oversees compliance with the customers information security guidelines, requirements, and the Federal Government's Risk Management Framework.
• This role requires expertise in security tools and their orchestration within the environment, effective troubleshooting and prioritization of needs and requirements, and management of security-related activities required for development and operations.
• The ISSO will ensure information systems maintain appropriate security posture and compliance with all applicable regulations and standards.

Responsibilities

• Oversee compliance with the customers information security guidelines and requirements.
• Ensure adherence to the Federal Government's Risk Management Framework.
• Manage security tools and their orchestration within the environment.
• Effectively troubleshoot security issues and prioritize needs and requirements.
• Manage security-related activities for development and operations.
• Discuss and resolve computer data access requirements with users.
• Address security violations and recommend changes to programs as needed.
• Analyze and modify plans, procedures, and measures related to enterprise information security.
• Identify core and essential underlying reasons, principles, or facts of security data.
• Oversee events and processes related to information systems following laws, standards, and regulations.
• Coordinate execution of computer security plans with personnel and outside vendors.
• Analyze and implement control access protocols for data files.
• Enforce adequate security controls across systems.
• Evaluate risk levels of data and information processing systems.
• Test information processing systems to ensure authenticity and relevance.
• Analyze security logs and take appropriate remediation actions.
• Conduct security assessments and audits.
• Document security incidents and maintain incident response procedures.

Requirements

• Deep knowledge of information security principles and best practices.
• Experience with computer network penetration testing and techniques.
• Strong understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts.
• Knowledge of the Federal Government's Risk Management Framework.
• Experience with the customers information security guidelines.
• Proficiency in security log analysis and interpretation.
• Strong analytical and troubleshooting abilities.
• Experience managing security tools and technologies.
• Understanding of access control protocols and implementations.
• Knowledge of risk assessment methodologies.
• Certified Information Systems Security Professional (CISSP) certification required.
• Ability to communicate complex security concepts to diverse audiences.
• Possess strong written and verbal communication skills.
• Highly organized with an ability to prioritize, balance, and effectively advance multiple competing priorities in a high-volume, fast-paced environment.
• Ability to interact in a professional and collaborative manner with fellow Dynanet Teammates and the clients, and business partners that we work with.
• Ability and desire to challenge and educate yourself to support and advance IT services delivery in the Federal agencies we serve.
• Excellent judgment and creative problem-solving skills.
• Respond to team member and client requests via email, MS teams, or other communication means during core business hours.
• Active listening skills to understand clients' needs, and collaboration skills to work with other developers and designers.

Education/Experience Requirements

• Bachelor's degree in Computer Science or related field required.
• Certified Information Systems Security Professional (CISSP) certification required.
• Proven experience in information security or related fields.
• Demonstrated knowledge of computer network security and penetration testing.

Preferred Qualifications (Nice to Have)

• Deep knowledge of information security principles and best practices.
• Experience with computer network penetration testing and techniques.
• Strong understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts.
• Knowledge of the Federal Government's Risk Management Framework.
• Experience with the customers information security guidelines.
• Proficiency in security log analysis and interpretation.
• Strong analytical and troubleshooting abilities.
• Experience managing security tools and technologies.
• Understanding of access control protocols and implementations.
• Knowledge of risk assessment methodologies.
• Certified Information Systems Security Professional (CISSP) certification required.
• Ability to communicate complex security concepts to diverse audiences.

Benefits

• Industry Competitive Compensation.
• Medical and Dental Insurance.
• Paid Time Off/Holidays.
• 401(k) Retirement Plans with Matching.
• Remote Work.
• Paid Training.
• Employee Referral Program.
• Employee Development Program.

Location

• Remote

Category

Software Development