Information Security Analyst, Junior

This job opportunity is part of an RFP process; candidates are invited to submit their resumes detailing relevant experience. Location: Bethesda, MD (Hybrid) LCG is a minority-owned technology consulting firm that has been a trusted partner to more than 40 federal agencies, including 21 of the 27 Institutes and Centers (ICs) at the National Institutes of Health (NIH). For over 25 years, LCG has brought digitization and innovation to the Health and Human Services (HHS) and the NIH ecosystems. We support IT organizations by bringing precision technology and operation models that achieve mission capabilities and performance success. Job Title - Information Security Analyst, Junior Job Summary - As an Information Security Analyst, Junior you will be responsible for supporting the security of the organization's cloud infrastructure, systems, and information assets. You will help protect against unauthorized access, modification, or destruction of data. Your work will involve tasks related to cloud services, particularly ensuring compliance with security standards, policies, and best practices. In this entry-level role, you will work closely with team members and end users to meet the security needs of individual departments and support the organization's broader cloud architecture goals. Key Responsibilities Implement security measures for cloud environments to protect systems and data from unauthorized access, breaches, or destruction. Assist in the development and maintenance of security documentation, ensuring compliance with federal regulations (NIST, FIPS), and NIH standards. Perform security assessments and vulnerability scans for cloud-based services and help remediate any identified vulnerabilities. Collaborate with the Cloud Services team to ensure security controls are in place and maintained across all environments. Assist in the Assessment and Authorization (A&A) process for cloud services, supporting the creation and maintenance of Authority to Operate (ATO) documentation. Help develop and enforce security policies, standards, and procedures, monitoring compliance across departments. Provide security-related input on the cloud architecture to ensure alignment with NIH's strategic goals and industry best practices. Support the security operations team in continuous monitoring, detection, and response to potential cloud security incidents. Work with end-users to gather security requirements, addressing the specific needs of individual departments. Support the automation of security tasks, including integrating security configurations and compliance checks through GitHub and Azure AD. Qualifications Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field, or equivalent work experience. 0-2 years of related experience in information security, cybersecurity, or cloud security. Basic knowledge of cloud environments (e.g., AWS, Azure, Google Cloud), cloud security practices, and federal regulations. Familiarity with NIST, FIPS, and other government-wide security policies and standards. Strong communication and collaboration skills, with the ability to work with cross-functional teams. Detail-oriented and willing to learn, with an interest in cloud security operations. Experience with cloud service providers (AWS, Azure, GCP) and related security operations. Basic scripting or automation experience (e.g., GitHub, GitHub Actions, PowerShell, or Python). Certifications such as CompTIA Security+, AWS Certified Cloud Practitioner, or similar entry-level security/cloud certifications. Compensation and Benefits The projected compensation range for this position is $75,600 to $98,000 per year benchmarked in the Washington, D.C. metropolitan area. The target salary is $83,000. The salary range provided is a good faith estimate representative of all experience levels. Salary at LCG is determined by various factors, including but not limited to role, location, the combination of education/training, knowledge, skills, competencies, certifications, and work experience. LCG offers a competitive, comprehensive benefits package which includes health insurance options (medical, dental, vision), life and disability insurance, retirement plan contributions, as well as paid leave, federal holidays, professional development, and lifestyle benefits. Devoted to Fair and Inclusive Practices All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. If you are interested in applying for employment with LCG and need special assistance or an accommodation to apply for a posted position, contact our Human Resources department by email at . Securing Your Data Beware of fraudulent job offers using LCG's name. LCG will never request payment-related details or advancement of money during the application process. Legitimate communication will only come from or emails, not free commercial services like Gmail or WhatsApp. If you receive suspicious emails asking for payment or personal information, contact us immediately at . If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the .

Created: 2024-11-05