RICHMOND, VA, US, 23219
Performs cyber security and cyber risk work, working closely with the Cyber Security Operations Center (CSOC) and other groups focused on the monitoring, analysis, and investigation of cyber security threats and events, both internal and external, that could potentially impact the security posture of the organization. Facilitates client requests to ensure critical business tasks continue uninterrupted. Performs assessments of cyber security risk and vulnerabilities, maintains security policies, and helps facilitate cyber security awareness throughout the organization. Provides updates and detailed information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information and systems. May work with other staff to assess the cyber security risk on the organization's network systems, applications, and solutions based upon user requests and business needs. Applies a basic understanding of IT technologies and develops an evolving knowledge of mitigation options and risk frameworks to assess the current threat landscape and improve security. May consult with subject matter experts and business representatives, as needed, to provide input on cyber security decisions, the establishment of cyber security policies, and to foster security awareness. May serve as a participant in the cyber security incident response program. Works in a team environment to mitigate cyber security threats, improve processes and security posture. May conduct cyber threat research into threat actors and campaigns, as well as technological advances to combat unauthorized access. May assist with root cause investigation and proper mitigation of cyber security events.
Must possess 1-2 years of work experience in cyber security or a cyber risk related role. A bachelor’s degree with a focus on cyber security is preferred. The ideal candidate will demonstrate a basic understanding of cyber security and data protection principles and practices. Experience writing articles, developing videos or other content, or user instruction and education desirable. Other knowledge, skills, abilities and experience include: Demonstrated organization and planning skills. Demonstrates a questioning attitude, with basic analytical and investigative skills. Demonstrates verbal and written communication skills, with the ability to interact effectively with others. A willingness to learn new skills and methodologies, conduct research, and learn to assess cybersecurity risks. Ability to work cooperatively in a teamed environment. Highly motivated, with the ability to work effectively under basic supervision in a fast-paced environment. Previous work experience or exposure to the security aspects governing software, communications, and network protocols is a plus. The company is actively seeking United States military veterans and service members who meet the qualifications outlined above. Military service members and veterans with ranks from E3-E5, W1-W2, or O1-O3, plus appropriate equivalent combination of education and years of experience are encouraged to apply.