Mid-level IT Security Specialists

ITAC is working with a great client in Silver Spring to help them search for a Mid-level IT Security Specialist. As an IT Security Specialist, you will be an integral part of the backbone of the company, protecting computer networks from cyber-attacks, creating cybersecurity policies and practices for the entire organization, and documenting security breaches. IT Security Specialist are ultimately responsible for ensuring that the company's digital assets are protected from unauthorized access.
  
*C2C is not an option with this job opening and all applicants should be able to work for any US Employer without sponsorship. Sponsorship is not provided, and this person will not need to require sponsorship in the future*
 
What you’ll be doing (duties of this position):

• Secure online and on-premises infrastructures, weeding through metrics and data to filter out suspicious activity, and finding/ mitigating risks before breaches occur.
• Lead efforts to counter any cybersecurity attacks, conduct internal phishing simulations, and monitor/inspect user-reported emails.
• Generate reports for IT administrators and business managers to evaluate the efficacy of the security policies in place.
• Make recommendations for necessary changes for a more secure network.
• Create training programs for employees on proper security protocols and research and recommend training modules.
• Monitor security access, conduct security assessments through vulnerability testing and risk analysis, and perform internal and external security audits.
• Analyzing security breaches to identify the root cause.
• Continuously updating the company’s incident response and disaster recovery plans
• Verifying the security of outside vendors and collaborating with them to meet security requirements.
• Support security teams, incident response activities, and process improvement as needed.
• Respond to digital forensics requests and data collection queries.

What you’ll need to be considered (requirements):

• Bachelor's degree in a relevant field and 5-8 years in a security role
• Experience in IT security, with a focus on designing, implementing, and managing security controls and solutions.
• Experience with security tools and technologies, such as SIEM, IDS/IPS, endpoint protection, and encryption.
• Strong understanding of IT security frameworks, such as NIST, ISO/IEC 27001, and CIS Controls.
• Experience and understanding of risk management principles.
• Preferred Advanced certificate in cyber security (CISSP, CISM, CISA)

INDIT