System Security Specialist

Radiant Digital delivers technology consulting and business solutions for commercial and government clients.

Our flexible delivery model allows us to provide end-to-end solution delivery, single project execution, and, or strategic resources.

CMMI Maturity Level III and ISO 9001 – 2015 certified.

Contractor staff assigned to this agreement must possess the following minimum qualifications and experience:

1. 6 years of combined IT and security work experience with infrastructure/network and multiplatform environments including on-premises and cloud environments across IaaS, PaaS, SaaS, VM, bare metal, and other common IT platforms.
2. 4 years of experience in operations and maintenance of endpoint-related security products (AV, EDR, XDR, drive encryption).
3. 2 years of experience in operations and maintenance of Azure Active Directory security (events, incidents, login events, MFA).
4. 2 years of experience in operations and maintenance of Office 365 Security and Compliance (one or all of Exchange online, SharePoint, Teams, OneDrive, Purview).
5. 2 years of experience working in IT security identifying and assessing risks, developing risk management strategies, and implementing risk mitigation measures.
6. 2 years of experience working in IT security operations in all stages of the Identify, Protect, Detect, Respond, and Recover lifecycle.
7. 2 years of experience analyzing and investigating security alerts, events, and logs from various security tools and systems to determine the cause and extent of security breaches.
8. 2 years of experience designing, implementing, and maintaining management systems to track progress of complex IT projects at an enterprise scale, to completion.
9. 2 years of experience working with automated IT performance reporting (any tools).
10. 2 years of experience applying outcomes of incident analysis, risk management, and performance reporting to enable Continual Service Improvement (CSI).

SERVICE TASKS: Contractor will perform the following tasks in the time and manner specified, at the direction of the Department:

1. Technical Analyst for IT Security Continual Service Improvement:
   1. Perform activities within the Plan, Do, Check, Act lifecycle related to the effectiveness of security controls, as directed by the Department.
   2. Service Reviews: maintain inventories of services and infrastructure utilized by the Security Administration Team and review their applicability to accomplishing team goals, as directed by the Department.
   3. Process Evaluations: in coordination with the IT risk management process, evaluate the effectiveness of services by identifying and analyzing metrics and benchmarks in the interest of the Security Administration Team, as directed by the Department.
   4. Initiatives: define initiatives to improve services and processes based on reviews and evaluations, as directed by the Department.
   5. Monitoring: track initiative effectiveness and assist in troubleshooting and refining changes to security operations, as directed by the Department.
2. Security Analyst for Security Administration Team:
   1. Analyze large amounts of data to identify patterns and potential risks. Use data to make informed decisions and develop mitigation strategies, as directed by the Department.
   2. Perform information security and privacy incident response, as directed by the Department.
   3. Communicate complex technical information to technical and non-technical stakeholders while demonstrating strong written and verbal communication skills, as directed by the Department.
   4. Provide technical expertise to users, management, vendors, and peers for issues involving other Department business offices and vendors, as directed by the Department.
   5. Support and drive continuous service improvement efforts within the risk management process, as directed by the Department.
   6. DATA SECURITY AND CONFIDENTIALITY TASK: The Contractor, its employees, subcontractors, and agents must comply at all times with all Department data security procedures and policies in the performance of this scope of work as specified in the Data Security and Confidentiality document attached to the purchase order.

• Only list what’s absolutely necessary here. Try to keep it to five one-line bullets or less.

• Please list your harder requirements and "nice to haves" here. This section should be keyword-rich - i.e. please include the keywords you anticipate that job seekers will use to search for jobs on job boards.

• Please list anything that makes working for your company unique or special - i.e. Can people work from home, do you offer special benefits (company car, expense account, stock options, etc).