Experience Inc. Jobs

Job Information

Criterion Systems Senior Cyber Security Analyst in Alexandria, Virginia

At Criterion Systems, Inc., we developed a different kind of business—a company whose real value is a reputation for excellence built upon the collective

skills, talents, perspectives, and backgrounds of its people. By accepting a position with Criterion Systems, you will join a group of professionals with a collaborative mindset where we share ideas and foster professional development to accomplish our goals. In addition to our great culture, we also offer competitive compensation and benefit packages, company-sponsored team building events, and advancement opportunities.

Criterion Systems’ has a position open for aSenior Cyber Security Analystbased at our Government customer’s location in Alexandria, Virginia.


This position will be a member of the Cyber Security Operations Team with the responsibility of performing as a Continuous Diagnostics and Mitigation (CDM) Subject Matter Expert (SME).This Senior Cyber Security Analyst position requires providing superior technical knowledge and infrastructure experience to successfully deliver the availability, security, and operations of a varied and complex heterogeneous network. Knowledge of high-level functional systems of analysis, design, integration, documentation and implementation solutions is required. You will assist management and peers with analysis and evaluation of new and existing products, preparation of recommendations for system improvements, optimization, development, and maintenance.

·Perform Information Security Continuous Monitoring and Department of Homeland Security (DHS) Continuous Diagnostics Mitigation (CDM) governance and integration

·Implement future phases of the CDM Tool Suite and collaborate with the DHS CDM vendor

·Improve network and system security – Maintain a layered defense in depth architecture and comply with federal security initiatives, e.g. Federal Information Security Modernization Act (FISMA), Office of Management and Budget (OMB) memos, National Institute of Standards and Technology (NIST) Cyber Security Framework and DHS CDM

·Review and perform evaluation of new, existing, and proposed products

·Manage and maintain phishing campaigns

·Familiarity and experience using the customer’s tools, technologies and products:

*FireEye AX, FireEye HX, FireEye NX, FireEye PX, Cylance, Security Onion, EnCase, CyberArk, ForeScout CounterACT, Splunk Enterprise, RSA Archer, ServiceNow, Tenable Security Center (SC), McAfee Endpoint Protection, McAfee ePolicy Orchestrator (ePO), McAfee VirusScan Enterprise (VSE), McAfee Host Intrusion Prevention System (HIPS)

*Amazon Web Services (AWS) and other cloud tools, technologies and products: AWS Configuration Manager, AWS GuardDuty, AWS Secrets Manager, AWS Parameter Store, Web Application Firewalls, AWS CloudWatch, Twistlock, Secrets, Key Management Services (KMS)

·Information Security Controls and Continuous Monitoring

·Perform tasks for continuous monitoring of system configuration components

·Conduct security impact analyses of changes to the system

·Support ongoing assessments of security controls and provide status reports

·Perform scans and assessments of assets connected to the customer’s networks and develop/deliver reports to the security management team

·Take immediate and appropriate counter measures upon knowledge or discovery of threats

·Perform as a subject matter expert regarding all Federal Information Security Management Act (FISMA) topics, including attending briefings and meetings

·Validate the quality of system artifacts

·Collect and analyze intelligence regarding cyber threats and vulnerabilities; direct and coordinate the response to such threats and vulnerabilities using the latest methods and tools available

·Identify, test, and promulgating security patches

·Develop the vulnerability and incident response status portion of the Daily Tag-Up Report

·Manage the tools used to provide continuous monitoring of FISMA security control set CDM Tools

·Support of Inspector General (IG) Monitoring

·Modernize the customer’s established processes and procedures

·Support the customer in achieving a risk based and cost effective cyber security program compliant with NIST Cyber Security Framework areas

·Identify, Protect, Detect, Respond, and Recover

·Identify, develop and support the NIST procedures and artifacts for annual IG metrics

·Knowledge of Federal Risk and Authorization Management Program (FedRAMP)


·US Citizen

·Bachelor’s Degree or 4 years of experience to be used in lieu of the degree

·7 Years of Experience with a mix of the duties from above

·Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM) or SANS GIAC Security Essentials (GSEC)

·Eligible and ability to obtain a NACI/Public Trust clearance


·Certified Ethical Hacker

·CompTIA Security

  • Criterion Systems is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other

protected class.