Role Description : The Senior Cyber Security Analyst is responsible for the administration of deployed cyber control technologies. The role is part of the Security Operation Center (SOC) which monitors, analyzes, detects, and responds to cyber incidents on both traditional IT and Operational Technology (OT) networks. The role coordinates with both the Information Technology (IT) team and Operational Team (OT) to ensure individuals have the appropriate access to DC Water Resources, monitor vulnerabilities and threats, collects intelligence, assists in disaster recovery operations, and in updating cyber controls with intelligence obtained from third-party providers. This role is also responsible for the identification of IT assets supporting DC Water's business processes.
Responsibilities
Essential Duties & Responsibilities:
Supports the Director, Cyber Security Services, in ensuring DC Water's preparedness to address cyber risks.
Maintains user access controls for computing resources.
Monitors SOC operations to detect, analyze, and respond to cyber incidents, including intrusion attempts, malware infections, and other security threats, across IT and OT networks.
Analyzes security events and incidents within the DC Water Computing and Network environment, investigating root causes, assessing impact, and coordinate and document response actions to mitigate risks and minimize operational disruptions.
Tests, implements, deploys, maintains, reviews, and administers the infrastructure software required to effectively manage the DC Water network defenses and resources.
Monitors DC Water's network to actively remediate unauthorized activities.
Assists in disaster recovery operations, using preparation, identification, mitigation, remediation, and recovery approaches, as needed to maximize business resilience and information security.
Collaborate with the Director, Cyber Security Services, to incorporate threat intelligence obtained from third-party providers into Cyber Controls, enhancing DC Water's ability to proactively identify and mitigate emerging threats.
Conducts and reports outcomes of vulnerability and penetration testing on IT and OT systems, identifying and prioritizing vulnerabilities for remediation to reduce the risk of exploitation by malicious actors.
Uses advanced threat hunting techniques and tools to identify and neutralize threats before they escalate.
Documents security incidents, investigations, and response activities in accordance with established procedures, ensuring accurate and thorough reporting for compliance, audit, and legal purposes.
Determines deviations from acceptable configuration, vendor, or IT Policy.
Generates security metrics, dashboards, and reports to provide visibility into key cybersecurity performance indicators, trends, and emerging risks for the senior executive team.
Oversee the receipt and distribution of IT assets owned, leased, or subleased by DC Water to IT and OT, including creation and maintenance of supporting documentation to manage the acquisition and disposal of IT assets.
Continuously assesses and improves DC Water's cybersecurity capabilities, processes, and procedures, leveraging lessons learned, industry best practices, and emerging technologies to enhance overall cyber resilience and readiness.
Key Working Relationships: Works with the Information Technology Solution Center (ITSC) and Infrastructure teams to enable the delivery and disposal of computing and network assets. Maintains and manages Role-Based Access to the Information Technology Asset Management Database. Partners with internal stakeholders to understand and logically document current and future processes.
Skills & Qualifications
The qualifications listed below are representative of the knowledge, skill, and ability necessary for an individual to perform each essential responsibility satisfactorily. Reasonable amounts of training are
provided.
Required Experience:
Minimum 5 years of experience in Information Systems.
Strong understanding of the key functions of cybersecurity, cyber risk mitigation strategies, and event and incident flows within a Security Event and Incident (SEIM) system.
Ability to define the problem, generate and select alternatives, and implement solutions.
Intermediate understanding of MITRE and Adversarial Tactics, Techniques and Common Knowledge (Telecommunication&CK) framework for Information Technology and Operational Technology Networks.
Strong understanding of one or more computer programming and/or scripting languages (PowerShell, KQL, Python, etc.).
Intermediate understanding of network ports, protocols, and services, host and network-based Intrusion Prevention Systems (IPS).
Advanced understanding of system and network logging events.
Familiarity with the National Institute of Standards and Technology NIST 800-53 Control Families and the NIST Cyber Incident Response steps.22nd Century Technologies, Inc., is one of the fastest growing IT Service Integrator and Workforce Solution companies in the United States. Founded in 1997, 22nd Century Technologies is a Certified National Minority Business Enterprise with 6,000+ people including 600+ Cyber SMEs nationwide supporting our customers in all 50 states, Canada, and Mexico. With HQs in Somerset, NJ and Mclean, VA, 22nd Century has 14 offices throughout the United States. As part of our unrelenting focus on quality and compliance, 22nd Century Technologies’ delivery is based on Certified Matured Processes including CMMI L3 Dev & SVC, ISO 20000, ISO 27001, and ISO 9001 quality processes. With a strong focus on the public sector, 22nd Century currently holds government contracts with 14 out of 15 Federal Executive agencies including DoD, 37 other Federal agencies, 50 States, 115+ Local agencies, and 37 School Districts. In the last three years, we have expanded our services to Fortune 500 and other commercial clients and currently support 80+ commercial clients.
Recognized among “Best Company to Work For” by Forbes, 22nd Century Technologies, Inc., consistently exceeds our clients’ expectations by focusing on their absolute satisfaction with jobs while keeping our employees motivated.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.