Senior Information Security Analyst
Saxon Global
Job Title
Locals or semi-local preferred but, will consider those willing to relocate from elsewhere in the US as a very last resort.
Qualifications
Required:
- 5+ years of relevant information security experience (or 3+ years in IT systems administration with 2 years security responsibilities).
- Cloud security experience with GCP or Azure and sound knowledge of Cloud Security framework.
- Expertise in incident response, system monitoring/analysis, and risk assessments aligned with compliance and privacy laws.
- Experience with compliance requirements: HITRUST, PCI, NIST, HIPAA, SOC2.
- Experience across multiple platforms: Windows, Linux/Unix, macOS; networks and endpoints.
- Experience with vulnerability assessment and penetration testing engagements.
- Experience with change management and project management.
- Excellent technical writing and presentation skills; ability to translate technical risk to business impact.
Preferred:
- CCSP preferred; other certs: AZ-500, AWS Security Specialty, GCP Professional Cloud Security Engineer.
- Experience securing Azure, AWS, GCP in enterprise/hybrid environments.
- Familiarity with NIST CSF, ISO 27001, CIS Benchmarks, MITRE ATT&CK.
- Automation, scripting experience a plus.
Responsibilities
Cloud & Enterprise Security (SME)
- Serve as SME on security fundamentals, techniques, and technologies across Azure, AWS, GCP, and on-prem environments.
- Guide cloud security architecture: IAM, encryption/key management, network controls, data protection, workload hardening.
- Implement process improvements aligned to security frameworks (NIST CSF/800-53, ISO 27001) and business needs; optimize technology to improve customer experience.
Security Operations & Incident Response
- Implement and monitor controls for unusual and suspicious activity across endpoints, networks, and cloud platforms.
- Perform advanced monitoring, data/log analysis, threat hunting, and forensic investigations; contribute to SOC/IR workflows.
- Plan, contribute to, and participate in incident plan exercises and tabletop scenarios.
Governance, Risk & Compliance (GRC)
- Draft or revise local policies, standards, guidelines, and procedures to supplement enterprise frameworks; identify and remediate gaps based upon NIST standards.
- Interface with internal/external auditors and examiners; maintain vendor management standards, questionnaires, and regulatory documentation (HITRUST, PCI, NIST, HIPAA, SOC2).
- Review contracts and provide security guidance; support project scoping, costing, and cost–benefit analyses.
Stakeholder Engagement & Communication
- Act as a liaison for the security team; clearly communicate business risk as it relates to information security.
- Create technical documentation (reports, white papers, technical notes, implementation/configuration guides).
- Use visual aids to convey complex topics to large, diverse audiences; communicate clearly in high‑pressure, high‑visibility situations.
Continuous Improvement
- Recommend new security solutions and improvements that do not impede innovation.
- Stay current with the evolving threat landscape; consistently learn and grow to remain a step ahead of attackers.
Technical Expertise
Cloud Security (Azure, AWS, GCP)
- GCP: IAM, Security Command Center, Cloud Audit Logs, VPC Service Controls, CMEK/KMS, Cloud Armor, Workload Identity; container security (GKE).
- Azure: Defender for Cloud, Microsoft Sentinel, Entra ID (Azure AD), Conditional Access, Key Vault, NSGs/Azure Firewall, storage encryption, Defender for Endpoint integration.
- AWS: IAM roles/policies, Security Hub, GuardDuty, KMS, CloudTrail/CloudWatch, VPC security controls, AWS WAF, Secrets Manager. (experience with AWS is not required)
Additional Technologies
- Operating Systems: Linux, Windows Server, Windows Desktop; hardening, patching, CIS Benchmarks.
- Forensics & eDiscovery: Symantec, Purview, Proofpoint; email/file discovery; incident response.
- Network & Perimeter: Palo Alto firewalls, URL filtering, DNS blackhole/geo-filtering, WildFire; F5 AWAF.
- SIEM & Logging: MS Sentinel, MDE, Elastic; Endpoint management/log forwarding. Microsoft Data Lake, CRIBL
- Vulnerability & AppSec: Qualys, NexusIQ; OWASP-aligned testing and remediation.
- Endpoint: Microsoft Defender, Microsoft ATP/Defender for Endpoint.
- Identity & MFA: Okta, Microsoft (Entra ID MFA).
- Core Services: DNS zone management; network micro-segmentation; zero trust-aligned controls.
- Secure Productivity: Securing Microsoft 365 (Exchange Online, SharePoint/OneDrive, Teams, Purview).
Vacancy posted 4 days ago
Similar jobs that could be interesting for youBased on the Senior Information Security Analyst in Washington DC vacancy
- ...industry trailblazers and global private-sector and public-sector clients to help solve national security problems. Job Description Research, verify and document information security controls using the Federal Certification and Accreditation (C&A) processes. Propose,...Senior
$102.06k - $158.18k
...Until Filled Employee Type: NEASO NEA Staff Organization, OO114 Information Technology Services Department (ITS) Position Type: Regular... ...responsibilities include assisting in the development and implementation of security standards, procedures and guidelines for multiple platforms...SeniorNight shift$147k - $164k
...Senior Information Security Analyst Position Title: Senior Information Security Analyst (Senior Level) Position Type: Full Time Employee Location: Arlington, VA (within 50 miles of ARNG Readiness Center, TARC) Clearance Requirement: Top Secret / SCI Eligible Salary Range...SeniorFull timeContract work$120k - $145k
Cape Fox Shared Services is seeking an experienced Information Security Analyst Subject Matter Expert (SME) located in Washington, D.C. The salary range for this position is between $120,000 and $145,000. The role involves performing various security analysis activities...SeniorFull time- iQuasar, LLC is seeking an Information Security Analyst IV to work on a contract basis primarily focused on security protocols and cryptographic validation. The ideal candidate must possess a BS degree and have 2-4 years of relevant experience. This position requires a...SeniorContract work
- People, Technology & Processes seeks an Information Security Analyst III (Mid) to collect, validate, and analyze complex data to inform Navy operations... ...to deliver timely assessments and briefings to senior leadership. Collaborating with subject matter experts and...Senior
- ...critical cybersecurity challenges. Ideal candidates should have an active Top Secret clearance, 5-7 years of IT security experience, and a strong background in information assurance tools. Responsibilities include researching security controls, proposing security policies, and...Senior
- ...services. When it comes to excellence, we deliver. Learn more about our employer brand at makpar.com/careers. The Senior Information Security Analyst will perform the core cybersecurity assessment and compliance work for IRS Safeguards. The role supports computer...SeniorStart working todayFlexible hours
- ...iQuasar is seeking to fill an Information Security Analyst IV position. At iQuasar, we strive to provide the next generation of cutting-edge technologies. Our growth means exciting career opportunities for talented professionals in engineering, software development, and...Contract work
- ...Information Security Analyst Saliense is a growing Management and Technology Consulting Solutions provider based out of Mclean, VA. We work to solve our client's toughest challenges within the Defense, Civilian, Financial, and Healthcare industries. Our diverse employees...Local area2 days per week
- ...would love to talk with you regarding the next step in your career. Come join our team! Zantech is looking for a talented Information Security Analyst - SME to provide specialized cybersecurity expertise supporting risk management operations, conduct security assessments...Contract work
- ...organization’s networks for security breaches and investigate a violation... ..., to protect sensitive information. Prepare reports that document... ...testing, which is when analysts simulate attacks to look for... ...enhancements to management or senior IT staff. Help computer users...
- ...Location: Washington, DC Overtime Exempt: Yes Reports To: ARMADA HQ Security Clearance Required: Secret Clearance Conditional: Contingent upon award Duties & Responsibilities The Information Security Analyst provides expert‑level support for information security policy...Full timeFor contractorsWork at officeLocal areaRelocation
$117.2k - $176.7k
...responsibility with minimal guidance from senior team members. You innovate, challenge... ...advising business partners on adopting new security requirements. This candidate must be a U... ...business or security stakeholders on information security requirements and applicability...- ...TLA is seeking a detail-oriented and proactive Information System Security Analyst to join our IT department. This critical role involves safeguarding... ...and recommend enhancements to management and senior IT staff. Training and Awareness: Provide security awareness...
$120k - $145k
Cape Fox Federal Integrators is seeking an experienced Information Security Analyst Subject Matter Expert (SME). The salary range for this position has been established at: $120,000.00 - $145,000.00 The above salary range represents the company's good faith and reasonable...Full time- A technology solutions provider in Washington, DC is seeking an Information System Security Analyst to safeguard sensitive data and computer systems. Responsibilities include monitoring network activity for breaches, conducting vulnerability assessments, and ensuring compliance...
- A technology solutions provider in Arlington, VA is seeking an experienced Information Security Analyst. This hybrid role requires an active Secret security clearance and involves safeguarding information systems and network security. The ideal candidate has significant...
- Title: Information Security Analyst III (Mid)Clearance Type: NoneScope: Ability to leverage data analysis techniques, intelligence databases, and... ...information to develop assessments, reports, and briefings for senior leadership and operational units.Responsibilities (...
$105k - $116k
Information Security Analyst District Partners has been engaged by a well‑established trade association to identify an Information Security Analyst who can help strengthen security operations and support a Microsoft Azure‑based technology environment. The ideal candidate...Permanent employmentFull timeRemote work- Position Overview Information Security Analyst IV (Contract), Columbia, Maryland. Position requires US Citizen or Green Card holder. Location: Columbia, Maryland Position Type: Contract Work Authorization: US Citizen or Green Card Holder Compensation: Competitive with...Contract work
- Artech Information Systems is the #12 Largest IT Staffing Company in the U.S. and an employer of choice for over 7,000 consultants. We recruit... ..., proven expertise and insightful market intelligence has secured long‑term partnerships with Fortune 500 and government clients...Shift workRotating shiftWeekend work
- Salesforce.com, inc. is seeking a candidate to lead security initiatives within the Government Cloud Division. The ideal applicant will have over 4 years of experience in information security, focusing on operational excellence and compliance with federal security requirements...
- ...Previous Candidates need not reapply. The Information Technology Department (ITD) at the IMF... ...the IT department, the Information Security and Governance (ISG) division and other... ...Fund (IMF) is seeking to fill a Security Analyst/Senior Security Analyst (Cloud Security...Senior
$93.5k - $126.5k
Job Openings >> 1801 - Information Security Analyst - Hybrid - Active Secret Required 1801 - Information Security Analyst - Hybrid - Active Secret Required SUMMARY Title: 1801 - Information Security Analyst - Hybrid - Active Secret Required ID: 1801 Location: Arlington...Temporary workLocal area3 days per week$78.9k - $123.3k
...environment. This role is responsible for managing the security authorization lifecycle for one or more information systems, ensuring compliance with Federal... ...to government customer review and approval. Mid to senior Bachelor’s degree in Cybersecurity, Information Technology...Permanent employmentFull timePart timeWork at officeLocal areaRemote work- ...Job Description H4 Enterprises are currently seeking the following: POSITION SUMMARY Insider Threat Information Systems Security - Senior Data Analyst will be responsible for analyzing, detecting, and mitigating potential insider threats within an organization...SeniorFor contractorsWork at office
- Qmulos is looking for cybersecurity specialists to tackle significant security issues in Washington D.C. You'll engage with federal clients to enhance national security through innovative problem-solving and collaboration. Requirements include a Bachelor's Degree in a...
$62k - $141k
...Allen Hamilton in Washington is seeking a Mid-level Cybersecurity Analyst to guide government clients through risk assessments and... ...+ years of experience and skills in NIST assessments and cloud security, and it involves creating actionable plans based on client needs...- ...Assessment Expertise: Evaluates incident response readiness, vulnerability management, MFA enforcement, privileged access controls, and security monitoring. SIEM & Monitoring Analysis: Experience analyzing logging and alerting using platforms such as Microsoft Sentinel to...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Information Security Analyst. Be the first to apply!
Related searches
- data analyst bank Washington DC
- data analyst part time work from home Washington DC
- data analyst excel Washington DC
- data visualization analyst Washington DC
- senior data management analyst Washington DC
- data protection analyst Washington DC
- data analyst full time Washington DC
- senior data governance analyst Washington DC
- data analyst - r python sql Washington DC
- data solutions analyst Washington DC

