← back to jobs
> job detail
C
👽Other

Senior Cyber Security Analyst

Crowned Grace, Inc · Washington, DC, US
// classified as
Other (Adjacent or hard to classify.)
posted
1d ago
location
Washington, DC, US
languages
python, sql
tools
azure, oracle
> stack
pythonsqlazureoracle
> education
ms
> description

Senior Cyber Security Analyst

***Offer Contingent Upon Contract Award***

Crowned Grace International seeks a Senior Cyber Security Analyst for the DC Water Department of Information Technology (DIT) to strengthen the security posture of the Authority's enterprise information technology (IT) and operational technology (OT) environments. As one of the largest water and wastewater utilities in the United States, DC Water operates critical infrastructure that must remain resilient against evolving cyber threats while meeting corporate, industry, and regulatory security requirements.

The Senior Cyber Security Analyst serves as a hands-on senior contributor and technical advisor, leading threat monitoring, incident response, vulnerability management, and security engineering activities across on-premises, cloud, and hybrid platforms. The role works closely with the network infrastructure, systems administration, database, and SCADA/Process Control System (PCS) teams to ensure that security controls are designed, implemented, and maintained in alignment with DC Water's security architecture and applicable regulatory standards.

Key Responsibilities

• Monitor, triage, and investigate security events and alerts across the enterprise using SIEM, endpoint detection and response (EDR), intrusion detection/prevention systems (IDS/IPS), and related security tooling.

• Lead and coordinate incident response activities, including detection, containment, eradication, recovery, and post-incident root cause analysis, and produce clear incident documentation and lessons-learned reports.

• Perform proactive threat hunting and analysis of indicators of compromise, correlating threat intelligence with internal telemetry to identify and mitigate emerging risks.

• Plan and execute vulnerability management activities, including scanning, risk-based prioritization, remediation tracking, and validation across servers, endpoints, network devices, and applications.

• Design, implement, and tune security controls across hybrid environments, including firewalls, VPN, network segmentation, and multi-DMZ architectures, IDS/IPS, and secure remote access.

• Administer and improve identity, access, and security controls across on-premises and cloud environments (Active Directory and Azure Entra ID/IAM), including multi-factor authentication, conditional access, least-privilege enforcement, and security hardening.

• Coordinate with the SCADA/PCS engineering team to ensure IT, PCS, and SCADA security architectures are aligned, and support the segmentation, monitoring, and protection of the Authority's operational technology environment.

• Conduct security assessments, configuration reviews, and control gap analyses against recognized frameworks, and recommend risk-based remediation.

• Support security governance, risk, and compliance activities, ensuring operation in compliance with current and future corporate, industry, and regulatory standards (e.g., NIST Cybersecurity Framework, AWIA, HIPAA, and other evolving cybersecurity protocols).

• Develop, update, and maintain security documentation, standard operating procedures, runbooks, hardening baselines, and asset inventories.

• Provide Tier 3 security engineering support and advanced problem resolution for critical security issues escalated by IT Operations and other teams, and mentor junior analysts as a subject matter expert.

• Partner with infrastructure, systems, database, and application teams to embed security into system design, changes, upgrades, and cloud migration initiatives, following established change management protocols.

Required Qualifications

Experience: Minimum of seven (7) years of progressive experience in cyber security, information assurance, or information security, including hands-on incident response, vulnerability management, and security operations.

Education: Bachelor's Degree in Computer Science, Information Technology, Cyber Security, or a related field (equivalent experience may be considered).

Certification: Certified Information Systems Security Professional (CISSP) required.

Technical Depth: Demonstrated expertise with SIEM and security monitoring tools, EDR, IDS/IPS, and firewall technologies, including experience configuring and managing stateful and application-proxy firewalls in multi-DMZ environments.

Networking & Access: Strong understanding of enterprise/hybrid networking, secure authentication (RADIUS, TACACS+), IPSEC and SSL VPN, and identity and access management across Active Directory and Azure Entra ID.

Frameworks: Working knowledge of security frameworks and regulatory requirements, such as the NIST Cybersecurity Framework, and experience applying risk-based security controls.

Communication: Excellent written and oral communication skills, with the ability to document findings and present risk to both technical and non-technical stakeholders.

Preferred Qualifications

• Experience securing operational technology (OT), SCADA, or industrial control system (ICS) environments, ideally at a water, wastewater, or other critical-infrastructure utility.

• Additional certifications such as CISM, CCSP, GIAC (e.g., GCIH, GCIA, GICSP), CEH, or a cloud security certification (Azure/AWS).

• Hands-on experience with Cisco security platforms (Cisco ISE, Catalyst Center), Checkpoint firewalls, and Microsoft/Azure security tooling.

• Familiarity with virtualization and container security (VMware vSphere, Windows Server, Docker/Kubernetes) and cloud/hybrid security architecture.

• Experience supporting disaster recovery and business continuity planning and testing.

• Scripting or automation skills (e.g., Python, PowerShell) to support detection, response, and reporting.

DC Water Technical Environment

The selected candidate will operate within a diverse enterprise environment that includes, but is not limited to, the following technologies:

Network & Security: Cisco switches, routers, firewalls, Cisco ISE and Catalyst Center; Checkpoint firewalls; IDS/IPS; IPSEC/SSL VPN; RADIUS and TACACS+.

Identity & Cloud: Active Directory, Azure Entra ID/IAM, Microsoft Azure, and hybrid/multi-cloud architecture.

Compute & Virtualization: VMware vSphere, Windows Server, and Docker/Kubernetes.

Data & Applications: Oracle and MS SQL databases; Oracle ERP, SAP ISU, IBM Maximo, ESRI GIS, SharePoint, and various custom .NET/C#/Python/Java systems.

Operational Technology: SCADA and Process Control Systems, including Modicon PLC platforms, requiring close coordination on IT/OT security architecture.

Work Conditions & Additional Information

• This is a hybrid assignment requiring three (3) days onsite per week at Blue Plains or Headquarters (HQO) and two (2) days remote.

Initial assignment length is six (6) months, with the possibility of extension based on business needs and performance.

• The selected candidate may be subject to background and security screening consistent with DC Water's requirements for access to critical infrastructure systems.

• DC Water will provision the necessary IT equipment for the selected candidate.

• DC Water will own any work, product, or deliverable produced during the assignment.


  • Must be able to pass government background investigation.