Fully Remote Information Security Analyst
Washington, D.C.
Job Id:
153853
Job Category:
Other
Job Location:
Washington, D.C.
Security Clearance:
No Clearance
Business Unit:
Zachary Piper
Division:
Zachary Piper Solutions
Position Owner:
Anthony Carino
Zachary Piper Solutions is seeking a Fully Remote Information Systems Engineer to work hybrid out of Camp Springs, MD. The Fully Remote Information Systems Engineer is responsible for assessing security risks and driving enterprise-wide strategies to strengthen cybersecurity and compliance.
Responsibilities of the Fully Remote Information Systems Engineer includes:
- Analyze outputs from security tools (e.g., Tenable.io, Splunk) to identify enterprise-wide vulnerabilities and develop remediation strategies aligned with NIST Risk Management Framework.
- Provide guidance on security operations using advanced platforms and tools, including Tenable.io for vulnerability scanning, Splunk Enterprise for continuous monitoring, Nexus IQ for software composition analysis, and cloud environments (AWS, Azure, Google Cloud). Leverage dashboards and automated data correlation to enhance security posture and recommend process improvements.
- Conduct strategic systems planning, business analysis, and collaborate with ISSOs to document remediation plans (POA&Ms), ensuring improved security posture across the organization
Qualifications for the Fully Remote Information Systems Engineer includes:
- 10+ years of information security, security engineering or related discipline
- Strong experience with vulnerability/security scanning tool analysis and remediation
- Experience with tools such as Tenable.io, Splunk, Nexus, etc.
- Bachelor's degree is required
- CISSP, CISM, CEH or equivalent is highly preferred
Compensation for the Fully Remote Information Systems Engineer includes:
- Salary: $120,000 - $130,000+ **depending on experience**
- Benefits: Full benefits: Cigna Healthcare, Dental, Vision, 401k, and PTO/holiday plan
This job opens for applications on 11/04/2025. Applications for this job will be accepted for at least 30 days from the posting date
#LI-AC2 #LI-Onsite
Vulnerability, cybersecurity, Splunk, Nexus, Tenable, Nessus, Python, tenable, POA&M, POAM, securitty, RMF, AWS, Amazon, Cloud, GCP, risk management framework, DFIR, compliance, NIST