Cybersecurity Specialist

CommIT Enterprises is seeking a highly skilled and detail-oriented Cybersecurity Specialist to join our team. The ideal candidate will be responsible for implementing and maintaining security measures to safeguard our organization's IT infrastructure, data, and networks from cyber threats. As a Cybersecurity Specialist, you will analyze security risks, develop strategies to mitigate them, and ensure that security protocols are followed to maintain the confidentiality, integrity, and availability of our systems.

Established in 2001, CommIT is a Certified Veteran-Owned Small Business (CVOSB) providing innovative technical engineering and data science services. Our enterprise systems support includes the Department of Defense’s (DoD) GCSS-MC, CAC2S, TBMCS-MC, and the Department of Veteran’s Affairs’ (VA) telehealth communications. We offer acquisition management, systems engineering, Agile software development, cloud management, IT modernization, data analytics, cybersecurity, and training, including leading-edge DevSecOps, automated testing, and mobile application development.

Your essential job functions will include but may not be limited to-

• Security Monitoring and Incident Response:
  • Monitor and analyze network traffic and security alerts to detect potential security breaches.
  • Respond to and investigate security incidents, providing detailed reports on findings and corrective actions.
  • Implement incident response plans to ensure quick containment and recovery from cyber-attacks.
• Vulnerability Assessment and Risk Management:
  • Conduct regular vulnerability assessments, penetration testing, and risk analysis to identify potential threats and weaknesses in the organization’s infrastructure.
  • Develop and recommend security best practices and mitigation strategies to address vulnerabilities.
• Security Protocols and Compliance:
  • Ensure the organization’s compliance with relevant security standards and regulations (e.g., GDPR, HIPAA, NIST, ISO 27001).
  • Develop and implement security policies, procedures, and guidelines for employees to follow.
  • Ensure data protection and secure access controls across systems, applications, and networks.
• Network and Systems Security:
  • Configure, manage, and maintain firewalls, intrusion detection/prevention systems (IDS/IPS), and other security tools.
  • Secure endpoints (servers, workstations, mobile devices) and implement security patches and updates regularly.
  • Configure VPNs, secure communication protocols, and other technologies to safeguard remote access.
• User Education and Training:
  • Conduct security awareness training for employees to help them identify phishing attempts, social engineering tactics, and other cyber threats.
  • Promote security best practices, including password management, multi-factor authentication, and safe browsing.
• Collaboration and Reporting:
  • Work closely with IT, operations, and leadership teams to ensure the effective implementation of security measures across all departments.
  • Provide regular security reports to management, detailing security risks, incidents, and mitigation efforts 

Required Experience and Education: 

• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
• Proven experience (3+ years) as a Cyber Security Specialist or in a similar role.
• Strong understanding of security protocols, cryptography, firewalls, intrusion detection systems, and VPNs.
• Proficiency in security tools such as SIEM, anti-virus software, IDS/IPS, and vulnerability scanners.
• Knowledge of security frameworks and compliance regulations (e.g., NIST, ISO 27001, GDPR, HIPAA).
• Experience with cloud security (AWS, Azure, Google Cloud) and securing cloud infrastructure.
• Familiarity with programming/scripting languages such as Python, PowerShell, or Bash for automating security tasks.
• Strong problem-solving, analytical, and communication skills. 

Preferred Skills/Certifications: 

• Certified Information Systems Security Professional (CISSP)
• Certified Ethical Hacker (CEH)
• Certified Information Security Manager (CISM)
• CompTIA Security+ 

Security Requirements:

• Secret Clearance

Equal Opportunity Employer:

CommIT Enterprises, Inc. is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.