Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • ✅ Top Match: We help you identify job offers where you're a perfect fit.
  • ✅ Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • ✅ Personalized Feedback: Receive feedback and expert guidance on applications, and have your profile manually reviewed.
Go Premium

Cybersecurity Analyst

Remote: 
Hybrid
Work from: 
Rockville (US)

Bizzell logo
Bizzell
201 - 500 Employees
See all jobs

Job description

Description

Bizzell US is hiring two (2) experienced Cybersecurity Analysts to provide proactive monitoring, threat detection, vulnerability management, and incident response across FOH’s enterprise IT environment. These analysts will also support Plan of Action and Milestone (POA&M) development, tracking, and reporting in accordance with FISMA, NIST, and HHS security policies.


The ideal candidate has a strong foundation in risk-based cybersecurity operations within federal civilian agencies and experience coordinating with oversight entities like HHS OCIO.


Please Note:
This job posting is part of a contract bid opportunity and is intended to identify potential candidates for inclusion in our proposal to a client. This is not an immediate job opening. Employment is contingent upon the award of the contract to our organization and subsequent client approval.

 

Key Responsibilities


Threat & Vulnerability Management

  • Monitor FOH systems for vulnerabilities, threats, and anomalies using tools like Nessus, Tenable, or equivalent.
  • Perform patch management validation and recommend remediation strategies to maintain system hardening.

Incident Response

  • Lead or assist in cyber incident investigations, triage, and mitigation.
  • Collect forensic evidence, perform log analysis, and coordinate with HHS OCIO and ISSO on breach response activities.

Compliance & POA&M Management

  • Track and manage all identified security weaknesses through the POA&M lifecycle.
  • Ensure timely remediation of vulnerabilities based on severity:
    • Critical – 15 days
    • High – 30 days
    • Medium – 90 days
    • Low – 365 days
  • Coordinate input for ATO renewals, security assessments, and annual control testing.

Security Operations

  • Support continuous monitoring, endpoint protection, audit log review, and access control enforcement.
  • Collaborate with IT support, system admins, and application developers to implement security controls and mitigate risks.
  • Maintain compliance with FISMA, NIST 800-53, HHS Policy for IT Security, and FedRAMP where applicable.

Reporting & Documentation

  • Prepare reports for the COR, ISSM/ISSO, and internal stakeholders on current threats, vulnerabilities, and remediation progress.
  • Respond to HHS data calls, audits, and formal security documentation requests.





Requirements

Required Qualifications

  • Bachelor’s degree in Cybersecurity, Information Systems, or related field.
  • 3+ years of hands-on cybersecurity experience in a federal or regulated environment.
  • Strong understanding of NIST  800-53, POA&M workflows, and federal incident response playbooks.
  • Familiarity with vulnerability management tools, SIEM platforms, and audit logging procedures.

  

Preferred Qualifications

  • Active certification such as Security+, CEH, CISSP, GSEC, or CAP.
  • Prior experience supporting HHS or other federal health agencies.
  • Experience using ServiceNow, Archer GRC, or similar platforms for POA&M tracking and remediation.

  

Work Environment

  • Hybrid with core hours between 7 AM – 6 PM EST; may require availability for after-hours incident response.
  • Some on-site presence at Rockville, MD may be required for briefings, audits, or system reviews.

Required profile

Experience

Are you interested?

Cybersecurity Analyst Related jobs

See more Cybersecurity Analyst jobs