• InfoSec Analyst

    Job Locations US-VA-Sterling
    Job ID
    # of Openings
    Cyber Security
    Clearance Level
    Top Secret
  • Company Description

    Spry is a certified Small Disadvantaged Business (SDB) headquartered in McLean, VA. Spry provides Enterprise, C4IT, Management, and Cyber Solutions to the federal government and commercial entities. Founded in 2001, Spry Methods was built on the foundation of combining industry knowledge with unmatched responsiveness to produce results for our customers. Our goal is to build a business dedicated to the maximization of value for all stakeholders starting with our employees, our customers, and our community. We recognize that talented and dedicated employees are our most valued assets and the foundation of our success. Guided by these principles, we have established an impressive track record of proven past performance serving our customers within the Commercial, Federal Civilian, DoD, and Intelligence Communities. A CMMI Level 3 certified and ISO 9001:2008 registered company, Spry is committed to quality and continuous improvement.


    All of the duties listed support one or more of the following information technology related functions; information security, incident response, cyber security, insider threat, computer forensics, certification & accreditation, vulnerability assessment and management, network data capture, intrusion detection, log management, auditing, security incident and event management (SIEM), and penetration testing.

    Job Responsibilities and/or Success Factors

    • Maintains existing security tools and creates new security tool signatures to ensure maximum performance and availability
    • Forensically identifies, collects, preserves, analyzes, and presents computer-related data recovered from an enterprise environment
    • Performs all aspects of intrusion detection, log and audit management, network and database vulnerability assessment and compliance management, and security configuration
    • Addresses problems, installs, configures, troubleshoots, and provides maintenance and training in response to customer requirements or inquires
    • Conducts the integration/testing, operations, and maintenance of systems security
    • Installs, configures, troubleshoots, and maintains server configurations (hardware and software) to ensure their confidentiality, integrity, and availability. Also manages accounts, security devices, and patches; responsible for access control/passwords/account creation and administration
    • Analyze collected information to identify vulnerabilities and potential for exploitation
    • Provides support in the identification, documentation, and development of computer and network security countermeasures
    • Performs penetration testing on enterprise network
    • Identifies network and operating systems vulnerabilities and recommends countermeasures
    • Supports the deployment and integration of security tools
    • Develops, updates, and maintains internal Standard Operating Procedure for all internal assigned functions
    • Provides system operation support, administers hardware and software inventory, and oversees administration of a laboratory environment

    Required skills and experience include

    • Bachelor’s degree in computer science, information systems analysis, science/technology, information management, computer engineering, or electrical/electronic engineering
    • 4+ years of combined experience in information system security, information certification & accreditation, cyber security, computer forensics, or insider threat
    • 2+ years of experience in architecting, engineering, integrating, developing and/or deploying information technology products in an enterprise environment
    • Work experience and knowledge in network monitoring, and intrusion detection using host-based and network-based intrusion detection systems (IDS) and log management applications; testing, installing, patching, and upgrading computer hardware and operating systems (Windows, and UNIX) in an enterprise environment; identifying, collecting, processing, documenting, reporting, cyber security/ incident response events; architecting, engineering, developing and implementing cyber security/incident response policies and procedures; engineering, testing, installing, patching, and upgrading various information security hardware and software applications, to include but not limited to, SourceFire, Arcsight, Splunk, NetWitness, Guidance Software, Digital Guardian, Raytheon (SureView), NMAP, Metasploit, Request Tracker, Nagios, Intelliview, Nessus, and  Foundstone; information system security, cyber security, computer forensics, vulnerability assessment and penetration testing, malware analysis, insider threat, information certification & accreditation regulations, Federal Information Security Management Act (FISMA), National Institute of Standards and Technology (NIST), and American Society of Crime Laboratory Directors (ASCLD)
    • Must have in-depth Linux scripting and penetration testing experience
    • Experience configuring and deploying SIEM tools such as ArcSight or Splunk
    • Must be able to successfully complete a DEA background investigation in conjunction with being an active Secret or higher clearance holder and must be eligible for a Top Secret clearance if requested

    Preferred skills

    • Preferred experience with SourceFire, ArcSight, Splunk, NetWitness, Guidance Software, Digital Guardian
    • Certified in the following: CISSP, MCSE, CCNA, CCDA, or CCIE

    EEO Statement

    At Spry, we believe talented and dedicated employees are our most valued assets and the foundation of our success. We are committed to crafting a diverse and inclusive workplace that endorses engagement, creativity, quality and innovation.


    We are proud to be an Affirmative Action and Equal Opportunity Employer and as such, we evaluate qualified candidates in full consideration without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, and any other protected status.


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed