DOMA Technologies

DOMA Technologies is a dynamic and innovative software development company. We specialize in providing cutting-edge solutions that empower businesses through digital transformation. DOMA delivers comprehensive and managed cloud services in support of federal, healthcare, state, local, education, and commercial customers. Our team is composed of creative thinkers, problem solvers, and tech enthusiasts who thrive in a collaborative and fun work environment.

The Information Security Analyst will have tactical and strategic responsibilities with heavy involvement in security compliance and monitoring security operations. A significant element of this role is driving forward Information Security compliance efforts with industry-specific regulatory requirements, with a heavy focus on NIST, FISMA/FedRAMP, HIPAA, ISO 27001 and ISO 27017. Completing this program the candidate will be highly marketable within several industry fields including technology, Aerospace & Defense among others. The candidate will learn and understand how to take challenges and ideas and turn them into a reality. Potential roles that would fit this candidate would be: Security Analyst, Information Security Analyst, Cyber Security Analyst and Systems Analyst Specialist. The Information Security Analyst role requires demonstrated problem-solving and analytical skills and must be proficient, or able to gain proficiency with, a broad array of security software applications and tools. A successful candidate needs a thorough understanding of computer-related security systems including firewalls, encryption, and password protection and authentication and the ability to identify and mitigate network vulnerabilities and explain how to avoid them.Major Tasks• Collaborates with users to discuss computer data access needs, to identify security threats and violations, and to identify and recommend needed programming or process changes.• Monitor computer networks for security issues.• Investigate security breaches and other cybersecurity incidents.• Conduct or assist with internal security assessments and audits, provide recommendations to mitigate risks, and manage resulting corrective action plans and projects.• Conduct technical risk assessments, privacy assessments and information security reviews on internal systems, applications and platforms proving security remediation advise and training to technical personnel.• Develops and implements plans to safeguard digital data from accidental or unauthorized modification, destruction, or disclosure; adheres to emergency data processing needs.• Reviews violations of security procedures; provides training to ensure violations do not recur.• Monitors access to sensitive, confidential, or other high-security data.• Safeguards system security and improves overall server and network efficiency by training users and promoting security awareness.• Determines when to update virus protection systems by monitoring current reports of computer viruses; facilitates or performs needed updates.• Stay current on IT security trends.• Performs other related duties as assigned.Qualifications • Bachelors degree in Computer Science, Information Security, or a related field required.• At least three years of experience in computer systems with some specialization in computer security highly preferred.• Experience with Governance, Risk, and Compliance (GRC) Platforms.• Information Security Certifications are a plus (e.g., CISSP, SSCP, CISM, GIAC, CISA, etc.)