Cyber Security Analyst

<p><span style="font-size: 16px">Trilogy Federal drives innovative solutions for complex business challenges across financial management, healthcare, and government industries. Our collaborative, client-first service approach, combined with our commitment to the rapid implementation of pragmatic solutions, has earned Trilogy an unparalleled reputation for delivering transformative results.</span></p><p><br></p><p><span data-contrast="auto">Trilogy Federal is seeking a<strong> Cyber Security Analyst</strong> to support the T4NG Consolidated Corporate Support Services (CCSS) program for the&nbsp;Department of Veterans Affairs (VA). This position&nbsp;is responsible for&nbsp;implementing and&nbsp;maintaining&nbsp;the security posture of VA enterprise systems and data, ensuring robust compliance with federal and VA security requirements, and supporting the ongoing authorization and risk management of critical VA platforms as part of a multi-disciplinary, agile technology team.</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335557856&quot;:16777215,&quot;335559740&quot;:276}">&nbsp;</span></p> <p>&nbsp;</p> <p> </p><p> </p><p><strong><span data-contrast="auto">Position Description:</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335557856&quot;:16777215,&quot;335559740&quot;:276}">&nbsp;</span></strong></p> <p></p> <p> </p><p><span data-contrast="auto">The Cyber Security Analyst&nbsp;is responsible for&nbsp;supporting the security posture of VA information systems and environments. This role ensures compliance with Federal, VA, and industry information security policies and standards, conducts continuous vulnerability identification and remediation, and&nbsp;participates&nbsp;in both internal and external security assessments. The position requires routine engagement with technical and program stakeholders to&nbsp;maintain&nbsp;and improve security controls and documentation, elevate incident response, and support the ongoing Authorization to Operate (ATO) for supported systems and applications. The Analyst&nbsp;operates&nbsp;within an agile,&nbsp;DevSecOps-focused environment, requiring proactive risk identification and collaboration with cross-functional teams to ensure the security and integrity of VA’s technical ecosystem.</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335557856&quot;:16777215,&quot;335559740&quot;:276}">&nbsp;</span></p> <p></p> <p></p>\n<p></p><p><br></p><b>Primary Responsibilities: </b><div> <ul> <li><span data-contrast="auto">Perform ongoing vulnerability scanning, penetration testing, code review, and remediation in line with NIST SP 800-53 and related standards.</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559740&quot;:276}">&nbsp;</span></li> <li> <p><span data-contrast="auto">Develop, document, review, and maintain Assessment &amp; Authorization (A&amp;A) artifacts, including security plans, risk assessments, and Plan of Action and Milestones (POA&amp;M), supporting ATO submissions and renewals.</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559740&quot;:276}">&nbsp;</span></p> </li> <li> <p><span data-contrast="auto">Respond to, analyze, and report on security events and incidents, including notification to stakeholders within strict timeframes. Remediate security vulnerabilities within specified periods according to severity.</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559740&quot;:276}">&nbsp;</span></p> </li> <li> <p><span data-contrast="auto">Ensure compliance with Federal, VA, FISMA, NIST, HIPAA, Privacy Act, and organizational security and privacy directives.</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559740&quot;:276}">&nbsp;</span></p> </li> <li> <p><span data-contrast="auto">Complete mandatory and additional annual privacy and security training as required.</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559740&quot;:276}">&nbsp;</span></p> </li> <li> <p><span data-contrast="