**Information Security Analyst II** **Who is Epsilon:** Epsilon is an IT Services company that was founded in 2009 and has become an established leader in providing Information Technology services to both Federal Government and Commercial businesses across the United States. Epsilon is known for its solution-focused and innovative approach, aligning technology systems, tools, and processes with the missions and objectives of its customers. Epsilon’s headquarters are in Weaverville, NC with other corporate offices in Greenville, SC, Crystal City, VA, and Denver, CO. We have employees in 30+ States across the U.S. **Why work for Epsilon:** In joining Epsilon’s team, you will have the opportunity to contribute to Epsilon’s business and customer initiatives, as well as influence our brand culture through people interaction and technology advancements. Epsilon invests in our employees by promoting from within and enabling employees to elevate their knowledge and skill set in their profession by allocating $3,000 annually in Professional Development funds. We also offer competitive pay, comprehensive benefits through one of the largest national carriers, Paid Time Off (PTO) that increases with tenure and has a generous rollover, 11 company paid Holidays, and 401(k) with immediate contribution. **Where you’ll work:** This is a hybrid onsite/remote opportunity where you will report to the customer location in Falls Church, VA and have the flexibility to work from home based on business needs. **An average day:** As Information Security Analyst II, you will be responsible for safeguarding the organization’s information assets by monitoring, analyzing, and mitigating security threats. The individual in this position will operate within a cross-functional team that supports secure data productization, AI/ML initiatives, automation engineering, and overall pipeline optimization. In this position you will: + Implement and maintain security policies, standards, and procedures to protect organizational assets and data. + Conduct regular vulnerability assessments and penetration tests to identify and remediate security weaknesses. + Monitor and analyze security alerts and reports using SIEM tools to proactively detect threats and anomalies. + Investigate security incidents, coordinate with relevant stakeholders, and document findings for continuous improvement. + Collaborate with cross-functional teams to integrate security best practices into data pipelines, AI/ML models, and automated workflows. + Perform periodic risk assessments, suggest mitigations, and track remediation efforts to ensure compliance with industry regulations. + Work with DevOps teams to implement secure coding practices and foster secure CI/CD development pipelines. + Support the evaluation and deployment of security tools, including endpoint protection, intrusion detection/prevention systems, and threat intelligence platforms. + Maintain awareness of the latest security trends, vulnerabilities, and threat intelligence to proactively protect the organization. + Assist in developing and executing security training and awareness programs for technical and non-technical teams. + Document all security-related activities and maintain detailed records for audit and compliance purposes. + Enhance Threat Intelligence Capabilities – Research emerging threats, analyze attack patterns, and integrate threat intelligence feeds to strengthen the organization’s proactive security posture. + Perform Security Audits and Compliance Reviews – Conduct internal security audits and compliance checks to ensure adherence to regulatory requirements and organizational security policies. + Develop and Maintain Incident Response Playbooks – Create and update incident response procedures to improve response times and consistency in handling security events + Participate in on-call rotations to provide timely response and mitigation for security events. **Basic Qualifications:** + As a requirement of this position, all candidates must be a U.S. Citizen. In accordance with 8 U.S.C. 1324b(a)(2)(C) , Epsilon will not consider candidates for this position who do not meet the aforementioned conditions. + Minimum 3 years of experience in information security or a closely related field. + DOD 8570 IAT Level II Certification may be required (GSEC, GICSP, CND, CySA+, Security+ CE, SSCP or CCNA-Security). + Proficiency with SIEM platforms (e.g., Splunk, QRadar) and vulnerability scanning tools (e.g., Nessus). + Practical knowledge of security frameworks such as NIST, ISO 27001, and SOC 2. + Hands-on experience with common security technologies like firewalls, IDS/IPS, and endpoint protection solutions. + Familiarity with scripting and automation tools (e.g., Python, PowerShell) for security-related tasks. + Understanding of secure development practices, particularly within CI/CD pipelines and automated testing environments. + Ability to conduct thorough risk assessments and provide actionable recommendations for mitigation. + Experience supporting security for data pipelines, AI/ML environments, or cloud-based infrastructures. + Excellent incident response skills, including triage, containment, and root cause analysis. + Strong communication and collaboration abilities to partner with cross-functional teams and stakeholders. One or more of the following certifications are desired: Certified Cloud Security Professional (CCSP) , GIAC Security Essentials Certification (GSEC), or CompTIA Cybersecurity Analyst (CySA+) **Other:** + Must hold an Active DOD Secret, Top Secret or TS/SCI Clearance + Must be located within a two (2) hour commute of the physical work location **Physical Demands and Working Conditions:** Listed below are the physical or mental requirements necessary for the job's performance. Reasonable accommodation may be made to enable individuals with disabilities to perform essential job functions: + Prolonged periods of computer desk work. + Dexterity of hands and fingers to operate a computer keyboard and other computer components. + Speaking and hearing are sufficient to converse and understand conversations, both in-person, telephone, and virtual meetings. + The cognitive skills needed to complete tasks, including abilities such as learning, remembering, focusing, categorizing, and integrating information for decision-making, problem-solving, and comprehending. + Ability to learn new tasks, remember processes, maintain focus, complete tasks independently, make timely decisions in the context of a workflow, and the ability to communicate with managers and co-workers. + Mental aptitude to respond appropriately in high-pressure situations or deadline-driven environments. + Maintain a professional emotional response when working with others. **Connect directly with your dedicated recruiter on Epsilon’s careers page.** **www.epsilon-inc.com/careers** Epsilon is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applications will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. EEO/AA: Disabled/Vets. Please click here (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf) to review your rights under EEO policy. If you are an individual with a disability and need special assistance or reasonable accommodation in applying for employment with Epsilon, Inc., please contact our Recruiting department by phone 828-398-5414 or by email careers@epsilon-inc.com .