Security Analyst Services

The vendor is required to provide it security analyst including, though not necessarily limited to:
•    Providing interpretation and enforcement of the information security policy and standards;
•    Providing information security education and awareness;
•    responding to information security incidents;
•    Performing threat risk assessments (TRAS) for it-related business initiatives throughout government;
•    Providing security assessment and overall security requirements oversight for it-related solution and services procurements;
•    Providing information security advice and guidance for business areas;
•    Evaluating new threats and vulnerabilities.
- Requirement:
•    Handling the security queue in the service now application used to manage security incident tickets and comply with incident response plans and processes to address potential threats; 
•    Analyzing the potential impact of new threats and communicate risks to relevant business units; 
•    Creating and maintaining operational reporting artifacts (e.g., risk management decision item (RMDI), incident reporting, human resource (HR) investigations, lost and stolen reporting, etc.); 
•    Compiling and analyzing data for management reporting and metrics; 
•    Coordinating with cybersecurity and risk management branch (CSRMB) to create security awareness campaigns. 
•    Research proactively regarding needs and trends to anticipate and identify potential security problems and incidents; 
•    Responding to computer security incidents according to the security incident response policy and provides guidance to first responders for handling information security incidents; 
•    Coordinating efforts among multiple business units during security incident response efforts; 
•    Engaging stakeholders to fulfill their requests (e.g., decommission request, assets decommission executions, etc.). 
•    Coordinate with other peers in CSRMB to research needs and trends to anticipate security problems or incidents; 
•    Assessing security incidents and taking prompt actions in terms of engaging required stakeholders and performing root cause analysis of the incident. 
•    Stay updated on information security-related attacks and trends; 
•    Proactively coordinating with appropriate stakeholders across agency during a security incident – management, security, operations, and others. 
•    Provides timely and relevant updates to appropriate stakeholders and decision-makers; 
•    Analyzing cyber security incidents to solve issues and suggest improvement in incident response procedures. 
•    Creates detailed reports and documentation of all incidents and procedures to the CSRMB, executive government, and leadership of agency on a routine basis; 
•    Supporting the execution and monitoring of phishing simulation exercises, including user targeting, response tracking, and reporting; and 
•    Responding to and resolving privilege access management (pam) related activities and service requests within defined service level agreements (SLAS) using service now.

- Contract Period/Term: 2 years
- Questions/Inquires Deadline: August 18, 2025