Information Security Analyst

Knowledge Business Services (KBS) is a leading multidisciplinary organization supporting software, professional services, and cybersecurity solutions across regulated government and commercial markets. KBS provides shared services and governance for multiple operating entities, including Knowledge Services, RAMPquest, RAMPxchange, dot Staff, and other mission-focused business units.

KBS is seeking an Analyst, Information Security (Corporate) to join our Corporate Information Security team. This role reports to the Manager, Information Security (Corporate) and supports monitoring, assessment, compliance execution, and continuous improvement of the organization’s security posture.

This position may be filled at varying levels (Analyst I, II, or III) depending on qualifications and experience. Analysts will contribute to security operations, vulnerability management, incident response support, and compliance activities aligned with NIST 800-53 and FedRAMP/GovRAMP expectations.

• Security Monitoring & Incident Support
• Monitor corporate networks, endpoints, and cloud environments for security issues and suspicious activity
• Analyze security event reports generated by threat and compliance monitoring systems
• Support investigation and response activities for security incidents, including documentation, impact assessment, escalation, and corrective action tracking
• Participate in breach assessment and ongoing risk mitigation efforts

• Vulnerability Management & Remediation
• Assist with vulnerability scanning, compliance scanning, and security assessments
• Identify, track, and support remediation of detected vulnerabilities and misconfigurations
• Coordinate with IT and peer departments to implement corrective measures

• Control Implementation & Compliance Support
• Assist with implementation and maintenance of security controls across corporate systems
• Follow System Security Plan (SSP) guidance and control implementation requirements
• Support Continuous Monitoring (Con Mon) activities and documentation as required
• Maintain Plan of Action & Milestones (POA&M) documentation and support closure of compliance findings

• Security Tools & Operational Support
• Help install, configure, and maintain corporate security software and endpoint agents
• Support administration of security platforms and coordination with vendors as needed
• Provide subject matter support for security systems enforcement and best practices
• Work closely with Development and IT teams to secure infrastructure, applications, and new deployments
• Provide guidance to team members and support cross-training across areas of expertise (senior levels)
• Research emerging threats, trends, and security enhancements
• Contribute to security documentation, training materials, and process improvements
• Participate in special projects as assigned

• Formal training in cybersecurity, information technology, information assurance, or related field
• (Equivalent experience may be considered in lieu of degree)
• Experience in one or more of the following areas:
• Security monitoring and event analysis
• Vulnerability scanning and remediation
• Endpoint and network security
• Technical documentation and reporting
• Familiarity with NIST security standards and best practices, including NIST SP 800-53
• Understanding of cloud service environments (Azure preferred)
• Strong communication and collaboration skills

• CompTIA Security+
• CEH, ECIH
• SSCP, CISSP, CCSP
• GIAC certifications (GCED, GCIH, GCIA, GCLD)

• Familiarity with FedRAMP and/or GovRAMP compliance programs
• Experience with compliance frameworks such as SOC 2, ISO 27001, FISMA, MARS-E 2.0, FERPA, IRS 1075
• Experience in Microsoft Azure environments and enterprise security tooling