ABOUT US:

Purple Jay is a veteran-owned IT and InfoSec company that guides government agencies and private organizations into the right balance of business productivity and implements security measures to help maximize their outcomes and achieve their mission. We believe that effective cybersecurity solutions must go beyond simply protecting data and systems – they must align with the mission to enable and empower progress. Our teams are built to provide cross-domain services with highly skilled and trained personnel supported by cross-matrix, agile teams and our proprietary digital solutions that have a track record of success. Our positively charged approach intends to exceed client’s minimum requirements, reduce client and organizational risk, and maximize the return on investment.

OUR COMPANY CULTURE IS BUILT WITH TEAM MEMBERS THAT…

· have a curious and intellectual mind who are inclined to ask “why”.

· use creative thinking and adaptive decision-making to solve problems.

· value their contribution and the contribution of others on the team.

· are passionate about learning and developing skills to overcome challenges.

· look to leverage their knowledge or experience to advance within the InfoSec Industry.

· can connect with people of diverse backgrounds and communication styles, through empathy and clear verbal, visual, and written communication.

ABOUT THE INFORMATION SECURITY ANALYST:

ROLE OVERVIEW:

Purple Jay is seeking an Information Security Analyst to join our cross-functional teams supporting enterprise security initiatives. This role blends strong technical expertise with cyber risk consulting and project delivery to improve organizational security posture, reduce threats, ensure compliance, and enhance efficiency. A current Public Trust clearance is preferred. We are looking for a motivated self-starter who thrives in collaborative environments and integrates strategic and tactical thinking to deliver outcomes.

RESPONSIBILITIES:

Purple Jay teams are cross-functional and cross-matrixed to aid in the effective delivery of services and digital solutions. This role responsibilities include but are not limited to:

• Provide quality deliverables and/or analytical project reports for cyber risk consulting engagements.
• Analyze and interpret cybersecurity data to assess risks, identify threats, and support strategic decisions.
• Support Authorization and Assessment (A&A) activities, including security control reviews and artifact preparation.
• Assist in the development and implementation of security policies, procedures, and controls.
• Monitor security incidents and continuous monitoring data to track and report risk status.
• Identify, assess, and recommend remediation strategies for vulnerabilities across enterprise environments.
• Conduct analysis of system security risks and collaborate with stakeholders to implement mitigation plans.
• Support cyber risk engagements across focus areas, including:
• Strategy, Defense, and Response: Develop risk awareness strategies and security response plans.
• Infrastructure Security: Support vulnerability management, endpoint security, and threat monitoring.
• Identity and Access Management: Support governance, authentication, and privileged access initiatives.
• Data Protection: Assist with data security validation, privacy reviews, and protection architecture.
• Application Security: Support requirements analysis, development verification, and maintenance security.
• Prepare written reports including risk findings, remediation plans, and performance metrics.
• Collaborate with technical and business teams to ensure security control effectiveness and compliance.

TECHNICAL SKILLS

• Strong knowledge of information security principles: confidentiality, integrity, and availability.
• Familiarity with security compliance frameworks: NIST SP 800-53, ISO 27001, SOC 2, PCI DSS.
• Understanding of network protocols, cloud technologies, and operating systems (Linux, Windows).
• Experience with security tools: firewalls, intrusion detection/prevention systems, vulnerability scanners.
• Basic knowledge of threat intelligence gathering and threat hunting methodologies.
• Ability to analyze security incidents and recommend improvements.
• Familiarity with risk management and mitigation strategies.
• Familiarity with VPNs, network segmentation, and network monitoring tools
• Familiarity with endpoint protection, encryption tools, and data loss prevention (DLP) solutions
• Scripting skills (e.g., Python, PowerShell, Bash) are a plus.

PROFESSIONAL SKILLS

• Demonstrated ability to collaborate across departments to drive security initiatives.
• Strong organizational skills with attention to detail and the ability to manage multiple priorities.
• Ability to perform thorough risk assessments and document findings clearly.
• Excellent verbal and written communication skills, including reporting to technical and non-technical audiences.
• Critical thinking and problem-solving skills to assess alternatives and recommend solutions.
• Ability to analyze large volumes of data for anomalies and potential threats
• Strong troubleshooting and decision-making skills under pressure.
• Ability to clearly communicate technical information to both technical and non-technical audiences.
• Strong sense of personal accountability and a proactive approach to supporting client missions.
• Comfortable working in a matrixed environment and across multiple organizations / partnerships to deliver results for clients

ABOUT THE BENEFITS

PURPLE JAY IS ALL ABOUT THE BENEFITS! WE OFFER…

• Medical, Dental & Vision benefits as well as company-paid Life & Disability Insurance policies.
• Optional 401k, additional Disability, Life, and Voluntary AD&D plans available.
• Paid Federal holidays and up to two weeks of accrued PTO (Paid Time Off).
• An opportunity for career growth with training and boot camps.
• The required technical equipment will be provided by Purple Jay.
• An empowering culture that values your voice while challenging you to get better every day.

Purple Jay, LLC is an Equal Opportunity Employer. All applicants are considered without regard

to race, color, ancestry, national origin, gender/gender identity, sexual orientation, marital and family status, religion and religious belief, age, disability, results of genetic information, and service in the military.