No more applications are being accepted for this job
- Responsible for leading incident response efforts and reporting status to stakeholders and leadership.
- Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in cyber security operations
- Produce reports and briefs to provide an accurate depiction of the current threat landscape and associated risk.
- Investigate cyber activity targeting customer information and its infrastructure
- Providing mentorship and technical education to CIRT personnel
- Liaison with other government cyber threat analysis entities, such as inter-agency Cyber Threat Working Groups
- Analyze and report cyber threats as well as assist in deterring, identifying, monitoring, investigating and analyzing computer network intrusions
- Must be a U.S
- Must have active/current Top-Secret clearance with the ability to obtain a TS/SCI.
- Must be able to receive DHS suitability prior to starting employment.
- 8+ years of directly relevant experience
- Current experience with AWS security solutions and cloud security investigations
- Current incident response experience using Splunk
- Previous experience with penetration testing (red/blue/purple teams)
- Previous security investigation experience (OS Forensics, Network Forensics, Web Application Forensics, Cloud Forensics, etc.)
- Experience as a Linux/Windows/Network administrator
- Must be able to work collaboratively across agencies and physical locations
- Hands-on experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks
- Experience in computer intrusion analysis and incident response
- Experience with computer network surveillance/monitoring
- Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures
- Familiarity with computer evidence seizure, computer forensic analysis, and data recovery
- Experience with System log analysis
- Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)
- Current experience with cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks
- Certified Information Systems Security Professional (CISSP)
- Cisco Certified Network Professional (CCNP), Cisco Certified Security Professional (CCSP) or similar certification
- Skill Level 1 certification (SANS GCIH or equivalent certification)
- Skill level 2 certification (SANS GCFA, GCFR, or equivalent certifications)
- Splunk Power User or higher
3247 Information System Security Analyst with Security Clearance - Pensacola, FL, United States - Quantum Science Solutions
Description
Information System Security Analyst - Principal I - SCA0- Open Quantum Science Solutions is looking for an experienced and technically proficient Cybersecurity Incident Responder who can support our customer in the detection, response, mitigation, investigation, and reporting of cyber threats affecting the client networksThis large mission critical development and sustainment program designs, builds, delivers, and operates a network operations environment introducing new cyber capabilities to address emerging threats
This position requires shift work including nights/weekends Responsibilities include:
Excellent oral and verbal communication Desired Skills:
AWS Certified Practitioner or higher Required Education:
A bachelor's degree in cybersecurity, security operations, computer science, a related specialized area; or High School Diploma and 18 years of directly relevant experience.