Cyber security Incident Res ponder - Pensacola, United States - EPIC SYSTEMS INC

EPIC SYSTEMS INC Pensacola, United States

1 day ago

Technology / Internet

Description

Job Title: Cyber security Incident Res ponder --Top-Secret Clearance

Work Location: Pensacola, FL

Cyber security Incident Responded who can support our customer in the detection, response, mitigation, investigation, and reporting of cyber threats affecting the client networks. This large mission critical development and entertainment program designs, builds, delivers, and operates a network operations environment introducing new cyber capabilities to address emerging threats.

This position requires shift work including nights/weekends.

Responsibilities include:

• Responsible for leading incident response efforts and reporting status to stakeholders and leadership.

• Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in cyber security operations

• Produce reports and briefs to provide an accurate depiction of the current threat landscape and associated risk.

• Investigate cyber activity targeting customer information and its infrastructure

• Providing mentorship and technical education to CIRT personnel

• Liaison with other government cyber threat analysis entities, such as inter-agency Cyber Threat Working Groups

• Analyze and report cyber threats as well as assist in deterring, identifying, monitoring, investigating and analyzing computer network intrusions

• Meet and maintain customer required Information Assurance training compliance

Required Skills:

• Must have active/current Top-Secret clearance with the ability to obtain a TS/SCI.

• Must be able to receive DHS suitability prior to starting employment.

• 8+ years of directly relevant experience

• Current experience with AWS security solutions and cloud security investigations

• Current incident response experience using Splunk

• Previous experience with penetration testing (red/blue/purple teams)

• Previous security investigation experience (OS Forensics, Network Forensics, Web Application Forensics, Cloud Forensics, etc.)

• Experience as a Linux/Windows/Network administrator

• Must be able to work collaboratively across agencies and physical locations

• Excellent oral and verbal communication

Desired Skills:

• Hands-on experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks

• Experience in computer intrusion analysis and incident response

• Experience with computer network surveillance/monitoring

• Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures

• Familiarity with computer evidence seizure, computer forensic analysis, and data recovery

• Experience with System log analysis

• Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)

• Current experience with cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks

• Current experience with AWS security solutions and cloud security investigations

Desired Certifications:

• Certified Information Systems Security Professional (CISSP)

• Cisco Certified Network Professional (CCNP), Cisco Certified Security Professional (CCSP) or similar certification

• Skill Level 1 certification (SANS GCIH or equivalent certification)

• Skill level 2 certification (SANS GCFA, GCFR, or equivalent certifications)

• Splunk Power User or higher

• AWS Certified Practitioner or higher

Required Education:

A bachelor's degree in cyber security, security operations, computer science, a related specialized area; or High School Diploma and 18 years of directly relevant experience.

Thanks & Regrds

Nirosha