Senior Cybersecurity Detection Analyst - Pensacola, United States - Cytech Services

    Cytech Services
    Cytech Services Pensacola, United States

    4 weeks ago

    Default job background
    Description

    Job Description

    Job Description
    Information System Security Analyst - Principal I - SCA05

    Cyber Technology Services, Inc.

    is looking for an experienced and technically proficient Senior Cybersecurity Detection Analyst who can support our customer in the detection, response, mitigation, investigation, and reporting of cyber threats affecting the client networks.

    This large mission critical development and sustainment program designs, builds, delivers, and operates a network operations environment introducing new cyber capabilities to address emerging threats.

    This position requires shift work including nights/weekends


    Responsibilities include:

    • Provide support in the real-time detection, response, mitigation, and reporting of cyber threats affecting client networks utilizing an enterprise SEIM.
    • Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in cyber defense operations.
    • Identification, detection, and analysis of potential computer network intrusions supporting the customers mission.
    • Liaison with other government cyber threat analysis entities, such as intra-agency and inter-agency Cyber Threat Working Groups
    • Meet and maintain customer required Information Assurance training compliance

    Required Skills:

    • Must be a U.S. Citizen
    • Must have active/current Top-Secret clearance with the ability to obtain a TS/SCI.
    • Must be able to receive DHS suitability prior to starting employment.
    • 8+ years of directly relevant experience (SOC/CIRT Analyst, Forensics Analyst, Penetration Tester, or Threat Hunt Analyst)
    • Current experience with AWS security solutions and cloud security investigations
    • Current incident response experience using Splunk
    • Previous experience with penetration testing (red/blue/purple teams)
    • Previous security investigation experience (OS Forensics, Network Forensics, Web Application Forensics, Cloud Forensics, etc.)
    • Experience as a Linux/Windows/Network administrator
    • Must be able to work collaboratively across agencies and physical locations
    • Excellent oral and verbal communication

    Desired Skills:

    • Computer network surveillance/monitoring
    • Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architecture
    • Experience in computer evidence seizure, computer forensic analysis, and data recovery
    • Computer network forensics
    • System log analysis
    • Current experience with cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks
    Hands-on experience in the detection, response, mitigation, and/or reporting of cyber threats and 2 or more of the following:
    Computer network surveillance/monitoring.
    Knowledge and understanding of (TCP/IP) protocols, network devices, multiple operating systems, and secure architectures.
    System/Application/Security log analysis.
    Network traffic analysis.


    • Current experience with AWS security solutions and cloud security investigations
    • Hands-on experience as a SOC Detection Analyst, Threat Hunter, Forensic Examiner, or Incident Responder
    • Proven exceptional technical writing skills directly related to cybersecurity incident response.

    Desired Certifications:

    • DoD M Compliance at IAT Level I (e.g., Certified Information Systems Security Professional (CISSP)) certification required.
    • Cisco Certified Network Professional (CCNP), Cisco Certified Security Professional (CCSP) or similar certification required.
    • Information Systems Security Engineering Professional (ISSEP) or Information System Security Architect Professional (ISSAP) certification preferred.
    • SourceFire Certified Professional (SFCP) certification desiredSkill Level 1 Certification (SANS GCIH or equivalent certification)
    • Skill level 2 certification (SANS GCFA, GCFR, or equivalent certifications)
    • Splunk Enterprise Security Certified Administrator or higher
    • AWS Certified Practitioner or higher

    Required Education:
    A bachelor's degree in cybersecurity, security operations, computer science, a related specialized area; or High School Diploma and 18 years of directly relevant experience
    Job Posted by ApplicantPro

    Company DescriptionCyTech Services is a unique services and solutions, executed with professional subject matter experts to both the Federal and Commercial sectors.

    Company Description

    CyTech Services is a unique services and solutions, executed with professional subject matter experts to both the Federal and Commercial sectors.