No more applications are being accepted for this job
- Monitor intrusion detection and prevention systems and othersecurityevent data sources.
- Determine ifsecurityevents monitored should be escalated to incidents and follow all applicable incident response and reporting processes and procedures.
- Ability to problem solve, ask questions, and discover why things are happening.
- Correlate data from intrusion detection and prevention systems with data from other sources
- Develop and produce reports on all activities and incidents to help maintain day to day status, develop and report on trends, and provide focus and situational awareness on all issues.
- Reporting outputs will be reviewed and approved to ensure quality and metrics are maintained.
- Responsible for tuning and filtering of events and information, creating custom views and content using all available tools following an approved methodology and with approval and concurrence from management.
- Notify the Customer of significant changes in thesecuritythreat against the Customer networks in a timely manner and in writing via established reporting methods.
- Coordinate with the O&M team to ensure production systems are operating efficiently.
- Produce daily/weekly/monthly/quarterly reporting as required by management.
- Maintain system baselines and configuration management items, includingsecurityevent monitoring "policies" in a manner determined and agreed to by management
- Produce reports identifying significant or suspicioussecurityevents to appropriate parties
- Review and evaluate network modifications and recommendsecuritymonitoring policy updates.
- Establish procedures for handling eachsecurityevent detected.
- Identify misuse, malware, or unauthorized activity on monitored networks
- Provide analytical support as needed for the overall projects and systems by working with engineers, O&M, and other personnel to ensure effective operations of all capabilities, piloting of new systems, and periodic updates to systems.
- Strong analytical and problem solving skills.
- Good interpersonal, organizational, writing, communications and briefing skills
- Position Requires 7 or more years experience in cybersecurityanalysis, incident response, or related IA/Securityexperience.
- Extensive knowledge and/or experience protecting network environments against insider threat.
- Experience working with Splunk Analytics tool
- Knowledge of Cisco ISE, Stealthwatch, SourceFire and AMP
- Must be a U.S
- Bachelors Degree in computer engineering, computer science, or other closely related IT discipline, Bachelors Degree may be substituted for 4 or more years of relevant experience For all positions requiring access to technology/software source code that is subject to export control laws, employment with the company is contingent on either verifying U.S.-person status or obtaining any necessary license.
Senior Security Analyst with Security Clearance - Springfield, VA, United States - ManTech International
Description
Secure our Nation, Ignite your Future Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come firstAt ManTech International Corporation, you'll help protect our national security while working on innovative projects that offer opportunities for advancement
Currently, ManTech is seeking a motivated, career and customer-orientedSenior Security Analyst to work t o join our team supporting a U
S
Government program in Springfield, VA
Responsibilities Include:
Basic Qualifications:
Certified Information SystemsSecurityProfessional (CISSP) Certification preferred SecurityRequirements:
ManTech may choose not to apply for a license for such individuals whose access to export-controlled technology or software source code may require authorization and may decline to proceed with an applicant on that basis alone
ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer
We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law
If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTechs Corporate EEO Department at
ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply
ManTechs utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies
ManTech does not accept resumes from unsolicited recruiting firms
We pay no fees for unsolicited services
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access as a result of your disability
To request an accommodation please click and provide your name and contact information.