Security Analyst - Arlington, United States - RadiantHire Solutions, Inc.

Description

Title:

Cybersecurity Incident Responder (L5)
Hybrid On-site/Virtual model

Description:

Our client is supporting their prime contractor and their U.S.

Government customer on a large mission-critical development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to address emerging threats.

They are seeking a

Cyber Security Incident Responder

who can support our customer in the detection, response, mitigation, and reporting of cyber threats affecting the client networks.
This position requires shift work including nights/weekends
§ Must be a

US Citizen
§ Must have an

active

TS/SCI

clearance
§ Must be able to obtain DHS Suitability

prior to

starting employment
§

8+ years

of directly relevant experience
Responsibilities Include

:

§ Provide support in the detection, response, mitigation, and reporting of cyber threats affecting client networks
§ Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in cyber security operations
§ Produce reports and briefs to accurately depict the current threat landscape and associated risk based on customer, community, and open-source reporting
§ Provide analysis for correlated information sources
§ Facilitate the customer's posturing itself to aggressively investigate cyber activity targeting customer information and its information infrastructure
§ Assist the customer training department in the education of staff on the cyber threat
§ Serve as a liaison with other government cyber threat analysis entities, such as intra-agency and inter-agency Cyber Threat Working Groups
§ Maintaining proficiency in the use and production of visualization charts, link analysis diagrams, and database queries
§ Analyze and report cyber threats as well as assist in deterring, identifying, monitoring, investigating, and analyzing computer network intrusions
§ Meet and maintain customer-required Information Assurance training compliance
Required Skills:

§ Hands-on experience in a SOC performing the detection, response, mitigation, and/or reporting of cyber threats affecting client networks and

one or more

of the following:

§ Experience in computer intrusion analysis and incident response
§ Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures
§ Experience in computer evidence seizure, computer forensic analysis, and data recovery
§ Experience with current cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer network
§ Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)
§ Current experience with cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks
§ Proficiency with MS Office Applications
§ Must be able to work collaboratively across agencies and physical locations
Desired Skills:

§ Experience supporting DHS, Federal Civil, Intelligence and/or DoD Customers
§ Malware reverse engineering experience
§ Experience with process development and deployment
§ Prior experience with data visualization products such as Analyst Notebook is desired.
§ Prior experience with Splunk
Desired Certifications

(at least 2):

Technical CND Incident Reporter Certification (CEH, GCIH, GCIA, GNFA) DoDI M M IAT Level I Compliant Certification (Network + CE, A+ CE, CCNA + Security, SSCP)
Required Education

:

BS in Cybersecurity or related degree. A Masters degree may be substituted for 4-years of experience. A HS Diploma with 12 years of experience may be substituted for a degree.

Do you have an active Secret or TS Security Clearance? If the answer is no you will not be contacted, it is required.

What level do you have?

#J-18808-Ljbffr