No more applications are being accepted for this job
- Establishing normalized traffic and data flow baselines for anomaly identification.
- Developing technical theories based on threat intelligence.
- Identifying adversary techniques, tactics, and procedures through behavior pattern analysis.
- Demonstrating comprehensive knowledge of threat vectors and their implications on cybersecurity risks for the federal government.
- Incident Handling Experience working in SOC/CIRT Environment (Not Screen Watchers)
- Proficiency in Splunk Search Processing Language (SPL) for query execution.
- Hands on (in a production environment) experience in Packet Capture (PCAP) Analysis.
- 3-4 years of relevant professional experience.
- Ability to secure an IRS Public Trust security clearance
- Citizenship: United States Citizenship required
- Attacker methodology, Red Team, and Penetration testing
- Experience using a scripting language to solve Cyber Security challenges. (Python preferred)
- Ability to Correlate Logs from multiple sources- Log Analysis, Correlation Rules, etc.
- SANS GIAC Certified-
- Experience with analyzing malware and extracting indicators/call out
- Extracurricular experience is huge bonus points. E.g.- Capture the Flag competitions, Hack The Box, Cyber Club in College, home lab cyber practice to further skills in the field
- Salary: $75,000 - $85,000/ year (depending on experience)
- Term: long term contract
- Benefits: Cigna Medical, Dental, Vision, 401K, 2 weeks Paid Time Off (PTO)
- Work Location: Hybrid - 1x day per week at IRS in New Carrollton, MD
- Shift: 6am-2pm
Threat Hunter - New Carrollton, United States - Piper Companies
Description
Zachary Piper Solutions is in search of an Incident Response Analyst - Threat Hunter for a legacy project supporting the IRS, with a focus on safeguarding the IRS Network and its associated data/assets. This role, based in New Carrollton, MD, operates in a hybrid (1 day/week onsite) capacity within the IRS Computer Security Response Center (CSIRC).
Responsibilities of the Treat Hunter:
FISMA regulation, FIPS standards, NIST 800 series, NIST Special Publications, Risk Management Framework, IT security, infrastructure, vulnerability assessment, reporting, firewalls, VPN, Data Loss Prevention, IDS/IPS, Web-Proxy, security audits, .Net, .net, SQL, server, framework, Kendo UI, query, data, integration, deduplication, interface, SAFe, agile, reconciliation, jira, confluence, COTS, OS patching, VersionOne, NetApp, Linux, linux, windows, Windows, Cloud, Commvault, active directory, Ansible, Jenkins, AccuRev, Gitlab Teradici, PCoIP, scripting, remote display protocols, sharepoint, SharePoint, Sharepoint, .NET, C#, developer, virtual machines, VMware VCenter hypervisor, Citrix XenDesktop, XenApp, Desktop Director, systems engineer, engineer, system, systems, systems engineering, citrix, Citrix, secret, system admin, administator, systems administrator, contracts, contract, contracts specialist, contract specialist, procurement, PD2, procurement desktop, technical writing, technical editor, editor, cybersecurity, cyber security, secret, TS, Top Secret, top secret, sci, clearance, government, DARPA, TS/SCI, DHS, federal, technical writer, business analyst, CONOPS, SOPs, standard operating procedures, sec+, security+, ITIL, ITILV4, adobe, Microsoft office, MS, .NET Framework, C#, AngularJS, Hyper Text Markup Language HTML, AJAX, ASP.NET, XML, JavaScript, Jquery, CSS, Microsoft SharePoint Designer, SharePoint Workflows, Web Services, REST, Keyword Query Language, KQL, SharePoint Server, Internet Information Server, IISsuite, SCI, sensitive compartmented information, operation procedures, mission notes, editing, 508 compliance, documentation, cyber, APT, advanced persistent threat, incident management, incident response, concept of operations mitigation plan, incident response, PTO, Arlington, Virginia, on-site, onsite, on site, benefits, 401k, medical, homeland security, DOD, ci polygraph, counterintelligence, cyber intelligence, cyber investigation, cybersecurity investigation, PTO, technical writing, technical writer, business analyst, technical analyst, technology write, air force, digital forensics, project management, jira, army, military, Patrick space force base, Patrick SFB, SFB, Lompoc, California, CA, cocoa beach, satellite beach, space, research, technology research, technical investigations, secret clearance, ts/sci, top secret, ts, secret clearance, dod, clearance, clearance, cloud project, aws, azure, veterans, retired veterans, #LI-AC3