- Help define requirements and identify gaps for performing remote compromise assessments
- Perform as a senior analyst and liaison between the customer and ESOC while performing remote assessments
- Conduct malware analysis using static and dynamic methodologies (e.g
- Produce malware reports to disseminate to the watch floor and enterprise
- Capture forensic artifacts such as memory and disk images
- Work with the Splunk team to implement, enhance, or change existing use cases
- Pivot on the forensic data working with the Cyber Threat Intelligence team to determine if the malware is part of a larger campaign, how DHS is being targeted and take any further remediation required
- Lead remote compromise assessments and produce final assessment report
- Perform live box and dead box forensics to identify compromise and attack vector
- Provide input for SOC improvement and identify visibility gaps for enterprise monitoring
- Deploy and configure network sensors (Suricata), manage Linux VMs (Security Onion, Ubuntu, CentOS), and maintain a small network
- Potentially travel to other DHS locations (1-3 times/year) to support Incident Response investigations
- Develop and maintain SOPs and ROE templates Basic Qualifications
- SANS GIAC:GCIA, GCFA, GPEN, GWAPT, GCFE, GREM, GXPN, GMON, GISF, or GCIH
- Defense Cyber Investigative Training Academy: FTK WFE-FTK, CIRC, WFE-E-CI, FIW Preferred Qualifications
- Experience in supporting malware analysis and forensics in cyber operations, and/or federal law enforcement.
- Understand and utilize Threat Intel Frameworks (e.g
- Network tool (e.g
- Hands-on experience with Enase, FTK, FireEye HX, volatility, Security Onion, Suricata, Gigamon, VMWare ESXi, Splunk
- Signature (e.g
- Expert knowledge in host-based analysis/forensics
- Proficient in performing timeline analysis and extracting artifacts from digital media
- Experienced reverse engineering and analyzing malware and developing a malware analysis report
- Ability to perform in-depth network forensics
- Develop and implement hunt methodologies for fly away assessments and for the SOC
- Proficient in one more of the following computer languages Python, Bash, Visual Basic or Powershell in order to support cyber threat detection or reporting
- Extensive knowledge about network ports and protocols (e.g
- Experienced with network topologies and network security devices (e.g
- Proficient working in a Windows and Linux operating system Potential for Telework: YES
-
Security Specialist with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
RAND Corporation Washington, DC, United StatesJob Type: Regular Security Specialist The RAND Corporation seeks a Security Specialist who will be responsible for implementing RAND security policies and procedures related to information, personnel, physical security, and safety · This position will report to the Manager, Indus ...
-
Driver with Clearance with Security Clearance
Found in: Careerbuilder One Red US C2 - 2 days ago
Vistra Communications, Llc Washington, DC, United StatesVistra is seeking a driver to provide executive transportation, special messenger, and burn run services to the Department of Homeland Security (DHS), U.S · Immigration and Customs Enforcement (ICE), Asset Management Division (AMD) · The geographic coverage for this requirement i ...
-
Security Engineer with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
NAIS Washington, DC, United StatesContract/Location: National Capital Region / Pensacola, FL Overview: · NAIS LLC is seeking an experienced Security Engineer to provide services on a contract supporting a U.S · Government agency · The ideal candidate will have excellent problem-solving and communications skills a ...
-
Security Engineer with Security Clearance
Found in: Dice One Red US C2 - 19 hours ago
Marathon TS Inc Washington, DC, United StatesJob Overview Marathon TS are looking for an Security Engineer to join our team on an effort supporting our Federal Government Client in Washington, D.C.The ISSE will be part of a team that supports mission critical applications with both obtaining and maintaining Authorization to ...
-
Security Specialist with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
IntePros Federal Washington, DC, United StatesWho We Are: IntePros Federal, is a Service-Disabled, Veteran Owned, Small Business (SDVOSB), headquartered in Washington DC, providing IT solutions, systems, and software services to multiple federal government agencies · We specialize in the areas of IT solutions, application de ...
-
Security Engineer with Security Clearance
Found in: Dice One Red US C2 - 3 days ago
Zeneth Technology Partners, LLC Small Business Admin, United StatesSecurity Engineer · Washington D.C. / Hybrid We are seeking a Senior Security Engineer to join our team in support of a Security Operations Center that supports our client in Washington D.C. The ideal candidate will have experience working in a network security environment, such ...
-
Security Engineer with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
MetroStar Systems Inc. Washington, DC, United StatesMetroStar Systems is looking for a Security System/Information Assurance Engineer who is · passionate about network and data security · You must have strong communication and · leadership skills to interact with client business leaders, stakeholders, and other senior level · exec ...
-
Security Specialist with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
Mayvin, Inc Washington, DC, United StatesMayvin is seeking a Security Specialist to support the United States Navy in administrating the PMS 408 Naval Expeditionary Programs (EXM) Professional Support Services program · PMS 408 requires services to support the research, development, acquisition, and support of several p ...
-
Security Engineer with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
E-InfoSol LLC Washington, DC, United StatesE-INFOSOL LLC is seeking a highly motivated Security Engineer to be a Full-time employee in Washington, DC · Come join a team that collaborates across the entire organization to bring the right solution to our customers and drive innovation · Job Description: The Security Enginee ...
-
Security Specialist with Security Clearance
Found in: Careerbuilder One Red US C2 - 2 days ago
Department of the Navy Washington, DC, United StatesSummary You will serve as the Section Head Security Specialist in the Mission Support Division, Code of NAVAL RESEARCH LABORATORY · Duties · • You will analyze organizational processes to improve program effectiveness. · • You will supervise Visitor Control Staff and Operations. ...
-
Security Engineer with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
Source Moon Consulting, LLC Washington, DC, United States: ECS is seeking a passionate Security Engineer with strong project management experience to support a rapidly growing Data Analytics and Business Intelligence platform focused on providing data solutions that empower our Federal customers · As a Security Engineer, you will ensur ...
-
Security Specialist with Security Clearance
Found in: Careerbuilder One Red US C2 - 2 days ago
Department of Defense Washington, DC, United StatesDuties · • You will analyze organizational processes to improve program effectiveness. · • You will supervise Visitor Control Staff and Operations. · • You will advise installation security specialist and agency officials on Personnel Security and suitability requirements. · • Yo ...
-
Security Administrator with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
Alutiiq, LLC Washington, DC, United StatesThe Security Systems Administrator will be responsible for Maintenance and Programming services for the electronic and mechanical security systems and hardware (including Intrusion Detection, Video Monitoring & Access Control) for an Electronic Security Systems (ESS) Sustainment ...
-
Security Engineer with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
Base One Technologies Washington, DC, United States: As a Security Engineer, you will help ensure the security of agency's human capital technology solution and the privacy of its customers · Combining security and system engineering backgrounds, you will manage the proper configuration of business processes to align with Agency ...
-
Custodian with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
New Age Protection Inc. Washington, DC, United States*This position requires an active TS / SCI security clearance.* Shift: Full-Time, Monday-Friday, Responsibilities: · -Ensuring that the areas are prepared for the following day by dusting surfaces, tidying furniture, and taking out the trash. · -Vacuum carpets and sweep/mop floor ...
-
Security Engineer with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
Anonymous Employer Washington, DC, United StatesOur DC metro based client is looking for a Senior Security Engineer · If you are interested in this opening, please forward a copy of your updated resume in word format · Thank you · Must Have One of the Following J3 Certifications: · CASP, GCIH, GCWN, GISF, GISP, GSSP, GICSP, GS ...
-
Security Engineer with Security Clearance
Found in: Dice One Red US C2 - 1 day ago
Experis Washington, United StatesAs a Security Engineer specializing in Vulnerability Mitigation and Intelligence, you will be responsible for devising and implementing effective strategies to mitigate vulnerabilities, enhance cybersecurity defenses, and provide actionable intelligence. Your expertise will be cr ...
-
IT Security Analyst with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
Rividium, Inc Washington, DC, United StatesTitle IT Security Analyst Full-Time/Part-Time Full-Time Description Rividium, Inc (dba TripleCyber) is seeking IT Security Speicalist to provide Secure Communications Support Services to the Under Secretary of Defense for Intelligence & Security (I&S)) is the principal staff assi ...
-
ISSO with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
Anonymous Employer Washington, DC, United StatesSenior ISSO · Washington, DC - Hybrid $140k + bonus My client is looking for a Senior ISSO to be on site in a hybrid role · This position requires someone with an active top secret clearance, to be considered for this role you need experience with the following: Required: TS Clea ...
-
Carpenter with Security Clearance
Found in: Dice One Red US C2 - 16 hours ago
Cooper Building Services LLC Washington, United StatesOur company is seeking a skilled and experienced Carpenter to join our team. The ideal candidate will have at least three years of experience in carpentry, with a strong background in construction and renovation projects in secure or classified sites. As a Carpenter for Secure/Cl ...
Our DC based client is looking for Cyber Forensics and Malware A with Security Clearance - Washington, DC, United States - Base One Technologies
Description
Our DC based client is looking for Cyber Forensics and Malware AnalystIf you are qualified for this position, please email your updated resume in word format to The Cyber Forensics and Malware Analyst (CFMA) team provide support during core business hours (7am – 7pm), Monday thru Friday
Flexible start times are considered
Participates in rotating on call schedule
Primary Responsibilities
Requires a minimum of a Bachelors degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field AND eight (8) years of professional experience in incident detection and response, malware analysis, or cyber forensics.
Of the eight (8) years of professional experience requirements above, Cyber Forensics and Malware Analyst candidates shall have at least one (1) of the following specialized experience for their position:Digital Media Forensics Analyst:
Candidates shall have a minimum of five (5) years of professional experience performing digital media forensic analysis, static malware code disassembly/analysis, and/or runtime malware code analysis.
Incident Response Analyst:
Candidates shall have a minimum of five (5) years of professional experience responding to information system security incidents
Ability to use the DHS furnished toolset to identify and determine root causes of incidents and provide any required documentation and possible evidence to security investigators
Must have TS/SCI
In addition to specific security clearance requirements, all Department of Homeland Security SOC employees are required to obtain an Entry on Duty (EOD) clearance to support this program
Must have at least one of the following certifications:
ISC2:
CCFP, CCSP, CISSP CERT CSIH
EC Council:
CHFI, LPT, ECSA
Offensive Security:
OSCP, OSCE, OSWP and OSEE
EnCase:
EnCE
Clearance Level Required:
Top Secret/SCI
Travel:
No
Scheduled Weekly Hours: 40 Shift: Day