- Review DoD and open source intelligence for threats and to identify Indicators of Compromise (IOCs) and integrate those into sensors and SIEMs
- Utilize alerts from endpoints, IDS/IPS, netflow, and custom sensors to identify compromises on customer networks/endpoints
- Review massive log files, pivot between data sets, and correlate evidence for incident investigations
- Triage alerts to identify malicious actors on customer networks
- Report incidents to customers and USCYBERCOM
- Bachelors Degree and 8+ years of prior relevant experience; additional work experience or Cyber courses/certifications may be substituted in lieu of a degree.
- Demonstrated understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
- Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings
- DoD 8570 IAT level II or higher certification such as CompTIA Security+ CE, ISC2 SSCP, SANS GSEC prior to starting.
- DoD 8570 CSSP-A level Certification such as CEH, CySA+, GCIA or other certification is required within 180 days of hire.
- Demonstrated commitment to training, self-study and maintaining proficiency in the technical cyber security domain and an ability to think and work independently
- Bachelor's degree and less than 2+ years of prior relevant experience; additional work experience or Cyber courses/certifications may be substituted in lieu of degree.
- Strong analytical and troubleshooting skills
- Willing to perform shift work
- Must be a US Citizen
- Must have an active DoD TOP Secret security w/ SCI clearance eligibility.
- CND experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization.
- Demonstrated understanding of the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
- Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
- Demonstrated hands-on experience analyzing high volumes of logs, network data (e.g. Netflow, Full Packet Capture), and other attack artifacts in support of incident investigations.
- In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. ArcSight, Splunk, Nitro/McAfee Enterprise Security Manager, QRadar, LogLogic).
- Experience and proficiency with any of the following: Anti-Virus, HIPS/HBSS, IDS/IPS, Full Packet Capture, Network Forensics.
- Experience with malware analysis concepts and methods.
- Unix/Linux command line experience.
- Scripting and programming experience.
- Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings
- Familiarity or experience in Intelligence Driven Defense and/or Cyber Kill Chain methodology.
- Existing 8570 CSSP Analyst Certifications (CEH), CySA+ etc.
-
SAP Security Analyst
4 days ago
SAIC Arlington, United StatesJob ID: · **Location**:ARLINGTON, VA, US · **Date Posted**: · **Category**:Security · **Subcategory**:Security · **Schedule**:Full-time · **Shift**:Day Job · **Travel**:No · **Minimum Clearance Required**:TS/SCI · **Clearance Level Must Be Able to Obtain**:None · **Potential fo ...
-
Security Analyst
1 week ago
Synchron, LLC Washington, United States**Responsibilities**: · - Draft Security Classification Guides (SCGs) in accordance with DoD Manual Volume 1: DoD Information Security Program Overview and DoD Manual Instructions for Developing Security Classification Guides. · - Participate in program and project planning effor ...
-
Security Analyst
1 week ago
Peraton Washington, United States**About Peraton** · **Responsibilities** · Ensures that security policies, procedures, and directives of the National Industrial Security Program Operating Manual NISPOM DCID 6 3 and JAFAN 6 3 manuals are followed. Maintains the oversight and compliance of existing information sy ...
-
Information Security Analyst
1 week ago
MUNICIPAL SECURITIES RULEMAKING BOARD Washington, United StatesThe Information Security Analyst is responsible for securing the MSRB by supporting existing controls and processes across multiple dimensions and domains, including MSRB Web Applications, Cloud environments, networks, SaaS platforms, and enterprise systems. The analyst will supp ...
-
Information Security Analyst
1 week ago
E-Logic, Inc. Washington, United StatesThe job position is for an experienced Information Security Analyst at the Department of Homeland Security (DHS), as a part of the agency's cybersecurity team. The Information Security Analyst will take the utmost explanation concerning DHS' systems, networks, and data by way of ...
-
Information Security Analyst
1 week ago
RightDirection Technology Solutions Washington, United States: · An Information Security Analyst is needed to support the Dept of State customer base and will work as a member of the Global Talent Management (GTM Help Desk) in Washington, DC. This role is full-time, standard work week and hours, and hybrid (one week a month onsite). · Basi ...
-
Information Security Analyst
1 day ago
Computer World Services Washington, United StatesThe Threat Hunt (TH) Lead oversees a team responsible for proactively assessing data collected from various cyber defense tools to analyze events within organizational environments for identifying and mitigating threats. This role requires a deep understanding of cyber threats, a ...
-
Lead Security Analyst
1 week ago
The Best Talent Services, Inc. Washington, United States**Lead Security Analyst** · **Minimum of 3-5 Years**: · **- Experience in development of ATO packages** · **- Experience in writing, assessment and validation of the control implementation statements based on NIST 800-53** · **- Experience in overseeing the development of System ...
-
Regional Cyber Security Analyst
1 week ago
Peraton Arlington, United States**About Peraton** · **Responsibilities** · Peraton is looking for a **Regional Cyber Security Officer** (RCSO) to become part of Peraton's Department of State (DOS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enab ...
-
Info Security Analyst
1 week ago
Bank of America Washington, United StatesAt Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. · One of the keys t ...
-
Nuclear Security Analyst
3 days ago
ANSER Washington, United StatesOVERVIEW: · ANSER enhances national and homeland security by strengthening public institutions. We provide thought leadership for complex issues through independent analysis and we deliver practical, useful solutions. ANSER values collaboration, integrity, and initiative and we a ...
-
SOC Cyber Security Analyst
1 week ago
General Dynamics Information Technology Falls Church, United StatesType of Requisition: · Regular · Clearance Level Must Currently Possess: · Secret · Clearance Level Must Be Able to Obtain: · Secret · Suitability: · Public Trust/Other Required: · Job Family: · Information Security · Job Qualifications: · **Skills**:Cyber Defense, Cybersecurity, ...
-
Threat Investigator- Security Analyst
1 week ago
Meta Washington, United States**Threat Investigator · - Security Analyst Responsibilities**: · - Investigate complex influence operations to understand how abuse manifests on Meta's platforms and the wider information ecosystem. · - Lead a portfolio of investigative research to include identifying abuse trend ...
-
Cyber Security Analyst/soc
4 days ago
Bering Straits Native Corporation (BSNC) Washington, United StatesOverview: · - Job specifications are intended to present a descriptive list of the range of duties performed by employees. Specifications are _not_ intended to reflect all duties performed within the job._ · **SUMMARY** · The goal of the Security Operations Center (SOC) team is t ...
-
Junior Information Security Analyst- Remote
1 week ago
Sierra7 Falls Church, United States**_Why Join Sierra7?_** · **_ Benefits:_** · - Medical/Dental/Vision · - FSA (Flexible Spending Account) · - HSA (Health Savings Account) · - Life Insurance, Voluntary Life Insurance, Voluntary Short · - and Long-Term Disability · - Additional Supplemental Medical Benefits · - Cr ...
-
Booz Allen Washington, United StatesTechnology Security and Cooperative Program Analyst · **The Opportunity**: · As a Technology Security and Cooperative Program Analyst, you ask questions others don't. You understand the nuances of complex situations. You use your skills to think bigger and push further, solving c ...
-
Security Analyst
4 days ago
The Tatitlek Corporation Arlington, United StatesThis Security Analyst works with the current Security team to support program activities and processes. The Personnel Security & Suitability Security Analyst should be familiar with all aspects of industrial, information, insider threat, communicatio Security Analyst, Security, A ...
-
Security Analyst
1 week ago
Argo Cyber Systems Arlington, United StatesJob Description · Job DescriptionARGO Cyber Systems is seeking a Cyber Security Incident Responder · ARGO is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environme ...
-
Cyber Security Analyst 1
1 week ago
M.C. Dean, Inc. Tysons, United StatesAs a **Cybersecurity Analyst **on our** **cross-discipline information technology team, you will play a crucial role in protecting M.C. Dean's information technology assets associated with mission critical enterprise systems and cloud service offerings managing information for th ...
-
Security Analyst with Security Clearance
1 week ago
The Tatitlek Corporation Arlington, United StatesOverview This Security Analyst works with the current Security team to support program activities and processes. The Personnel Security & Suitability Security Analyst should be familiar with all aspects of industrial, information, insider threat, communication, personnel, operati ...
Cyber Security Analyst - Arlington, United States - Leidos
Description
Leidos has a current job opportunity for a Cyber Security Analyst on the DISA GSMO-II program in the Washington DC Area.
Position Summary:
This position provides 24x7 cybersecurity monitoring and analysis services for Department of Defense networks above the SECRET level.
This includes performing real-time cyber threat intelligence analysis, correlating actionable security events, performing network traffic analysis using raw packet data, and participating in the coordination of resources during the incident response process.
Primary Responsibilities:
Basic Qualifications:
Preferred Qualifications:
Original Posting Date:
While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:
Pay Range $101, $183,300.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary.
Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
REQNUMBER:
R OTHLOC-PL-2D2356
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.
&v=024){kind=logo}
