- Analyzes trends and patterns of data on NGA networks to identify and predict previously undiscovered events and incidents, and develop or tune rules/signatures/scripts as needed;
- Coordinates with other Cybersecurity Operations to develop or tune rules/signatures/scripts;
- Coordinates with other Cybersecurity Operations Services to investigate and obtain information about potential sources of compromise on NGA systems, and develop or tune rules/signatures/scripts as needed;
- Correlates and analyzes precursors to incidents, and develops or tunes rules/signatures/scripts as needed;
- Improve SIEM alert efficiency through evaluation of valid alerts and false positives, and develop or tune rules/signatures/scripts as needed;
- Assists the Cyber Incident Response Team by assessing ongoing incident activity to predict adversary responses and locations of compromise;
- Documents all work in the authorized ticketing system with a sufficient level of detail to ensure the Government and other contract services can systematically reconstruct the analysis;
- Provide input to the daily CSOC Significant Activity Report, the daily CSOC Operations Update, and the Weekly CSOC Status Report;
- Must be a US Citizen with an Active TS/SCI.
- 8+ years of related advanced cyber security analytics work experience.
- Must have a certification that is compliant with DoD and DoD M IAT Level III and CSSP Analyst.
- Experience with data mining or building queries in a SIEM.
- Strong understanding of signature development and tuning.
- Strong understanding of network protocols and analysis with protocol analyzers.
- Knowledge of static file signatures, i.e. "magic numbers" and how they apply to developing countermeasures for files in transit and that reside locally on a host.
- Good working knowledge of regular expressions.
- Comfortable in a hex editor.
- Ability to write Python/bash/PowerShell scripts.
- Ability to analyze each use case, as it pertains to detection logic, and identify the corresponding capability.
- Good understanding of Purple Team Tactics.
-
Cybersecurity Countermeasures Developer
6 days ago
CACI International Inc St. Louis, United States Full timeCybersecurity Countermeasures DeveloperJob Category: Information TechnologyTime Type: Full timeMinimum Clearance Required to Start: TS/SCIEmployee Type: RegularPercentage of Travel Required: Up to 10%Type of Travel: Local* * * CACI IS THE WINNER of a long-term prime contract wi ...
-
HVAC General Manager
3 weeks ago
Gpac St. Louis, United States Full timeThis is an opportunity with a rapidly growing full-service HVAC company offering mechanical new construction services. Due to our ongoing growth, we are actively seeking to hire a General Manager to help us to provide our builder clients with world-class service. The purpose of t ...
-
Security Architect
2 days ago
Adaptive Technology Insights St Louis, United StatesJob Summary: We are seeking a skilled Security Architect with specialized experience in Secure Access Service Edge (SASE) to join our team. The Security Architect with SASE Experience will play a critical role in designing, implementing, and optimizing our organization's SASE arc ...
-
Performance Improvement Consultant
4 days ago
Barnes-Jewish Hospital St. Louis, United States Full timeJob Description · Additional Information About the Role Remote opportunity alert (Must live in MO or IL) Join BJC as a Performance Improvement Consultant. Seeking candidates with data analytics experience. Clinical background and SQL skills are a bonus Overview Barnes-Jewish Hosp ...
-
Vulnerability Assessment Analyst
1 week ago
CALIBRE St. Louis, United StatesCALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Vulnerability Assessment Analyst (Mid-level) that will perform assessments of systems and networks within a Government enclave and identify where those systems/networks d ...
-
Lead Network Engineer
1 week ago
Build-A-Bear Saint Louis, United StatesJob Description · Job DescriptionAt Build-A-Bear we believe in the power of imagination, creativity, and memorable experiences. Our mission is to add a little more heart to life by creating unique experiences, lasting connections, and beloved memories that create lasting emotiona ...
-
CI Cyber Threat Analyst
2 weeks ago
Parsons Corporation St. Louis, United States Full timeDescription · : Parsons is looking for a talented Counter-Intelligence Cyber Threat Analyst to join our growing team · What You'll Be Doing : · Produce actionable Technical CI (Cyber) threat reports in collaboration with teammates, NGA partners and intelligence community peers. ...
-
TSCM Specialist
2 weeks ago
Parsons Company St Louis, United StatesIn a world of possibilities, pursue one with endless opportunities. Imagine Next · When it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with intelligent, diverse people sharing a common quest. Imagine a workplac ...
-
Cloud Network Engineer
4 days ago
Advantage Solutions St Louis, United States**Summary** · **Cloud Network Engineer** · At our Company, we grow People, Brands, and BusinessesWe are seeking a talentedNetwork and security engineering position responsible for implementing and supporting a wide range of technology solutions. This position requires a vast kn ...
-
Assistant Maintenance Manager 1
3 days ago
Magna International Inc. St. Clair, United StatesGroup Description · Cosma provides a comprehensive range of body, chassis and engineering solutions to global customers. Through our robust product engineering, outstanding tooling capabilities and diverse process expertise, we continue to bring lightweight and innovative product ...
-
Stellar Innovations Collinsville, United StatesAre you passionate about contributing your own ideas to projects? Come join one of the largest engineering firms in Germany. Our team offers exciting tasks and various opportunities for professional and personal development. Help us with the modernization and maintenance of our r ...
-
Azure - Senior Information Security Engineer
3 weeks ago
Core & Main St Louis, United StatesJob Description · Job Summary · Responsible for leading several Information Security service areas - Azure. Service area leaders are expected to be technical experts in the areas for which they have primary responsibility. · Major Tasks, Responsibilities and Key Accountabiliti ...
-
Senior Project Manager
3 weeks ago
STERIS Canada Corporation St Louis, United StatesSelect how often (in days) to receive an alert: · Job Title: · Senior Project Manager (Manufacturing) · Description: · At STERIS, we help our Customers create a healthier and safer world by providing innovative healthcare and life science product and service solutions around t ...
-
Inventory Control Manager
1 day ago
Ryder Hazelwood, United States**Current Employees:** · If you are a current employee at Ryder (not a Contractor or temporary employee through a staffing agency), please click to log in to Workday to apply using the internal application process. To learn how to apply for a position using the Career worklet, p ...
-
Production Supervisor
3 weeks ago
Eaton Highland, United StatesEatons B-Line division is currently seeking a Production Supervisor - 3rd Shift. · The expected annual salary range for this role is $ $ a year. · Please note the salary information shown above is a general guideline only. Salaries are based upon candidate skills, experience, a ...
-
SIOP Analyst
1 month ago
nVent St Louis Park, United States Full timeWe're looking for people who put their innovation to work to advance our success - and their own. Join an organization that ensures a more secure world through connecting and protecting our customers with inventive electrical solutions. · Connected to the Business You will be clo ...
-
SIOP Analyst
1 month ago
nVent St. Louis Park, United States Regular, Full timeWe're looking for people who put their innovation to work to advance our success - and their own. Join an organization that ensures a more secure world through connecting and protecting our customers with inventive electrical solutions. · Connected to the BusinessYou will be clos ...
Cybersecurity Countermeasures Developer - St. Louis, United States - CACI
Description
Cybersecurity Countermeasures DeveloperJob Category: Information TechnologyTime Type: Full timeMinimum Clearance Required to Start: TS/SCIEmployee Type: RegularPercentage of Travel Required: Up to 10%Type of Travel: Local* * *CACI IS THE WINNER of a long-term prime contract with the National Geospatial-Intelligence Agency (NGA) for Transport & Cybersecurity Services (TCS) contract. The functional capabilities are to provide the information technology (IT) infrastructure services required to deliver timely, relevant, and accurate support of national security. TCS will provide innovative design, engineering, procurement, implementation, operations, sustainment, and disposal of transport and cybersecurity IT services on multiple networks and security domains, at multiple locations worldwide to support the NGA mission.
In this role, we're seeking a Cybersecurity Countermeasures Developer who could potentially be located in either Springfield, VA or Saint Louis, MO.
Reporting to the Lead of Focused Operations, under the Branch Chief of Defensive Cyber Operations, you will be tasked with developing and maintaining defensive countermeasures for the enterprise. Working within a Fusion model will collaborate with other teams within Focused Operations with the distinct task of proactively preventing a successful compromise and eradicating persistent adversaries already in the enterprise. This will be done through various means such as: reviewing future and past intelligence reports, reviewing incident reports, through regular Purple Teaming exercises, and continuously validating Defensive Countermeasures already deployed.
What You'll Get to Do:
More About the Role:
You'll Bring These Qualifications:
These Qualifications Would Be Nice to Have:
What We Can Offer You:
- We've been named a Best Place to Work by the Washington Post.
- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
- We offer competitive benefits and learning and development opportunities.
- We are mission-oriented and ever-vigilant in aligning our solutions with the nation's highest priorities.
- For over 60 years, the principles of CACI's unique, character-based culture have been the driving force behind our success.
Company Overview:
CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.
Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn morehere
Since this position can be worked in more than one location, the range shown is the national average for the position.
The proposed salary range for this position is:
$68,400-$143,700
