- Use cyber defense tools to monitor, detect, analyze, categorize, and perform initial triage of anomalous activity.
- Generate cybersecurity cases (including event's history, status, and potential impact for further action) and route as appropriate.
- Leverage knowledge of commonly used network protocols and detection methods to defend against related abuses.
- Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, nonrepudiation).
- Perform advanced manual analysis to hunt previously unidentified threats.
- Conduct PCAP analysis.
- Identify cyberattack phases based on knowledge of common attack vectors and network layers, models and protocols.
- Apply techniques for detecting host and networkbased intrusions.
- Working knowledge of enterpriselevel network intrusion detection/prevention systems and firewall capabilities.
- Understand the foundations of a hardened windows network and what native services and protocols are subject to abuse (such as RDP, Kerberos, NTLM, WMI, and SMB).
- Familiarity with fragmentation of network traffic and how to detect and evaluate fragmentation related attacks in raw packet captures.
- Conduct network – traffic, protocol and packetlevel – and netflow analysis for anomalous values that may be securityrelevant using appropriate tools (such as Wireshark, tshark, tcpdump).
- Understand snort filters and how they are crafted and tuned to feed IDS alerting.
- Understand system and application security threats and vulnerabilities to include buffer overflow, SQL injection, race conditions, covert channel, replay and returnoriented attacks, malicious code and malicious scripting.
- Analyze malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information.
- Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack.
- Familiar with indications of Command and Control (C2) channels and what strategies attackers use to bypass enterprise defenses from a compromised host.
- Four (4) years of demonstrated experience as Cyber Defense Analyst. (A technical bachelor's degree from an accredited college or university may be substituted for two (2) years of experience).
- One (1) year of demonstrated and practical experience in TCP/IP fundamentals.
- One (1) year of demonstrated experience with Bricata, tcpdump or Wireshark.
- Two (2) years of demonstrated experience using security tools such as Splunk, ArcSight, Kibana, LogRhythm.
- Two (2) years of demonstrated experience maintaining or managing Cloud environments such as Microsoft Azure, Amazon Web Services (AWS), using tools like Microsoft Sentinel.
- We really do consider employees first in decisions. It is hard enough to work through the personal/social/technical hurdles that come with your position as a cleared defense contractor no need to fight your own employer's red tape as well.
- We offer a compensation package that is more than just commensurate with this closed contractor community. We offer generous benefits (PTO, training support, etc) in addition to the high salaries. We know that you know salary isn't everything.
- SecureTech is an Equal Opportunity Employer – we hire the right people for the job regardless of employment status such as female, minority, protected veterans, individuals with disabilities, etc.
-
Cyber Defense Analyst 2
1 week ago
iNovex Information Systems San Antonio, United States· Job Brief · iNovex is seeking Cyber Defense Analysts to support a program within iNovex's Next-Gen portfolio. · Job Description · We're searching fortalented individuals who provide intelligence, assessment & analysis, and mission management expertise for the Government.Thi ...
-
Cybersecurity Network Defense Analyst
2 weeks ago
CACI International San Antonio, United StatesCybersecurity Network Defense Analyst - Night Shift · Job Category: Information Technology · Time Type: Full time · Minimum Clearance Required to Start: TS/SCI · Employee Type: Regular · Percentage of Travel Required: Up to 10% · Type of Travel: Continental US · * * * · W ...
-
Cyber Protection Team
1 week ago
COLSA San Antonio, United StatesGeneral Summary: · Performs Host and/or Network Cyber Protection Team duties for a DoD client, to include CND, CNE, and CNA. · Principal Duties and Responsibilities: · COLSA Corporation is seeking candidates for a Cyber Protection Team Network/Host Cybersecurity Analyst. The c ...
-
Cyber Threat Emulation
1 week ago
Bristol Bay Native San Antonio, United States Full timeSTS Systems Support, LLC. (SSS) is seeking a Cyber Threat Emulation & Analyst · DoDD ‐M/ I AT Level III CND · Active TS/SCI · Five years' of penetration testing experience. BA/BS or MA/MS · Five (5) years of penetration testing experience. · Demonstrated advanced knowledge of ...
-
RMF Cyber Analyst
1 week ago
OASYS, INC. San Antonio, United StatesRMF Cyber Analyst · OASYS, INC., a Leading-Edge Government contractor, is seeking applicants for an RMF Cyber Analyst position to support our Army customer in San Antonio, Texas. · Position Description: The successful candidate will provide Information Assurance (IA) and Cyber Se ...
-
Technical Writer
4 days ago
E-Solutions San Antonio, United StatesJOB DESCRIPTION · As a technical writer focused on Cyber and Physical Security you will analyze, review, and research current business practices and industry benchmarks to create easily accessible internal policies, procedures, and assorted documentation for the client's Integrat ...
-
Emerging Threats Analyst
2 days ago
Bristol Bay Native San Antonio, United States Full timeSTS Systems Support, LLC. (SSS) is seeking an Emerging Threats Analyst · Requirements: · DoDD ‐M/ I AT Level III CND · Active TS/SCI · Formal intelligence analysis training and government experience. · BA/BS or MA/MS · Formal Intelligence Analysis training and government ex ...
-
Lead Cybersecurity Instructor
4 days ago
NukuDo San Antonio, United StatesWHO WE ARE · As a cybersecurity talent development company, we believe that cybersecurity is not just a profession, it is a mission. This propels our dedication to transforming aspiring individuals who can contribute towards building a safer cyber space. · Inclusivity and diversi ...
-
Technical Writer
4 days ago
Apex Systems San Antonio, United StatesTitle: SOC / Cyber Security / Physical Security Technical Writer · Contract: 1 year · Location: Onsite in San Antonio (hybrid schedule) · As a technical writer focused on Cyber and Physical Security you will analyze, review, and research current business practices and industry be ...
-
Risk Control Analyst Sr
1 week ago
Apex Systems San Antonio, United States ContractJob#: · Job Description: · Number of positions: 1 · Assignment Start Date: As soon as the BC's clear · Assignment End Date: 9/30/2022 · Job Title · Risk (Control) Analyst Sr. · Location · San Antonio · Job Description: · Business risk and controls advisor to support our en ...
-
Mid Level Financial Management Analyst
1 week ago
Apex Systems San Antonio, United States ContractJob#: · Job Description: · Job Title : Financial Management Analyst · Client Details : DoD · Role Type : 6 month contract to hire · Clearance Required : Active DoD Top Secret Clearance · Shift : M-F standard 40-hour work weeks · Location : Onsite at Lackland Air Force Base · ...
-
USAA San Antonio, United States Full timeThe Opportunity · The Credit Risk Review (CRR) group is responsible for independently evaluating credit risks of exposures from both lending and non-lending activities to opine upon the effectiveness of first and second lines of defenses' credit risk management practices and cr ...
-
Senior Software Developer
3 weeks ago
Idea Entity San Antonio, Texas, United States ContractPay Status: Salary, W2 of Idea Entity · Position: Senior Software Developer · Job Family: Exempt · Client: Defense Health Agency (DHA) · Work Location: Hybrid, San Antonio, TX – JBSA Fort Sam Houston · Daily schedule: 40 hours per week, standard business hours · Expected Pay Rate ...
-
TACEVAC Sr. Data Analyst
5 days ago
Knowesis San Antonio, United StatesPosition: TACEVAC Sr. Data Analyst · Location: Joint Base San Antonio · Work Environment:Onsite · Clearance Required:Secret · Knowesis is looking for a TACEVAC Sr. Data Analyst to support the Defense Health Agency Joint Trauma System (JTS). The Sr. Data Analyst will support J ...
-
Network/Host Cyber Security Analyst
5 days ago
COLSA San Antonio, United States4/7/2021 · Network/Host Cyber Security Analyst (TS/SCI required) · Tracking Code Job Description **General Summary:** · Performs Cyber Protection Team duties for a DoD client, to include CND, CNE, and CNA. · **Principal Duties and Responsibilities (*Essential Functions):** CO ...
-
CNO Analyst Programmer
4 weeks ago
ACES, Incorporated San Antonio, United StatesJob Title: · CNO Analyst Programmer · Overview: · EverWatch is a government solutions company providing advanced defense, intelligence, and deployed support to our countrys most critical missions. We are a full-service government solutions company. Harnessing the most advanced ...
-
CNO Analyst/Programmer
1 day ago
ACES, Incorporated San Antonio, United StatesJob Title: · CNO Analyst/Programmer · Overview: · EverWatch is a government solutions company providing advanced defense, intelligence, and deployed support to our countrys most critical missions. We are a full-service government solutions company. Harnessing the most advanced ...
-
CALIBRE Systems, Inc. San Antonio, United StatesCALIBRE Systems, Inc., an employee-owned Management consulting and information technology services company, is looking for a Environmental Acquisition Program Analyst to support the U.S. Air Force Civil Engineer Center (AFCEC) Performance Based Remediation (PBR) team. PBR team de ...
-
Systems Analyst III
1 week ago
MEI Technologies San Antonio, United StatesOverview · Aegis Aerospace invites qualified individuals to apply for a rewarding full-time position as a Systems Analyst III (Top Secret) within our esteemed Cyber/Crypto team based at Lackland Air Force Base in San Antonio, TX. To be eligible for consideration, candidates must ...
-
LEAD ANALYST
3 weeks ago
Southwest Research Institute San Antonio, United StatesWho We Are: · SwRIs Defense & Intelligence Solutions / RF Sensors and Systems Department presents an unparalleled opportunity for Principal Machine Learning Operations (MLOps) position to engage in some of the most stimulating and impactful work that combines both MLOps and DevO ...
Cyber Defense Analyst - San Antonio, United States - Secure Technologies Group
Description
This position requires a current TS/SCI clearance with polygraph.This opportunity is in San Antonio, TX
Let's make a positive impact on U.S. National Security
We are building a World-Class, distributed, Cyber Incident Response Center - want to be a part of it?
SecureTech Cyber Defense Analysts make a difference every day in support of the nation's Intelligence Community:
We use information collected from a variety of sources to monitor network activity and analyze it for evidence of anomalous behavior.
We Identify, triage, and report events that occur to protect data, information systems, and infrastructure.We find trends, patterns, or anomaly correlations utilizing security-relevant data. We recommend proactive security measures.
Our Analysts conduct analysis to isolate indicators of compromise and notify designated managers, cyber incident responders, and cybersecurity service provider team members of suspected cyber incidents.
As a SecureTech Cyber Defense Analyst these are the types of skills and capabilities you will use
Certifications required include:
Don't have all these certs? Apply anyway We can work with you
DoD 8570 CSSP Analyst Baseline (CEH, CySA+, CCNA-Security, CHFI, etc)
DoD 8570 IAT Level 2 (Sec+, CySA+, CCNA-Security, etc)
DoD 8570 Computing Environment (MS Windows, Linux, CentOS, ServiceNow, etc)
SPLUNK Fundamentals 1
SCADA certification (GICSP - Global Industrial Cyber Security Professional or GRID - Global Response and Industrial Defense)
Why come to the SecureTech family?
Apply now
Multiple positions are awaiting your expertise
Resume to
Cyber Defense Analyst professionals in San Antonio
-
John Denny
Lead Trainer and Information Assurance Engineer
-
curtis rhodes
Senior Network Security Engineer/ISSO
-
Jason Portillo
Cyber Program Manager