By Light Professional IT Services

  • Cyber Countermeasures Analyst (TS/SCI)

    Job Locations US-MD-Fort Meade
    Posted Date 2 months ago(9/12/2018 11:27 AM)
    # of Openings
    Information Technology
  • Overview

    By Light is hiring a Cyber Security Analyst to join our team supporting the Joint Forces Headquarters-Department of Defense Information Network (JFHQ-DODIN) USCYBERCOM, in the J34 Counter Measures. The analyst will execute incident handling, triage of events, network analysis and threat detection, trend analysis, metric development, vulnerability information dissemination, and the DoD CNDSP methodology. This position will work the normal daytime shift.


    By Light provides a broad range of hardware, software, engineering, and IT integration services. Headquartered in Arlington, VA, we support defense, civilian, commercial, and health IT customers worldwide. We offer an excellent benefits package that includes: medical, dental, vision, life and disability insurance, paid time off, paid holidays, 401(k), and profit sharing.


    • Centrally coordinate and/or recommend CND operations that impact more than one DoD Component.
    • Provide Defense-wide situational awareness and attack sensing and warning through fusion, analysis and coordinated information flows.
    • De-conflict Vulnerability Analysis and Assessments (VAA) and Red Teaming with CND operations, and recommend changes to in progress or planned VAAs that may negatively impact CND operations.
    • Monitor the DoDIN for IAVA compliance and assess impact on defense of DoD computer networks.
    • Develop a coordinated curriculum for CND education training, awareness, professionalization, and ensure the implementation of the curriculum throughout the CNDS certification and accreditation process. 
    • Ensure that all Computer Network Defense Service (CNDS)  providers have continuous information exchange and work together in synchrony, i.e., simultaneously execute a single prescribed Course of Action (COA) and that at any given time, a new COA can override the existing one. Coordination among CNDS providers is primarily effected through the CNDS Certification Authorities (CNDS/CAs) on behalf and under the direction of the USCYBERCOM.
    • Recommend Information Operations Conditions (INFOCON) changes in response to unauthorized activity (e.g., computer network attacks, computer network exploitation, system misuse), and to mitigate potential damage to DoD information systems and computer networks.

    Required Experience/Qualifications

    • Understanding of DODIN architecture and defense in depth concepts.
    • Experience coordinating and/or recommending CND operations that impact more than one DoD Component.
    • Experience monitoring the DODIN for IAVA compliance and assessing impact on defense of DoD computer networks.
    • Experience with and/or a working knowledge of the following:
      • Networking infrastructure: routers, switches, and web security gateway
      • TCP/IP Protocols and Services
      • Identification and Access Management
      • Firewalls, Access Control Lists
      • Intrusion Detection/Prevention Systems (IDS/IPS)
      • Demilitarized Zone (DMZ)
      • SIEM and JIMS Reports
      • Data backup/Data Loss Prevention (DLP)
      • Host Base Security Systems (HBSS)
      • Enterprise Mission Assurance Support Service (eMASS)

    Preferred Experience/Qualifications

    • Security+
    • ITIL v3 Foundation certified
    • Critical/logical thinking skills
    • Advanced communications and presentations skills (verbal and written) enabling precise conveyance of information across all CC/S/A/FA with command and proper enunciation of the English language
    • Flexible, dependable and be able to multi-task with priorities
    • Excellent customer service skills

    Special Requirements/Security Clearance

    • DOD TS/SCI eligibility is required


    An Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities



    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed