By Light Professional IT Services

Cyber Security Analyst

Job Locations US-MD-Fort Meade
Posted Date 3 days ago(3/26/2020 12:19 PM)
ID
2020-5283
# of Openings
1
Category
Information Technology
Clearance
TS/SCI

Overview

The Cyber Security Analyst shall execute in real time, in accordance with mission requirements, incident handling, triage of events, network analysis and threat detection, trend analysis, metric development, vulnerability information dissemination, and the DoD Computer Network Defense Service Provier (CNDSP) methodology.

Responsibilities

  • Execute in real time, in accordance with mission requirements:
    • Incident handling
    • Triage of events
    • Network analysis and threat detection
    • Trend analysis
    • Metric development
    • Vulnerability information dissemination
    • DoD CNDSP methodology
  • Coordinate Computer Network Defense (CND) operations with DoD Component Commands/Services/Agencies/Field Activities (CC/S/A/FA) and monitor and report effect of DCO-IDM operations on CC/S/A/FA missions.
  • Provide the Intelligence Community (IC) with Priority Intelligence Requirements (PIR) and indications and warning requirements for potential attacks against DoD information systems and computer networks
  • Centrally coordinate and/or recommend CND operations that impact more than one DoD Component.
  • Provide Defense-wide situational awareness and attack sensing and warning through fusion, analysis and coordinated information flows.
  • De-conflict Vulnerability Analysis and Assessments (VAA) and Red Teaming with CND operations, and recommend changes to in progress or planned VAAs that may negatively impact CND operations.
  • Monitor the DoDIN for IAVA compliance and assess impact on defense of DoD computer networks.
  • Develop a coordinated curriculum for CND education training, awareness, professionalization, and ensure the implementation of the curriculum throughout the CNDS certification and accreditation process.
  • Ensure that all Computer Network Defense Service (CNDS) providers have continuous information exchange and work together in synchrony, i.e., simultaneously execute a single prescribed Course of Action (COA) and that at any given time, a new COA can override the existing one. Coordination among CNDS providers is primarily effected through the CNDS Certification Authorities (CNDS/CAs) on behalf and under the direction of the USCYBERCOM.
  • Recommend Information Operations Conditions (INFOCON) changes in response to unauthorized activity (e.g., computer network attacks, computer network exploitation, system misuse), and to mitigate potential damage to DoD information systems and computer networks.
  • Provide knowledge of DoD Computer Network Defense with an understanding of the lifecycle of the network threats, attack vectors, and network vulnerability exploitation.

Required Experience/Qualifications

  • Active DoD TS/SCI clearance and eligible for C/I Polygraph
  • Bachelor's degree in a relevant technical discipline and 4+ years of overall related experience. 4+ years of additional related years of experience is accepted in lieu of a degree.
  • Previous tools experience with *ArcSight, JIMS; Level II, Cyber Situational Awareness Cloud (CSAAC), and other SIEM Tools (Splunk, PCAP, or equivalent toolsets.)
  • Previous experience working with Computer Networks and Distributed Systems (CNDS) providers or working in a Computer Network Defense Service Provider (CNDSP)
  • Technical understanding in some of the following areas: network communication using TCP/IP protocols, basic system administration, understanding of malware (malware communication installation, or malware types), Computer Network Defense operations (proxy, firewall, IDS/IPS, router/switch, or open source information collection), Joint Operational Planning Process (JOPP),
  • Experience in an Operations Center providing and briefing Senior Leaders on threats and mitigation actions, SITREPs, Operational Updates, statistical support, strategic plans to harden defenses, and experience as an Action Officer (AO) to lead priority efforts
  • Working knowledge of threat and vulnerability analysis, routing protocols, routing, intrusion detection systems, intrusion protection systems, Domain Name Service, or network traffic analysis

Preferred Experience/Qualifications

  • DoD 8570 certification at IAT Level II, Security+ce
  • ITIL v3 Foundation certified
  • Experience working with the Intelligence Community and priority intelligence requirements
  • Advanced communications and presentations skills (verbal and written) enabling precise conveyance of information across all CC/S/A/FA with command and proper enunciation of the English language
  • Strong interpersonal, organizational and critical thinking/problem solving skills
  • Flexible, dependable and be able to multi-task with priorities
  • Critical/logical thinking skills
  • Excellent customer service skills

Special Requirements/Security Clearance

Must possess an active/current TS/SCI clearance with eligibility for a CI polygraph

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed