CND Analyst/Auditors and Engrineers (Majestic)

About The Position

Requirements

• Engr Info Assurance 1 | 0 years relevant experience with Bachelors in related field
• Engr Info Assurance 2 | 3 years relevant experience with Bachelors in related field
• Engr Info Assurance 3 | 5 years relevant experience with Bachelors in related field
• Engr Info Assurance 4 | 9 years relevant experience with Bachelors in related field
• Engr Info Assurance 5 | 15 years relevant experience with Bachelors in related field
• CND Analyst I  junior-level
• Certifications:  511-Basic
• Required certification beyond CSWF:  none
• Required experience:  1+ years INFOSEC/Cyber experience; 1+ years SIEM/vulnerability scanner operation.
• CND Auditor: 4+ years of experience in Information Security (INFOSEC) operations and/or cybersecurity-related experience, including 3+ years using vulnerability scanning software products (e.g., Tenable/ACAS, Nmap, SCAP Compliance Checker).
• Senior CND Engineer  senior-level with significant Splunk experience
• Certifications: 521-Intermediate
• Required experience:  7+ years implementing and maintaining CND technologies on enterprise WANs, 4+ years experience with SIEM and/or vulnerability scanner products, 4+ years experience maintaining and operating Red Hat Enterprise Linux (RHEL) servers.
• Candidates must have a TS/SCI to start and willing to obtain a CI Polygraph.

Nice To Haves

• Desired certifications or training:  Any associate-level or higher cybersecurity certification.  Any vendor training or certification (e.g., Splunk Core Certified Power User, HBSS)
• Desired experience:  3+ years working in an operational SOC with hands-on experience in Malware Detection, DLP, Incident Response, and Forensics.  Familiarity with MITRE ATT&CK framework
• Desired certifications or training:  Formal training on Tenable/ACAS (or equivalent vulnerability scanner)
• Desired experience:  4+ years experience working in an operational Security Operations Center (SOC). Hands-on experience with industry-standard solutions such as SIEM, Vulnerability Assessment, Penetration Testing, and Malware Detection.
• Desired certifications: Associate to Intermediate level Splunk certification (e.g., Splunk Enterprise Certified Admin)
• Desired certifications or training:  Intermediate to Advanced Spunk certifications (e.g., Splunk Enterprise Security Certified Admin, Splunk IT Service intelligence certified admin, Splunk SOAR Certified Automation Developer) Ansible, or equivalent CND-related coursework.
• Desired experience:  4+ years experience with Splunk (or equivalent SIEM) and 4+ years Tenable/ACAS (or equivalent vulnerability scanner), experience evaluating technologies against DISA STIGs and providing remediation guidance.

Responsibilities

• Designs and implements information assurance and security engineering systems with requirements of business continuity, operations security, cryptography, forensics, regulatory compliance, internal counter-espionage (insider threat detection and mitigation), physical security analysis (including facilities analysis, and security management).
• Assesses and mitigates system security threats and risks throughout the program life cycle.
• Validates system security requirements definition and analysis.
• Establishes system security designs.
• Implements security designs in hardware, software, data, and procedures.
• Verifies security requirements; performs system certification and accreditation planning and testing and liaison activities.
• Supports secure systems operations and maintenance.