Computer Network Defense Analyst (EAIRS)

About The Position

Requirements

• 5 years relevant Cybersecurity/IT experience
• IAT II: One of the following CCNA-Security; CySA+; GICSP; GSEC; Security+ CE; CND; SSCP
• CNDSP/CSSP-IR Must have one of the “Computer Network Defense” CE Certifications within six (6) months of onboarding.
• Top Secret Clearance
• Five (5) years of relevant IT experience.
• Two (2) years performing root cause analysis of cybersecurity events and incidents
• Working knowledge of at least two types of security tools: Firewall IDS/IPS Host based antivirus Data loss prevention Vulnerability Management Forensics Malware Analysis Device Hardening
• Understanding of Defense-in-Depth
• Ability to build scripts and tools to enhance threat detection and incident response capabilities (Preferably in SPL, Python, PowerShell)
• Must possess a DOD Top Secret Clearance.
• Must possess a relevant certification meeting the DOD 8570.01 IAT level II.
• One of the following: CCNA-Security CySA+ GICSP GSEC Security+ CE CND SSCP
• Must maintain CNDSP/CSSP-IR
• Must have one of the “Computer Network Defense” CE Certifications within six (6) months of onboarding.

Nice To Haves

• Preferably in SPL, Python, PowerShell for scripting and tool building.

Responsibilities

• Participates in 24x7x365 monitoring DLA's SIEM and other cybersecurity monitoring tools in an effort to detect and respond to cybersecurity threats within DLA's Enterprise Network Environment.
• Performs actions to protect, monitor, detect, analyze, and respond to unauthorized activity.
• Employs Cybersecurity capabilities and deliberate actions to respond to specific alerts or emerging threats.
• Reviews logged events for trends that are indicative of attack or compromise within the environment.
• Actively monitors logs and traffic for Advanced Persistent Threats (APT) and "low and slow" attacks within the environment.
• Maintains awareness of possible threats through the use of intelligence resources to include Open-Source Intelligence (OSINT).
• Provides technical analysis and sustainment support for the enterprise for IA tools and applications and assists with the application of Defense-In-Depth signatures and perimeter defense controls to diminish network threats.
• Coordinates with DLA stakeholder groups to ensure incident handling is conducted across the enterprise to protect DLA data, networks, applications both internally and externally hosted in accordance with DoD directives.

Benefits

• healthcare (medical, dental, vision, and disability)
• a 401 (k) program where you are 100% vested from day one with an employer match after 90 days.
• An Educational Assistance program.
• a Student Loan Repayment Program
• Gym Reimbursement Program.
• Paid Time off