Cyber Network Analysis Tech 4

About The Position

Requirements

• Must currently hold and be able to maintain U.S. Top Secret security clearance
• Industry certifications such as CISSP, CISM, CEH, or Security+.
• Expertise in Computer Security Incident Response.
• Experience with Security Information and Event Management (SIEM) solutions.
• Experience in SOC operations and incident response.
• Strong understanding of cybersecurity frameworks, directives, and best practices.
• Ability to analyze security logs and events to detect and mitigate threats.
• Experience with Government cybersecurity compliance reporting.
• High School Diploma or equivalent and 13 years relevant experience.
• 9 years relevant experience with Bachelors in related field.
• 7 years relevant experience with Masters in related field
• 4 years relevant experience with PhD or Juris Doctorate in related field

Nice To Haves

• Experience in conducting cybersecurity operations within a DoD or Government environment.
• Proficiency in automation and scripting for log analysis and reporting.
• Experience with Tenable ACAS.
• Experience with Trellix ePO.

Responsibilities

• Computer security incident response team (CSIRT) support through the provision of security recommendations, technical guidance, and coordination of security incident functions.
• Analysis of threat intelligence and generation of threat reports to stakeholders.
• Coordination of incident response activities, including triage, containment, investigation, and remediation.
• Development and maintenance of CSIRT Standard Operating Procedures (SOPs).
• Utilization of automated logging aggregation systems to compress, correlate, and analyze logged data from Government-identified sources.
• Comply with Government-directed CND Response Actions and evaluate the impact of Government-directed configuration changes.
• Provide written assessments of potential adverse impacts on end-user services and recommend courses of action.
• Provide recommendations based on best practice and experience to develop processes that will increase efficiencies needed to perform tasks and prepare reports.
• Creating, monitoring, and analysis of Trellix ePolicy Orchestrator (ePO) queries, dashboards, and logs.
• Analysis and validation of Tenable Assured Compliance Assessment Solution (ACAS) scan results and reports.
• Collaboration with functional teams to address security findings.

Benefits

• We offer competitive benefits such as best-in-class medical, dental and vision plan choices; wellness resources; employee assistance programs; Savings Plan Options (401(k)); financial planning tools, life insurance; employee discounts; paid holidays and paid time off; tuition reimbursement; as well as early childhood and post-secondary education scholarships.
• Bonus/other non-recurrent compensation is occasionally offered for qualified positions, and if applicable to this role will be addressed by the recruiter at the screening phase of application.