T1 Cyber Network Defense Analyst – Day Shift (w/ active TS)
About The Position
Critical Solutions has an immediate opening for a Tier 1 Cyber Network Defense Analyst (CNDA) to support our federal customer in Washington, DC. The Tier 1 Cyber Network Defense Analyst (CNDA) will be part of a team that provides security operations center (SOC) support, cyber analysis, application development, and a 24x7x365 support staff. Candidates must have the ability to work non-core hours, if necessary. Duties include network security monitoring and detection. Proactively searching for threats. Inspect traffic for anomalies and new malware patterns. Investigate and analyze logs. Provide analysis and response to alerts, and document activity in SOC investigations and Security Event Notifications (SENs).
Requirements
- Active TS/SCI and must be able to obtain and maintain an Entry on Duty (EOD) clearance
- must have the ability to work non-core hours, if necessary.
- Bachelor's degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field AND a minimum of two (2) years professional experience in the areas listed below:
- Network Administration
- Unix/Linux Administration
- Software engineering
- Software development
- Systems administration
- Help desk/IT support
- The ideal candidate is a self-motivated individual in pursuit of a career in cyber security.
- Familiarity with a SOC's purpose and role within an organization
- General understanding of common network ports and protocols (e.g. TCP/UDP, HTTP, ICMP, DNS, SMTP, etc)
- Familiarity with network topologies and network security device functions (e.g. Firewall, IDS/IPS, Proxy, DNS, etc).
- Familiarity with packet analysis tools such as Wireshark
- Able to perform critical thinking and analysis to investigate cyber security alerts
- Familiarity with common malware and attack vectors
- Familiarity with Windows operating systems and standard OS logging
- Familiarity with Antivirus, DLP, and host based firewalls
- Must have one of the following certifications: A+ CE, CCNA-Security, CND, Network+ CE, SSCP, Security+, CySA+
Nice To Haves
- Familiar with SOC methodologies and processes
- Familiarity with scripting languages (e.g. Python, Powershell, Javascript, VBS etc)
Responsibilities
- Utilize a SIEM for enterprise monitoring and detection
- Create Security Event Notifications to document investigation findings
- Perform critical thinking and analysis to investigate cyber security alerts
- Analyze network traffic using enterprise tools (e.g. Full PCAP, Firewall, Proxy logs, IDS logs, etc)
- Collaborate with team members to analyze an alert or a threat
- Stay up to date with latest threats
- Monitor shared email box for notifications and requests
- Utilize OSINT to aid in their investigation
- Contribute to content tuning requests
Benefits
- 100% premium coverage for Medical, Dental, Vision, and Life Insurance, Supplemental Insurance, 401K matching, Flexible Time Off (PTO/Holidays), Higher Education/Training Reimbursement, and more
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Entry Level
