Cyber Security Engineer- CND

OSC Edge•Quantico, VA

35d

About The Position

As an ITCSU Cyber Security Engineer (CND), the individual will be responsible for protecting and defending information technology network systems associated with the agency. The CND engineer will respond to and report all IT incidents ranging from security violations (i.e., information spillage and unauthorized usage) to suspicious activity reports and insider threats through the use of current cyber security tools and by following current guidelines and directives published by the DoD and the Navy. A key aspect of this role involves ensuring robust security posture through active participation in Comply-to-Connect initiatives. In this critical role as an Information System Security Engineer (ISSE), the engineer will directly contribute to safeguarding sensitive data and maintaining operational integrity.

Requirements

Minimum of seven (7) years of experience performing computer network defense (CND) incident triage
Must have and maintain a Secret personnel clearance and must be eligible for a TSSCI
Certified Information Systems Security Professional (CISSP)
Experience analyzing log files, firewalls, firewall logs, and intrusion detection systems and IDS Logs to identify possible threats to network security, and to perform command and control functions in response to incidents
Knowledge of and experience with administering a security information and event management (SIEM) solution is necessary in order to conduct proper and sufficient analysis of network activity
Experience in ESS, ACAS vulnerability scanning software and Information Assurance Vulnerability Alerts (IAVA). Must have a current ACAS training certificate
CND engineer candidates must possess appropriate DISA ESS and commercial certifications as well as experience
This position requires a fully adjudicated Secret clearance level at contract start but must be eligible for a Top Secret (TS) clearance.
Position shall meet the requirements of an IAT III/ IAM III per the DoD 8570.01-M

Responsibilities

Identify, collect, and analyze network and host data, and report events or incidents that have occurred or might occur within the network to mitigate network and host threats
Provides trend analysis and reports on computer network defense activity
Maintain situational awareness of cyber incidents and activity with appropriate partners via tools and reporting mechanisms
Researches, identify, and verify new advanced persistent threat (APT) tactics, techniques, and procedures from commercial and government sources
Provides recommendations to strengthen the agencys overall cyber security posture
Applies knowledge of monitoring, analyzing, detecting, and responding to cyber events and incidents within the information systems and networks
Advises on an integrated, dynamic cyber defense and leverage cyber security solutions to deliver cyber security operational services, including intrusion detection and prevention, situational awareness of network intrusions, security events, endpoint security, data spillage, and incident response actions
Designs, develops, engineers, and implements solutions that meet DoD and Navy security requirements. Responsible for the integration and implementation of computer system security solutions