Information Security Analyst

About The Position

Requirements

• Associate Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.
• 8570 Certification
• 3+ years of related experience in data security administration.
• Minimum IAT II: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, SSCP
• Within 6 months of hire – CSSP Incident Responder (IR): CEH, CFR, CCNA Cyber Ops, CCNA-Security, CHFI, CySA+, GCFA, GCIH, SCYBER
• TS/SCI (Required)
• Proficient at navigating Windows 10/Server 2012/Server 2016 operating systems to perform intrusion analysis and systems maintenance
• Proficient at navigating Linux: Ubuntu/RHEL 6/7/8 to facilitate cyber security engineering and systems maintenance
• Basic scripting skills using Windows command-line, PowerShell, or BASH
• Understanding of network ports, protocols, and services
• Intrusion analysis via HBSS, Splunk or other SIEM tools, Windows Event Logging, Open Source Intelligence (OSINT) sources
• Incident investigations via McAfee HBSS suite, SolarWinds, Cisco ISE, Cylance, Splunk, Phantom, StealthWatch, WireShark, ForeScout, ACAS, PowerShell, command-line tools
• Build and maintain ACAS infrastructure; analyze vulnerability scan results and provide recommendations for remediation
• US citizenship

Nice To Haves

• Strong desire to learn new skills, techniques, tactics, and procedures to improve knowledge and existing processes
• Must be able to multi-task and adapt to changing priorities in highly stressful situations
• Highly resilient and motivated to investigate unfamiliar and anomalous problems in a robust OPTEMPO environment, including follow-through to complete resolution
• Critical thinking skills required to apply and correlate data from multiple sources to solve complex problems
• Strong ability to quickly and clearly articulate operational impacts of cyber security incidents/events to leadership
• Ability to communicate efficiently and precisely to target audience, as well as build strong rapport with other teams
• GCIH, GCFA, GCIA, GNFA, Linux+, CCNA R&S, Splunk Power User

Responsibilities

• Incident handling
• Incident response
• Intrusion analysis
• Threat hunting
• Digital forensic analysis
• Vulnerability scanning
• Data Loss Prevention (DLP)
• Tracks and handles cyber security incidents/events from initial detection to final resolution; coordinates with appropriate parties to investigate and maintain communications.
• Collaborates with specialty teams to investigate and resolve complex problems.
• Troubleshoots security tools on the network to ensure successful operation, compatibility with other applications, and minimal impact to the users.
• Ensures ACAS vulnerability scanning mechanisms are operational and providing relevant results to the vulnerability management and admin teams.
• Performs Information Systems Security Officer (ISSO) duties, and acts as the POC between parent organization and cyber security teams.
• Conducts change requests, software authorizations, static code analysis, account reviews, and other Assessment & Authorization (A&A) tasks as required.
• Acts as a central point of contact for all inquiries potentially regarding cyber security, and if necessary, redirects to the appropriate entities.

Benefits

• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and holidays