Network Defense and Security Analyst

About The Position

Requirements

• DoD Top Secret/SCI Security Clearance
• B.S. in related field, and 5 or more years’ relevant IT experience; OR 7 or more years’ relevant IT experience.
• Must possess experience and demonstrate an understanding of Microsoft server installation, roles, active directory, storage, performance management, and maintenance.
• Night Shift Work
• Certified Ethical Hacker (CEH) certification.
• CCNA or CompTIA Network+ CE certification.
• ITIL Foundation certification within 60 days of start date.

Nice To Haves

• Extensive knowledge of network firewalls, computer and server log analysis, computer network servers and analysis of their logs; and digital evidence collection, handling, and security.
• Extensive knowledge and experience with network packet capture and analysis software such as WireShark (Ethereal) and Snort.
• Experience with standard DoD network topology and DMZ boundary protection; DoD/AF incident reporting processes.
• Familiarity with NSA Threat Operations Center (NTOC) Attack, Sensing & Warning (AS&W) alerts and processing; knowledge and experience processing Information Assurance Vulnerability Alert (IAVA) notices.

Responsibilities

• Support real-time monitoring and analysis of IDS/IPS devices and alerts, track trends of authorized and unauthorized activity, and correlate unusual and suspicious network activity across USAFCNET/USCENTCOM networks.
• Provide site-specific and service-level intrusion packet level analysis using selected tools and activities related to mission execution.
• Perform cyber incident handling and support activities, including but not limited to incident reporting, notification, documentation, and coordination; detection of events; preliminary analysis and identification; preliminary response actions; incident analysis; response and recovery; and post incident analysis IAW applicable policy and directives.
• Maintain IDS/IPS devices to ensure they are operating at optimal efficiency, including, but not limited to assisting in the installation, configuration, maintenance, and management of IDS/IPS sensors; assist in the development and documentation of sensor processes and checklists; and provide technical advice and assistance to resolve network issues.
• Perform network event correlation and advanced traffic analysis, vulnerability analysis, IDS/IPS sensor maintenance, IDS/IPS database & VPN technical support, network defense training, support Standardization & Evaluation (Stan/Eval) activities, perform operational process tracking and processing; provide systems and exercise planning support, and prepare network defense technical reports.
• Provide oral and written briefs, presentations, and professional reports to government senior leaders and decision makers.

Benefits

• Healthcare
• Wellness programs
• Financial benefits
• Retirement plans
• Family support
• Continuing education
• Time off benefits