Information System Security Analyst - Principal I - SCA05 - Open Quantum Science Solutions is looking for an experienced and technically proficient Senior Cybersecurity Detection Analyst who can support our customer in the detection, response, mitigation, investigation, and reporting of cyber threats affecting the client networks. This large mission critical development and sustainment program designs, builds, delivers, and operates a network operations environment introducing new cyber capabilities to address emerging threats. This position requires shift work including nights/weekends Responsibilities include:
• Provide support in the real-time detection, response, mitigation, and reporting of cyber threats affecting client networks utilizing an enterprise SEIM.
• Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in cyber defense operations.
• Identification, detection, and analysis of potential computer network intrusions supporting the customers mission.
• Liaison with other government cyber threat analysis entities, such as intra-agency and inter-agency Cyber Threat Working Groups
• Meet and maintain customer required Information Assurance training compliance Required Skills:
• Must be a U.S. Citizen
• Must have active/current Top-Secret clearance with the ability to obtain a TS/SCI.
• Must be able to receive DHS suitability prior to starting employment.
• 8 years of directly relevant experience (SOC/CIRT Analyst, Forensics Analyst, Penetration Tester, or Threat Hunt Analyst)
• Current experience with AWS security solutions and cloud security investigations
• Current incident response experience using Splunk
• Previous experience with penetration testing (red/blue/purple teams)
• Previous security investigation experience (OS Forensics, Network Forensics, Web Application Forensics, Cloud Forensics, etc.)
• Experience as a Linux/Windows/Network administrator
• Must be able to work collaboratively across agencies and physical locations
• Excellent oral and verbal communication Desired Skills:
• Computer network surveillance/monitoring
• Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architecture
• Experience in computer evidence seizure, computer forensic analysis, and data recovery
• Computer network forensics
• System log analysis
• Current experience with cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks
• Hands-on experience in the detection, response, mitigation, and/or reporting of cyber threats and 2 or more of the following:
Computer network surveillance/monitoring.
Knowledge and understanding of (TCP/IP) protocols, network devices, multiple operating systems, and secure architectures.
System/Application/Security log analysis.
Network traffic analysis.
• Current experience with AWS security solutions and cloud security investigations
• Hands-on experience as a SOC Detection Analyst, Threat Hunter, Forensic Examiner, or Incident Responder
• Proven exceptional technical writing skills directly related to cybersecurity incident response. Desired Certifications:
• DoD 8570.1-M Compliance at IAT Level I (e.g., Certified Information Systems Security Professional (CISSP)) certification required.
• Cisco Certified Network Professional (CCNP), Cisco Certified Security Professional (CCSP) or similar certification required.
• Information Systems Security Engineering Professional (ISSEP) or Information System Security Architect Professional (ISSAP) certification preferred.
• SourceFire Certified Professional (SFCP) certification desiredSkill Level 1 Certification (SANS GCIH or equivalent certification)
• Skill level 2 certification (SANS GCFA, GCFR, or equivalent certifications)
• Splunk Enterprise Security Certified Administrator or higher
• AWS Certified Practitioner or higher Required Education:
A bachelor’s degree in cybersecurity, security operations, computer science, a related specialized area; or High School Diploma and 18 years of directly relevant experience