Description:

Incident Detection and Monitoring: Continuously monitor and analyze network traffic, system logs, and security alerts to identify potential cybersecurity incidents. Utilize various security tools, such as Splunk, Cisco Firepower Intrusion Detection and Prevention Systems (IDS/IPS), and Carbon Black to detect and investigate suspicious activities or anomalies. Incident Response Planning: Develop and maintain incident response plans, including defining roles and responsibilities, escalation procedures, and communication protocols. Collaborate with cross-functional teams to ensure a coordinated response to security incidents. Incident Detection and Monitoring: Identify potential, successful, and unsuccessful intrusion attempts and conducts thorough reviews and analyses of relevant event sources of digital evidence. Possess the ability to proactively seek anomalous activity/events and identify common attacker TTPs. Safeguard the network against unauthorized access and data modification, destruction, disclosure or exfiltration. Ensure compliance with policy, regulations and privacy law. Incident Investigation and Analysis: Conduct thorough investigations of security incidents to determine the root cause, impact, and scope of the breach. Collect and analyze digital evidence, assess the extent of the compromise, and develop strategies to contain and eradicate the threat. Incident Mitigation and Remediation: Implement containment and mitigation strategies to minimize the impact of security incidents. This may involve isolating affected systems, deploying patches or security updates, and removing malicious software or unauthorized access. Assist with implementation of countermeasures or mitigating controls. Incident Reporting and Documentation: Prepare detailed incident reports, including the timeline of events, actions taken, and lessons learned. Ensure that incident response activities are properly documented and comply with legal, regulatory, and organizational requirements. Incident Response Planning: Provide technical assistance to the Government in assuring compliance with all policies, guidance, and recommendations stipulated and promulgated by the NSWCDD ISSM. Recommend and develop draft IA and system security procedures and practices, in accordance with the NSWCDD Information Assurance and Compliance Office standards and administer approved procedures, practices, tools, capabilities and methodologies. Research, evaluate, test, implement and recommend security software or devices. Continually improve the efficiency and effectiveness of the Incident Response team by identifying technical and procedural knowledge gaps. Leads incident response team capabilities by coaching and providing guidance to less-experienced professionals. May serve as a technical lead. Qualifications A minimum of three to five (3-5) years of experience in systems design, development and integration preferred. Cybersecurity Certifications: Must meet DoD 8570 IAM Level II Certification Technical Expertise: Strong knowledge of computer networks, operating systems, cybersecurity principles, and common attack vectors. Knowledgeable with DoD security and IA requirements as outlined in DoDI 8500.2 and the Defense Information Systems Agency (DISA) Security Technical Implementation Guidelines (STIG). Must have knowledge of basic to advanced UNIX and Windows system administration. Current knowledge of DoD Ports, Protocols, and Services (PPS), Public Key Infrastructure (PKI), and DoD Information Assurance Vulnerability Management (IAVM) policies and standards. Analytical and Problem-Solving Skills: Strong analytical thinking and problem-solving abilities to quickly assess complex situations, analyze data, and make informed decisions during high-pressure incidents. Communication and Collaboration: Effective communication skills to articulate technical concepts to both technical and non-technical stakeholders. The ability to collaborate and work well in a team environment is essenti

Skills:

cisco routers

Top Skills Details:

cisco routers

Additional Skills & Qualifications:

Most candidates come from:(There is a bridge that connects Maryland to Dahlgren) 1) La Plata, MD - 25 min drive 2) Fredericksburg, VA - 35 min drive 3) Leonardtown, MD - 40 min drive 4) Stafford, VA - 45 min drive 5) Quantico, VA - Around an hour drive

Experience Level:

Intermediate Level
About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.