Overview

Join Our Stellar Team at Castalia Systems!

Are you ready to skyrocket your career with us? We're on the lookout for ambitious individuals who are eager to make their mark in a diverse and thriving environment.

At Castalia Systems, we're not just another company – we're a certified Woman Owned Small Business (WOSB) and Small Disadvantage Business (SDB) committed to excellence since 2011. Join us in delivering top-tier solutions to the dynamic Defense and Intelligence sector.

As valued members of our team, we prioritize your well-being. Enjoy a comprehensive benefits package, including medical, dental, and vision coverage, 401k matching, generous PTO, paid holidays, professional training opportunities, and even pet insurance to ensure your furry friends are cared for too.

Responsibilities

Castalia Systems is seeking a Cybersecurity Incident Responder in the Pensacola, FL area.

A Cybersecurity Incident Responder will support the customer in the detection, response, mitigation, investigation, and reporting of cyber threats affecting the client networks. This large mission critical development and sustainment program designs, builds, delivers, and operates a network operations environment introducing new cyber capabilities to address emerging threats. 

A qualified candidate will perform the following duties and responsibilities, but are not limited to:

• Responsible for leading incident response efforts and reporting status to stakeholders and leadership.
• Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in cyber security operations.
• Produce reports and briefs to provide an accurate depiction of the current threat landscape and associated risk.
• Investigate cyber activity targeting customer information and its infrastructure.
• Provide mentorship and technical education to CIRT personnel.
• Liaison with other government cyber threat analysis entities, such as inter-agency Cyber Threat Working Groups.
• Analyze and report cyber threats as well as assist in deterring, identifying, monitoring, investigating and analyzing computer network intrusions.
• Meet and maintain customer required Information Assurance training compliance.

Qualifications

Security Clearance Requirement:

Active/current Top Secret clearance minimum with the ability to obtain/maintain a TS/SCI is required. Must be able to obtain DHS suitability is also required.

Required Qualifications:

• Bachelor’s degree in Cybersecurity, Security Operations, Computer Science, a related specialized area; or High School Diploma and 18 years of directly relevant experience.
• 8 years of directly relevant experience.
• Current experience with AWS security solutions and cloud security investigations.
• Current incident response experience using Splunk.
• Previous experience with penetration testing (red/blue/purple teams).
• Previous security investigation experience (OS Forensics, Network Forensics, Web Application Forensics, Cloud Forensics, etc.).
• Experience as a Linux/Windows/Network administrator.
• Must be able to work collaboratively across agencies and physical locations.
• Excellent oral and verbal communication.
• Requires shift work including nights/weekends.

Preferred Qualifications:

• Certified Information Systems Security Professional (CISSP).
• Cisco Certified Network Professional (CCNP), Cisco Certified Security Professional (CCSP) or similar certification.
• Skill Level 1 certification (SANS GCIH or equivalent certification).
• Skill level 2 certification (SANS GCFA, GCFR, or equivalent certifications).
• Splunk Power User or higher.
• AWS Certified Practitioner or higher.
• Hands-on experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks.
• Experience in computer intrusion analysis and incident response.
• Experience with computer network surveillance/monitoring.
• Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures.
• Familiarity with computer evidence seizure, computer forensic analysis, and data recovery.
• Experience with System log analysis.
• Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology).
• Current experience with cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks.
• Current experience with AWS security solutions and cloud security investigations.

Castalia Systems is an equal employment opportunity and affirmative action employer and strives to comply with all applicable laws prohibiting discrimination based on race, color, creed, sex, sexual orientation, age, national origin, or ancestry, physical or mental disability, veteran status, marital status, HIV-positive status, as well as any other category protected by federal, state, or local laws. All such discrimination is unlawful, and all persons involved in the operations of the company are prohibited from engaging in this type of conduct.