CRI Advantage is looking for a Cyber Data Analyst to work on a Threat Hunting team in a Cyber Security Operations Technology Environment analyzing data, securing critical systems, and using SIEM tools in an effort for overall data integrity and oversight. The work will be onsite in Idaho Falls, Idaho.
Our team are part of a coordinated national effort to secure the nations critical infrastructure from all natural and manmade hazards. We create and maintain interfaces and access to commercial, local, state and federal customers including utilities enabling them to conduct comprehensive vulnerability assessments and utilize infrastructure protection tools against cyber threats. This work is mission critical and CRI is proud to be building teams to help protect our nation.
The most crucial skills are Splunk and Snort, but the environment includes all of the following Splunk, Docker, Ansible, SIEM, Gravwell, Linux, MITRE ICS (Industrial Control Systems), ELK, Bro/Zeek, SNORT and VM.
The client is federal government involving national security, candidates must be US citizens. Clearances from DOE and DoD, DHS maintained for the work. The work will be onsite in Idaho Falls, Idaho.
Splunk expertise to include:
Deploying network sensor systems and provide reliable threat and event data
Splunk engineering, assisting with architecture of Splunk instances, configuring Splunk searcheads, indexers
Building a series of interconnected dashboards/an entire app
Transactions, and other complex search patterns/results.
Report acceleration, summary indexing, tstats.
Getting Splunk reports/data outside of Splunk and into other tools.
Data input filtering with regex/configs
Bro/Zeek engineering expertise
Solid working knowledge of SNORT and how to use it.
2+ years of Linux experience and/or Linux certification.
3+years of Systems Engineering experience
Statistical Background would be helpful
Data Analytics would be helpful
Employee Job Functions
Employee Job Functions are physical actions and/or working conditions associated with the position. These functions may also constitute essential functions for the job position which the employee must be able to fulfill, with or without reasonable accommodation. The information provided below is to help describe the job so that the applicant has a reasonable understanding of the job duties/expectations. An applicant's ability to perform these actions will be discussed and workplace accommodations may be made on a case-by-case basis following an individualized assessment of the applicant and other considerations, including but not limited to any governing safety standards.
Great things happen when you have the CRI Advantage!
CRI has a family-oriented company culture and is family-owned. Our management team believes employee growth is as equally import to company growth and offers many types of learning opportunities. We work on unique projects including supporting missions involving national security, energy research, law enforcement, transportation, and health and welfare. We are headquartered in Boise, ID with offices in Idaho Falls and DC. Our corporate mission from the very beginning has been to make a positive difference in peoples lives.
CRI Advantage provides flexible benefit packages to fit employee and family needs. Benefits are effective from the first day of employment.
CRI Advantage, Inc.