Cyber Intel Analyst Sr

Lockheed Martin Corporation Colorado Springs , CO 80928

Posted 3 months ago

Description:Lockheed Martin invites you to step up to one of today's most daunting challenges: the use of advanced electronics to undermine our way of life. As a cybersecurity professional at Lockheed Martin, you'll protect the networks that our citizens and the world depend upon each minute: Financial assets. Healthcare information. Critical infrastructure. Hazardous materials. The uninterrupted flow of energy that keeps modern life moving. Here, you'll work with cybersecurity experts on the forefront of threat protection and proactive prevention. In this fast-paced, real-world environment, you'll draw on all of your education and experience as well as the resources of Lockheed Martin to keep the threats at bay.

The candidate will be a member of the Network Assurance Team supporting a US Government customer as part of our Ft. Meade, MD. The candidate will perform cyber threat intelligence analysis, correlate actionable security events, perform network traffic analysis using raw packet data, net flow, IDS, IPS and custom sensor output as it pertains to the cyber security of communications networks, and participate in the coordination of resources during incident response efforts.

Enter into the cyber terrain that most people know only from headlines and sci-fi. Become part of the Cybersecurity Team at Lockheed Martin. You are meant to make a difference.

Basic Qualifications:

  • Hold DoD-8570 IAT Level 2 baseline certification (Security+ CE, CISSP, or equivalent).

  • Possess an active TS/SCI security clearance.

  • Background in CND Countermeasure techniques and systems.

  • Demonstrated understanding of TCP/IP, common networking ports and protocols, traffic flow, systems administration, OSI model, defense-in-depth, and common security elements.

  • Demonstrated commitment to training, self-study, and maintaining proficiency in the technical cyber security domain

  • Willing to perform shift work.

Desired Skills:

  • Experience with developing countermeasures and mitigations for network activity

  • Experience with creating signatures

  • In depth understanding of APT TTPs

  • Knowledge of OSINT and closed source cyber intel

  • Demonstrated understanding of the life cycle of network threats, attacks, attack vectors, and methods of exploitation with an understanding of intrusion set Tactics, Techniques, and Procedures.

  • Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.

  • Demonstrated hands-on experience analyzing high volumes of logs, network data (e.g. Netflow, Full Packet Capture), and other artifacts in support of incident investigations.

  • In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. Nitro/McAfee Enterprise Security Manager, ArcSight, Splunk).

  • Experience and proficiency with any of the following: Anti-Virus, HIPS, IDS/IPS, Full Packet Capture, Host-Based Forensics, Network Forensics.

  • Experience with malware analysis concepts and methods.

  • UNIX/LINUX command line experience.

  • Scripting and programming experience.

  • Motivated self-starter with strong written and verbal communications skills, and the ability to create complex technical reports on analytic findings.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cyber Risk Management Framework (Rmf) Analyst

CDW

Posted 4 days ago

VIEW JOBS 1/21/2020 12:00:00 AM 2020-04-20T00:00 The Risk Management Framework (RMF) Analyst for Cyber position is responsible for the creation, consultation, and ongoing assessment and authorization (A&A) documentation in compliance with Federal Cybersecurity policies and guidelines including DoD 8500 and NIST 800-53 controls. Additionally, the RMF Analyst for Cyber will evaluate information assurance compliance and coordinate program security documentation for various Federal customers. The Cyber RMF Analyst is an industry recognized thought leader that has mastered multiple NIST/RMF practices. Provides insight and expertise on key solutions to best position CDW's approach, preparation, and delivery of new and emerging solutions. Key Responsibilities * Serves as a subject matter expert to advise for RMF packages, strategies, and technical components to ensure compliance of NIST 800-53 security controls. * Serves in a technical leadership role that includes consulting on systems and their plans, design, development, implementation of projects focused on Cyber Security. * Develops and maintains strategic relationships with Sales Management of the teams and is seen as a 'go-to person' for cyber security strategies; and is on the forefront of new and emerging solutions and implications offerings and services. * Develop and capture the requirements for a government security solution in collaboration with stakeholders. * Assess solutions' architectural designs for compliance with NIST 800-53 and DOD related policies for on premise and cloud-based solutions; prepare assessment documentation. * Develop security artifacts to support the IA program to include System Security Plans (SSP), Security Assessment Reports (SAR), Risk Assessment Reports (RAR), Security Control Traceability Matrix (SCTM), Plan of Action and Milestones (POA&M), System Design and Installation Procedures, System User Guides, Privileged User Guides, Security Test Procedures and other documents as needed. * Support systems through all steps of RMF and enable Gov Client to achieve and or maintain authorities. * Review vulnerability scan results at the operating system (OS) and application level and work with stakeholders to architect and implement mitigations. * Promotes a culture of knowledge sharing and collaboration by organizing knowledge bases, contributing regularly, and encouraging team members to contribute. * Coaches and mentors team members to improve their technical, consulting, and sales skills. * Conducts technical assessment and expertise evaluations for candidate selection process. * Advises team members and sales prior to customer calls and/or sales strategy session on Course of Action (COA) decisions among competing technologies and solutions * Presents technical topics at technology showcase events, such as key-notes at national industry or technology conferences and/or participates on Partner Technical Advisory Boards. * Collaborates with Partners, Inside Solution Architects (ISA), and Account Executives (AE) to drive mapped opportunities; fine tunes strategies and approaches to achieve greater sales results. * Regularly creates forward-thinking thought leadership deliverables (e.g., external monthly blog posts, internal technical strategy documents); provides insight into emerging technical trends affecting CDW's portfolio; regularly contributes to major industry publications and/or speaks at national conferences * Manages competing priorities and sets expectations with sales and other stakeholders through proactive communication, planning, and potential for return on investment. * Leads the development of Bills of Materials, Statements of Work, RPFs, RFIs, and proposal content for cross-technology solutions with high levels of accuracy and quality. * Maintains pre-sales pipeline data, develops plans, and takes actions to move opportunities to closure. Qualifications Minimum Qualifications * Bachelor's degree in Computer Science, a related technical degree or equivalent years of relevant military service * 8 years of Information Assurance/Cyber experience * 8 years of Federal and/or DoD experience * DoD/OPM Secret or Top-Secret Clearance * DoD 8570 level II IAT Level III (example: CISSP or equivalent). Other Requirements * Familiarity with NSAs commercial solutions for classified (CSfC) Program. * Familiarity with Defense Information Systems Agency (DISA) Secure Technical * Implementation Guidelines (STIGs) * Experience with remediating identified Information Assurance Vulnerability Alerts (IAVAs) within DoD systems * Strong organizational skills and excellent attention to details. * Abilities to work independently and to manage time effectively. * Effective communication skills with an appreciation for the appropriate ways to interact with managers, coworkers, customers and vendors * Travel between 25% - 50% Preferred Qualifications * Ability to work off hours as necessary to meet clients' needs * Desirable: Security+, CEH, Linux+, AWS Certs, Redhat * Knowledge of compliance standards for the organization to include NIST 80053 controls, RMF, 800-53, FEDRAMP, agency specific requirements and emerging IC/DoD polices for Cyber Security with a particular focus on Cross Domain Solutions CDW Colorado Springs CO

Cyber Intel Analyst Sr

Lockheed Martin Corporation