Information Security Specialist, Staff (Grimlock)

At&T Chantilly , VA 22022

Posted 4 months ago

Job Description: Candidate will perform the following duties:

  • Responsible for maintaining the integrity and security of enterprise-wide cyber systems and networks

  • Supports cyber security initiatives through both predictive and reactive analysis Articulates emerging trends to leadership and staff

  • Coordinates resources during incident response efforts, driving incidents to timely and complete resolution

  • Performs network traffic analysis using raw packet data, net flow, IDS data, and custom sensor output

  • Reviews threat data and develops custom signatures

  • Correlates actionable security events and develops unique correlation techniques

  • Uses attack signatures and tactics, techniques and procedures (TTPs) to aid in Zero-Day detection

  • Uses attack signatures and TTPs associated with Advanced Persistent Threats to identify new threats and attacks

  • Conducts basic malware analysis of attacker tools, identifying indicators of compromise, and reverse engineer attacker encoding protocols

  • Interfaces with external entities, including law enforcement and intelligence community organizations

  • Provides analysis of incidents for customers by: determining the incident's nature and formulating responses identifying and providing the ability to surge during emergencies correlating event and incident data determining possible effects on the DODIN, customer networks, and other organizations

  • Ability to work independently and within a team as required

  • Monitors Computer Network Defense (CND) security-relevant network components

  • Performs infrastructure monitoring, performance assessment, new requirement analysis and support Additional Duties

  • Prepare and disseminate CND reports, trends, responses, mitigations, analysis, and information

  • Provide support to leadership for CND applicable activities within Protect, Detect, Respond, and Sustain

  • Support a performance-based environment with pre-determined Acceptable Levels of Performance (ALPs)

  • Support the development, documentation, and tracking of metrics relevant to the ALPs

Interface with government counterparts and leadership

Prerequisites: / Qualifications:
Five (5) years' experience in the Information Systems (IS) environment w/two (2) years' experience in two or more in CND. A working knowledge of both Windows and UNIX networks in homogeneous and heterogeneous environments is a requirement. Exposure to or a working knowledge of Cyber Warfare techniques and Computer Network Defense (CND) technologies is required. Candidate should be familiar with current DoD and Intelligence Community (IC) directive, Instruction, Policies and Guidance documents.

The candidate should have experience in the following areas:

  • Ability to understand various computer architecture, software applications and operating systems

  • Solid working knowledge of network security architecture

  • Understanding of trusted systems and their applications

  • Ability to apply information systems security engineering, security services and mechanism, threats and vulnerabilities to systems

  • Command Line Scripting skills (PERL, Python, PowerShell scripting) to automate analysis task

  • Knowledge of hacker TTPs Be able to conduct basic malware analysis

  • Demonstrated hands on experience with various static and dynamic malware analysis tools

  • Knowledge of advanced threat actor TTPs

  • Understanding of software exploits Ability to analyze packed and obfuscated code

  • Comprehensive understanding of common Windows APIs and ability to analyze shellcode

  • Good technical problem-solving skills

  • Communications and teamwork skills

  • Knowledge of applicable IC/DoD IA policies and NRO policies, directives and standards

Education: Bachelor's in Computer Science (Information Management, Computer Information systems (CIS) or five (5) years' of practical experience in the IS environment w/a minimum of three (3) years direct IA experience. The CISSP and/or CISM is required.

Required Clearance: U. S. Citizen; minimum TS//SCI and CI Poly

Job ID 1843309 Date posted 11/30/2018


upload resume icon
See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Systems Security Specialist

Parsons Commercial Technology Group Inc.

Posted 3 days ago

VIEW JOBS 1/15/2019 12:00:00 AM 2019-04-15T00:00 Information Systems Security Engineer Chantilly, VA US Citizenship Required Do you have experience in the information security field? If you want to takethe next step in your career by joining a team of talented security engineersworking for a company that is making a difference in the world, Parsonshas the opportunity for you! We are currently seeking information systemsecurity engineers to help us deliver best-in-class services to ourfederal government clients. Theideal candidate will become an integral part of a team that ensures appropriatesecurity principles, concepts, methods, and practices are applied during thesystem life cycle to achieve stakeholder objectives for the protection ofassets—across all forms of adversity characterized as disruptions, hazards, andthreats. The system security engineer provides a sufficient base of evidence tosupport claims that the desired level of trustworthiness has been achieved, andremains so. Responsibilities: * Define and/or review stakeholder security objectives, protection needs and concerns, security requirements, and associated validation methods. * Identify and/or assess vulnerabilities and susceptibility to life cycle disruptions, hazards, and threats. * Design and/or review proactive and reactive security functions encompassed within a balanced strategy to control asset loss and associated loss consequences. * Provide security considerations to inform systems engineering efforts with the objective to reduce errors, flaws, and weakness that may constitute security vulnerability leading to unacceptable asset loss and consequences. * Identify, quantify, and evaluate the costs/benefits of security functions and considerations to inform analysis of alternatives, engineering trade-offs, and risk treatment decisions. * Demonstrate through evidence-based reasoning, that security claims for the system have been satisfied. * Leverage multiple security and other specialties to address all feasible solutions unto a trustworthy, secure system. Experience and Education Requirements: * 8+ years of system engineering and/or system security engineering experience * Proficiency in securing systems in accordance with ICD 503 * Proficiency in system security engineering principles and methods * Familiarity with Systems Security Engineering (SSE) documentation (e.g. Program Protection Plans (PPPs) * Anti-Tamper Plans, Counterintelligence Support Plans, Integrated Threat Assessment Reports, Operations Security Plans, Continuous Monitoring Plans, Defensive Cyberspace Operations Plans, IT/Cybersecurity Strategies, Information Support Plans, Enterprise Architecture Views) and related documentation IAW ICD 503, DoDI 5000.02, DoDI 5200.39, DODI 5200.44, DODD 5200.47E, DoDI 8500.01, DoDI 8510.01, and NIST SP 800-160. * High School Diploma required / Bachelors' Degree preferred. * CISSP certification required; CISSP-ISSEP highly-desired. * Active security clearance with poly Applicants selected for employmentwill be subject to a federal background investigation and must meet additionaleligibility requirements for access to classified information or materials. Parsons Commercial Technology Group Inc. Chantilly VA

Information Security Specialist, Staff (Grimlock)

At&T