Remote Cyber Security Analyst

Steven Douglas Associates Washington , DC 20001

Posted 2 months ago

Responsibilities will include:
The qualified candidate will assess network threats such as computer viruses, exploits, and malicious attacks;
Determining true threats, false positives and network system misconfigurations and provide solutions to issues detected in a timely manner;
Monitor for potential compromise, intrusion, deficiency, significant event or threat to the security posture and security baseline;
Develop, update and maintain standard operating procedures and other technical documentation;
Train and mentor mid-level and junior analysts;
Participate in customer calls and meetings on a regular basis.
Required Skills:
8+ years in Information Technology;
5+ years concentration security operations and analysis;
Prior experience working in three of the following:
Security Operations Center (SOC)/Network Operations Center (NOC) experience
Computer Incident Response Team (CIRT) experience
Knowledge of and practical experience of integration of COTS or open source tools
Experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks and one or more of the following:
Experience in computer intrusion analysis and incident response
Working knowledge of Intrusion detection/protection systems
Knowledge and understanding of network devices, multiple operating systems, and secure architectures
Working knowledge of network protocols and common services
System log analysis
Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)
Experience responding to and resolving situations caused by network attacks
Ability to assess information of network threats such as scans, computer viruses or complex attacks
Working knowledge of WAN/LAN concepts and technologies
SIEM content Analysis, Development and Testing
Familiarity with packet analysis to include:
HTTP Headers & Status codes
SMTP Traffic & Status codes
FTP Traffic & Status Codes
Certifications/Soft

Skills:
At least 1 of the following certifications CISSP, PMP, CCNP or related advanced IT certification
Excellent written and verbal communication skills;
Personality traits: Naturally curious and inquisitive nature; persistent and determined; loves solving problems and puzzles; analytically rigorous; uncompromising integrity.
Desired Skills:
Experience with firewalls, routers or antivirus appliances a plus;
Experience working on a 24x7x365 watch desk environment;
Experience with industry standard help desk tools.

Skills:
Cybersecurity, Information Assurance, Threat and Vulnerability Assessments
Permanent


See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cyber Security Analyst (IR Monitoring & Handling) 3Rd Shift TuesSat

Salient Crgt

Posted 5 days ago

VIEW JOBS 11/10/2018 12:00:00 AM 2019-02-08T00:00 Company/Position Overview Salient CRGT seeks a Cyber Security Analyst for one of our leading customers: Veterans Affairs. The successful candidate myst be well-versed in security operations, cyber security tools, intrusion detection, and secured networks. He/she will serve as an expert and be responsible for providing network and security operations technical analysis, assessment and recommendations in the areas of real-time security situational awareness, operational network system and applications systems security monitoring. In this role, responsibilities include: * Monitoring various security tools (e.g., Splunk, Palo Alto Networks, SourceFire, Cisco ASA) to identify potential incidents, network intrusions, and malware events, etc. to ensure confidentiality, integrity, and availability of VA architecture and information systems are protected * Reviewing and analyzing log files to report any unusual or suspect activities Utilize incident response use-case workflows to follow established and repeatable processes for triaging and escalating * Generating trouble tickets and performing initial validation and triage to determine whether incidents are security events using open source intelligence (OSINT) * Following established incident response procedures to ensure proper escalation, analysis and resolution of security incidents * Reporting incidents to US CERT and providing detailed information for use in after action reports * Analyzing and correlating incident event data to develop preliminary root cause and corresponding remediation strategy * Providing technical support for new detection capabilities, recommendations to improve upon existing tools/capabilities to protect the VA network, and assessments for * High Value Assets * Supporting on-site during one of the following shift times: o 6AM – 2:30PM o 2:00PM – 10:30PM o 10PM – 6:30AM Mandatory Qualifications (Education, Certifications, Experience, Skills) Education: Bachelors degree in computer science, electronics engineering or other engineering or technical discipline, 8 additional years of relevant experience may be substituted for education Experience: 10 years of related experience PWS Specified Certifications: Must have at least one of the following certifications (Or the ability to obtain one of the certification within 90 days of hire): GIAC Certified Intrusion Analyst; GIAC Certified Incident Handler (GCIH) or Certified Ethical Hacker (CEH) Background Investigation: Must be able to pass and maintain a Government Background Investigation. U.S. citizenship is also required by law, regulation, executive order, or government contract for this particular position Desired Qualifications (Education, Certifications, Experience, Skills) Salient CRGT is a leading provider of health, data analytics, cloud, agile software development, mobility, cyber security, and infrastructure solutions. We support these core capabilities with full lifecycle IT services and training—to help our customers meet critical goals for pivotal missions. We are purpose-built for IT transformation supporting federal civilian, defense, homeland, and intelligence agencies, as well as Fortune 1000 companies. If you feel you are qualified for this position, express interest by clicking the Apply button below (if you are viewing this position on the Salient CRGT website). If you are viewing this job posting outside of the Salient CRGT website, please visit: www.salientcrgt.com/careers to express interest in this position through the Salient CRGT Careers page. Salient CRGT is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, sexual orientation, gender identity or expression, veteran status, disability, genetic information, or any other factor prohibited by applicable anti-discrimination laws. Salient Crgt Washington DC

Remote Cyber Security Analyst

Steven Douglas Associates