View Our Website View All Jobs

Network Security Specialist / Incident Response Analyst / Cybersecurity Analyst / CIRT / CERT

Cyber Defense Solutions has an opportunity for 2 Network Security Specialists to support one of our Federal Customers in the DC Metro Area! Give us the chance to make you a good offer!

Position Criteria

Clearance Level: TS (with SCI eligibility preferred)
Citizenship: US Citizenship
Location: Arlington, VA

Position Description

The Network Security Specialist / Incident Response Analyst is responsible for examining malicious software, suspicious network activities, and non‐authorized presence in the network to analyze the nature of the threat, and secure and monitor firewall configurations. The Network Security Specialist needs to understand the specimen’s attack capabilities, its propagation characteristics, and define signatures for detecting malware presence. By understanding the network principles and security, this expert can build a robust network that provides the proper functionality and correct level of security.

Qualifications
 

Basic Qualifications

  • A Bachelor’s Degree in Computer Science or a related IT field and a minimum of 5 years technical experience required. 
  • Selected candidate must be able to obtain and maintain a favorably adjudicated DHS background investigation (EOD) for continued employment.
  • Ability to understand and learn technical specifications, system requirements and other application design information as needed.
  • Basic understanding of Network Administration and Network Security.

Preferred Qualifications

  • DHS EOD or the ability to obtain one. Must already have a final TS clearance with SCI eligibility
  • Previous experience providing on-site consulting support for a technical project, preferably with a federal and/or state customer.

Responsibilities Include:

Technical analysis of network activity; the analyst monitors and evaluates network event data, signature-based IDS events and full packet capture (PCAP) data.

  • Triage IDS alerts; collect related data from various network analysis systems, review available open and closed source information on related threats & vulnerabilities, prepare initial summary reports.
  • Monitor and analyze signature-based IDS alerts and associated packet (PCAP) data
  • Analyze network flow data for anomalies and to correlate reporting with enterprise-wide network activity
  • Document key event details and analytic findings in an incident management system
  • Provide oversight and assessment of incident response and triage actions across a large enterprise
  • Identify & extract network indicators from incident reporting and published technical advisories/bulletins
  • Perform incident correlation & escalation
  • Recommend new IDS signatures and detection strategies.
  • Produce final reports and review incident reports from other analysts.
  • Communicate and collaborate with analysts from other SOC organizations to investigate cyber events.
  • Assess cyber indicators/observables and collaborate in the development of IDS signatures and detection mechanisms.
  • Monitor and report on trends and activity on network sensor platforms.
  • Provide technical assessments of cyber threats and vulnerabilities
  • Fuse open-source threat & vulnerability information with data collected from sensors across the enterprise
  • Develop, maintain and update standard operating procedures
  • Provide routine status updates for ongoing projects, trouble tickets, incidents, and other related tasks
  • Maintain awareness of major events and trends in the cyber security landscape
  • Research and evaluate emerging capabilities
  • Ensure that all alerts are monitored, interpreted, analyzed, and investigated
  • Utilize external reporting tools for threat intelligence
  • Monitor all security-relevant logs and alerts for signs of compromise, attack, or system misuse and policy violations
  • Innovate new methods to use existing tools and data sources, and identify and obtain new data sources, to detect cyber intrusions
  • Write detailed incident reports
  • Collect incident and investigation metrics and trending data, identify key trends, and provide situational awareness on these trends
  • Monitor all-source threat reporting

 CDS, LLC is an Equal Opportunity Employer.

 

Main Number: 855-292-3710 or 804-539-8278
careers@CyberDS.com
www.CyberDS.com

 

 

 

 

Read More

Apply for this position

Required*
Apply with Indeed
Attach resume as .pdf, .doc, or .docx (limit 2MB) or Paste resume

Paste your resume here or Attach resume file

150
To comply with government Equal Employment Opportunity / Affirmative Action reporting regulations, we are requesting (but NOT requiring) that you enter this personal data. This information will not be used in connection with any employment decisions, and will be used solely as permitted by state and federal law. Your voluntary cooperation would be appreciated. Learn more.
Gender
Race/Ethnicity

Invitation for Job Applicants to Self-Identify as a U.S. Veteran
  • A “disabled veteran” is one of the following:
    • a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or
    • a person who was discharged or released from active duty because of a service-connected disability.
  • A “recently separated veteran” means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.
  • An “active duty wartime or campaign badge veteran” means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.
  • An “Armed forces service medal veteran” means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.
Veteran status
I IDENTIFY AS ONE OR MORE OF THE CLASSIFICATIONS OF PROTECTED VETERAN LISTED ABOVE
I AM NOT A PROTECTED VETERAN
I DON’T WISH TO ANSWER

Voluntary Self-Identification of Disability
Voluntary Self-Identification of Disability Form CC-305
OMB Control Number 1250-0005
Expires 1/31/2020
Why are you being asked to complete this form?

Because we do business with the government, we must reach out to, hire, and provide equal opportunity to qualified people with disabilities.i To help us measure how well we are doing, we are asking you to tell us if you have a disability or if you ever had a disability. Completing this form is voluntary, but we hope that you will choose to fill it out. If you are applying for a job, any answer you give will be kept private and will not be used against you in any way.

If you already work for us, your answer will not be used against you in any way. Because a person may become disabled at any time, we are required to ask all of our employees to update their information every five years. You may voluntarily self-identify as having a disability on this form without fear of any punishment because you did not identify as having a disability earlier.

How do I know if I have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Blindness
  • Deafness
  • Cancer
  • Diabetes
  • Epilepsy
  • Autism
  • Cerebral palsy
  • HIV/AIDS
  • Schizophrenia
  • Muscular dystrophy
  • Bipolar disorder
  • Major depression
  • Multiple sclerosis (MS)
  • Missing limbs or partially missing limbs
  • Post-traumatic stress disorder (PTSD)
  • Obsessive compulsive disorder
  • Impairments requiring the use of a wheelchair
  • Intellectual disability (previously called mental retardation)
Please check one of the boxes below:

You must enter your name and date
Your Name Today's Date
Reasonable Accommodation Notice

Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.


iSection 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.


PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

Human Check*