DESCRIPTION OF RESPONSIBILITIES :
- Consolidate different data sources into a single view used to assess the status of a specific threat on the network.
- Develop and / or maintain dashboards displaying specific DCO items of interest (i.e., top 10 attackers, top 10 destinations, top attack vector, etc.
and all active cyber incidents, in near real time to the Theater Operations COP (Common Operating Picture) display area and other areas within the RCCP facility and virtually.
- Maintain, update, test, and implement signatures and policies for each sensor managed by the RCC-P; changes must be approved through the established CCB process.
- Develop signatures and policies that include both network- and host-based sensors.
- Update as necessary to minimize false positives and validate for proper syntax.
- Conduct all development and testing on isolated networks.
- Document and conduct testing activity with plan procedures, results, and operational procedures as signatures are developed and / or updated.
- Update and validate plan at least annually. A signature test plan shall be developed.
- Engineer connections from security devices, security managers, and security platforms across the Theater to the RCC-P SIEM.
- Provide sensor and application management support to tactical edge customers and develop and maintain TTPs for doing so.
- Other duties as assigned by supervisor.
REQUIRED DEGREE / EDUCATION / CERTIFICATION :
- Bachelor of Science degree in Information Technology, Cybersecurity, Data Science, Information Systems, or Computer Science.
- Must meet at least one of the following baseline certifications in lieu of education : GFACT, CEH, Cloud+, CySA+, PenTest+, SSCP, Security+, or GSEC
REQUIRED SKILLS AND EXPERIENCE :
- Knowledge of host / network access control mechanisms (e.g., access control list)
- Knowledge of incident response and handling methodologies.
- Knowledge of Intrusion Detection System (IDS) / Intrusion Prevention System (IPS) tools and applications.
- Knowledge of cyber defense policies, procedures, and regulations.
- Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
- Must meet DoD 8140 Cyber Defense Infrastructure Support Specialist (521)
REQUIRED CITIZENSHIP AND CLEARANCE :
- Must be a U.S. Citizen.
- Minimum Secret clearance; must be TS eligible based on investigation type (T5).
The Alaka ina Foundation Family of Companies (FOCs) is a fast-growing government service provider. Employees enjoy competitive salaries.
Eligible full-time employees enjoy a 401K plan with company match; medical, dental, disability, and life insurance coverage;
tuition reimbursement; paid time off; and 11 paid holidays.
Senior Cyber Defense Analyst - Security Clearance Required
CSSP Analyst (CEH, CySA+, SCYBER, CFR, PenTest+, CCNA Cyber Ops, CCNA Security, GCIA, GCIH, GICSP). General Engineering, Computer Engineering, Electrical Engineering, Computer Science, Computer Forensics, Cyber Security, Software Engineering, Information Assurance, or Computer Security). Cyber Defen...
Data Security Analyst DCO/Cyber Security Sensors
Engineer connections from security devices, security managers, and security platforms across the Theater to the RCC-P SIEM. Bachelor of Science degree in Information Technology, Cybersecurity, Data Science, Information Systems, or Computer Science. Consolidate different data sources into a single vi...
GIS Analyst - Security Clearance Required
Maintains geospatial databases to support intelligence activities, exercise, and training events in theater to include collecting, processing and standardizing data for ranges and training areas for OAIs related to Operations Pathways and other training and exercises west of the international date l...
Electromagnetic Warfare Intelligence Analyst - Security Clearance Required
Electromagnetic Warfare Intelligence Analyst. You'll also provide research and analysis of various pertinent national security policies, military strategies, vulnerability assessments, threat and intelligence assessments. You will aid in processes, data management and analysis functions in order to ...
Project Control Analyst, Mid - Security Clearance Required
Prepare the cost-to-complete, including supporting estimates and contract deliverables, respond to contract and program data calls, and participate in contract terms and conditions and statement of work reviews. Ability to collect and analyze data from multiple sources, summarize it, and read and in...
Data Scientist - Security Clearance Required
Work across multiple staff offices to collect and fuse data, develop innovative methods to standardize data ingestion and tagging, and support on-going management of associated INDOPACOM data assets. Work across all USINDOPACOM directorates and special staff to understand the data resident within th...
Cyber Threat Analyst
Provide situational awareness of local, regional, and international cyber threats, including attribution analysis of cyber organizations, programs, capabilities, motivations, and intent to conduct cyberspace operations. Provide strategic level intelligence analysis of cyber threats, vectors, and act...
Program Analyst (A/OPC) - Security Clearance Required
Top-Secret security clearance and be SCI eligible. Salary to be determined by the education, experience, knowledge, skills, and abilities of the applicant internal equity, and alignment with market data. ...
Cyber Security Analyst
CACI is seeking a Cyber Security Analyst for the DISA GSM-O II program to support Cyber Operations for our customers at Fort Meade, MD. Cyber Security AnalystJob Category: Information TechnologyTime Type: Full timeMinimum Clearance Required to Start: TS/SCIEmployee Type: RegularPercentage of Travel ...
WTRS - Security Specialist (Industrial Security Analyst 4) - 19772
Mission Technologies is leading the next evolution of national defense – the data evolution - by accelerating a breadth of national security solutions for government and commercial customers. Our capabilities range from C5ISR, AI and Big Data, cyber operations and synthetic training environments to ...