Cybersecurity Operations Analyst II with Security Clearance
3 weeks ago
What You'll Get to Do:
* Coordinate and implement tasks, performing analysis, and building/documenting response activities required during cyber security incident response, including but not limited to actions such as implementing containment measures, IP blocks, domain blocks, and disabling user accounts on the direction of the Government.
* Coordinates with Security and Installations Directorate (SI) Office of Counterintelligence (SIC), Insider Threat Office (SIII), in addition to other law enforcement and counterintelligence personnel as required to perform advanced investigation and triage of incidents;
* Collaborates with appropriate authorities in the production of security incident reports;
* Categorizes incidents and events;
* Coordinates with other contracts, organizations, activities, and other services as appropriate to ensure incidents are properly reported, contained, and eradicated;
* Coordinates with other contracts, organizations, activities, and other services as appropriate to de-conflict blue/red team activity with open incidents/events;
* Coordinates with other contracts, organizations, activities, and services to ensure NGA recovers from an incident/event;
* Builds timelines, documents, briefings, and other products as required to inform stakeholders of incident response actions, analysis, and the impact of both adversary activity and blue force response actions.
* Documents actions taken and analysis in the authorized ticketing system to a level of detail where the actions taken and analysis are capable of being systematically reconstructed.
* Develops and when approved by the Government generates and updates reports in the Joint Incident Management System (JIMS), Incident Case Management System (ICMS), and/or other authorized reporting systems as directed;
* Develops, maintains, sustains, and when properly authorized by the Government executes custom scripts, tools, and capabilities to collect and analyze data, and to respond to incidents/events;
* Performs digital media analysis on host, server, and network data as required to analyze and respond to an incident, including but not limited to volatile and non-volatile memory and/or system artifact collection and analysis;
* Develops and identifies indicators of compromise to send to Cybersecurity stakeholders and other Contract Services;
* Provides adversary attribution;
More About the Role:
* Performs malware analysis and signature development;
* Provides input to and coordinates with all applicable stakeholders to develop and deliver the daily CSOC Significant Activity Report, the daily CSOC Operations Update, and the Weekly CSOC Status Report;
* Serve as C-IRT members as required and serve under the direct control of, and take direction from, the Government C-IRT Commander;
* Develop and coordinate courses of action with various Government and contract stakeholders, and when properly authorized by the Government, execute Defensive Cyberspace Operations-Internal Defensive Measures on behalf of the NGA on NGA networks and systems;
* Performs digital media analysis and malware reverse engineering on host, server, and network data as required to analyze and respond to an incident, including but not limited to volatile and non-volatile memory and/or system artifact collection and analysis.
* When properly authorized by the Government, execute custom scripts, tools, and capabilities to collect and analyze data, and respond to incidents/events;
* Develops, documents, and provides the Government incident investigation reports which include sufficient information to document the entire lifecycle of the incident and the response, including but not limited to adversary and friendly forces activity, host and network analysis, timelines, and recommendations for corrective actions, recommendations for new Tactics, Techniques, and Procedures (TTP) and other recommendations as appropriate, within 30 days of C-IRT stand-down;
* Conduct Quality Control reviews of a percentage of closed CSOC Tier 2 tickets each week to ensure proper analysis, categorization, documentation, and notification;You'll Bring These Qualifications:
* Must be a US Citizen with an Active TS/SCI to start work, but required to obtain a CI Poly within 6 months.
* Typically has a University Degree (BA/BS) or equivalent experience and minimum 4 years of related work experience
* All Contractor personnel performing CSOC Tier 3 services shall have a certification that is compliant with DoD 8140.01 and DoD 8570.01-M IAT Level II and CSSP Analyst Certification.
* Ability to work 1 or more of 5 work shifts
These Qualifications Would be Nice to Have:
* IAT Level III
* Active TS/SCI w/poly
* 5+ years of related CSOC tier 2 or 3 work experience
-
Vulnerability Assessment Analyst
3 weeks ago
Springfield, United States CALIBRE Full timeCALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Vulnerability Assessment Analyst (Mid-level) that will perform assessments of systems and networks within a Government enclave and identify where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. The...
-
FedRAMP SOC Analyst
3 days ago
Springfield, United States Elevance Health Full timeFedRAMP SOC Analyst Location: This position will work a hybrid model (remote & office). The ideal candidate will live within 50 miles of one of our Elevance Health PulsePoint locations. The FedRAMP SOC Analyst will be responsible for providing the first line of defense against cyber threats. Your core focus will be cybersecurity operations, incident...
-
Cybers Security Engineer/Analyst
3 weeks ago
Springfield, United States Zachary Piper Solutions Full timeTo serve the DoD Joint Operations Center (DJOC) at Ft. Meade, Maryland, Zachary Piper Solutions is looking for a Cyber Operations Analyst. We are looking for somebody who can provide situational awareness of the operational environment by utilizing operational data and cyber threat intelligence. To help protect the environment, the team is in need of...
-
Cybersecurity Executives
7 days ago
Arlington/VA/US Department of Homeland Security Full timeThe Department of Homeland Security (DHS) is recruiting professionals to support a range of executive and senior executive roles across the Cybersecurity and Infrastructure Security Agency (CISA) to include Assistant Director for Integrated Operations and Deputy Assistant Director for Integrated Operations. All position is in the DHS Cybersecurity...
-
Product Cybersecurity Lead
6 days ago
Boulder, CO, United States SciTec Full timeSciTec has been awarded multiple government contracts and is growing our creative Team! SciTec, Inc. is a dynamic small business with the mission to deliver advanced sensor data processing technologies and scientific instrumentation capabilities in support of National Security and Defense. We support customers throughout the Department of Defense and U.S....
-
Operations Research Analyst
1 week ago
Springfield, Illinois, United States Transportation Security Administration Full timeOverviewOperations Research AnalystOpen & closing dates04/29/2024 to 05/20/2024Pay scale & gradeSV GAppointment typeSalary$82,764.00 to $153,354.00 PAWork scheduleLocationSpringfield, VirginiaDutiesSummarySecuring Travel, Protecting People - At the Transportation Security Administration, you will serve in a high-stakes environment to safeguard the American...
-
Operations Research Analyst
1 week ago
Springfield, United States Transportation Security Administration Full timeOverviewOperations Research AnalystOpen & closing dates04/29/2024 to 05/20/2024Pay scale & gradeSV GAppointment typeSalary$82,764.00 to $153,354.00 PAWork scheduleLocationSpringfield, VirginiaDutiesSummarySecuring Travel, Protecting People - At the Transportation Security Administration, you will serve in a high-stakes environment to safeguard the American...
-
Cybersecurity Systems Assessment Engineer
2 weeks ago
Springfield, United States Business Integra Full timeJob DescriptionJob DescriptionScope Of Responsibilities: Direct the actions of RME personnel to coordinate, develop, and evaluate security programs for the organization. Develops and conducts tests of systems to evaluate compliance with specifications and requirements by applying cybersecurity principles and methods for evaluating, verifying, and...
-
Threat Intelligence
1 week ago
Springfield, United States MASSMUTUAL Full time**The Opportunity** We’re growing, and our clients deserve the best. As a Threat Intelligence & Offensive Security Analyst you will have the opportunity to work in a thriving and robust environment across multiple specialty areas by analyzing cybersecurity information, investigating cybersecurity incidents and events, and protecting & defending against...
-
Senior Cybersecurity Watch Analyst
6 days ago
Arlington, VA, United States Ampcus Full timeSenior Cybersecurity Watch AnalystContract RoleRequired Top Secret SCI Clearance Required Location: On-Site in Arlington, VA BS in computer science or related field or four-year equivalent training and withat least 3 years experience in the field of cybersecurity or 5-8 years of experience in the field. IAT Level III (CASP + CE, CCNP, CISA, CISSP GCED, GCIH,...
-
ISSO Team Lead
3 days ago
Springfield, United States cFocus Software Incorporated Full timecFocus Software seeks an ISSO Team Lead to join our program supporting USDHS at TSA HQ in Springfield, Virigina. This position has remote capabilities. This position requires an active Secret clearance and must meet 8570 requirements. Qualifications: Bachelor's Degree or equivalent experience in a computer, engineering, or science field. Active Secret...
-
Vulnerability Assessment Analyst
2 weeks ago
Springfield, United States Calibre Inc Full timeCALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Vulnerability Assessment Analyst (Mid-level) that will perform assessments of systems and networks within a Government enclave and identify where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. The...
-
Vulnerability Assessment Analyst
3 days ago
Springfield, United States Calibre Inc Full timeCALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Vulnerability Assessment Analyst (Mid-level) that will perform assessments of systems and networks within a Government enclave and identify where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. The...
-
Operations Research Analyst
2 weeks ago
Springfield, Illinois, United States Department Of Homeland Security Full timeSummary Securing Travel, Protecting People - At the Transportation Security Administration, you will serve in a high-stakes environment to safeguard the American way of life. In cities across the country, you would secure airports, seaports, railroads, highways, and/or public transit systems, thus protecting America's transportation infrastructure and...
-
Operations Research Analyst
1 week ago
Springfield, United States Department Of Homeland Security Full timeSummary Securing Travel, Protecting People - At the Transportation Security Administration, you will serve in a high-stakes environment to safeguard the American way of life. In cities across the country, you would secure airports, seaports, railroads, highways, and/or public transit...
-
ISSO Team Lead
3 weeks ago
Springfield, United States cFocus Software Incorporated Full timeJob DescriptionJob DescriptioncFocus Software seeks an ISSO Team Lead to join our program supporting USDHS at TSA HQ in Springfield, Virigina. This position has remote capabilities. This position requires an active Secret clearance and must meet 8570 requirements.Qualifications:Bachelor’s Degree or equivalent experience in a computer, engineering, or...
-
Cyber Security Operations Specialist II
3 weeks ago
Springfield, United States RISA Full timeAbout RISAIn this time of rapid change, as technologies expand at lightning speed, RISA seeks to remain at the forefront - applying them in unique ways to address our customers’ challenges and providing our employees with engaging career opportunities. We seek professionals excited by a challenge and focused on assisting our customers to reach their goals....
-
Vulnerability Assessment Analyst
1 week ago
Springfield, United States CALIBRE Systems Full timeJob Description CALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Vulnerability Assessment Analyst (Mid-level) that will perform assessments of systems and networks within a Government enclave and identify where those systems/networks deviate from acceptable configurations, enclave policy, or local...
-
Vulnerability Assessment Analyst
3 days ago
Springfield, United States CALIBRE Systems Full timeJob Description CALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Vulnerability Assessment Analyst (Mid-level) that will perform assessments of systems and networks within a Government enclave and identify where those systems/networks deviate from acceptable configurations, enclave policy, or local...
-
Product Cybersecurity Engineer
6 days ago
Boulder, CO, United States SciTec Full timeSciTec has been awarded multiple government contracts and is growing our creative Team! SciTec, Inc. is a dynamic small business with the mission to deliver advanced sensor data processing technologies and scientific instrumentation capabilities in support of National Security and Defense. We support customers throughout the Department of Defense and U.S....