Advanced Threat Detection
3 weeks ago
Description
Leidos' Digital Modernization sector has a current job opportunity for a Defensive Cyber Operations (DCO) Counter-Measures Engineer to perform advanced threat detection and hunt engineering at Scott AFB, IL.
This position will support the GSM-O II program, which provides network operations and cyber defense support to the Defense Information Systems Agency (DISA) in support of the DoD and COCOMs. The selected candidate will provide support for defensive cyber operations activities and will be expected to actively engage with a variety of customers and mission partners.
PRIMARY RESPONSIBILITIES:
- Author and deploy novel countermeasures to eliminate threats and illuminate their activities.
- Assess the effectiveness of countermeasures on an ongoing basis and revector actions as needed.
- Design and develop solutions to deliver automated cybersecurity services, conduct agile development & maintenance of automation script/tools to scale cybersecurity work across the enterprise.
- Develop custom integrations, data correlation, and processing strategies to reduce cybersecurity risk and act as a Subject Matter Expert for the automation team.
- Maintain situational awareness of cyber activity by reviewing DoD, Intelligence Community and open-source reporting for new vulnerabilities, malware or other threats that have the potential to impact the DoDIN.
BASIC QUALIFICATIONS:
- Must have an active DoD Secret clearance and be eligible to obtain TS/SCI
- Bachelor's degree in a related discipline with 8+ years of applicable experience; additional related years of experience is accepted in lieu of a degree.
- DoD-8570 IAT Level 2 baseline certification (Sec+ CE or equivalent) is required to start and CSSP-A certification must be obtained within 180 days of start date
- Proficiency in programming in at least one modern language (Java, Python, Ruby, C++).
- Custom malware detection development experience.
- Advance understanding of TCP/IP, networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
- Understand the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
- UNIX Administrative skills.
PREFERRED SKILLS:
- Experience with DISA and DoD Networks.
- Experience countering APTs or emergent threats to DOD networks.
- Skilled in developing extended cyber security analytics.
- Experience in developing and supporting a development environment.
- Experience automating tasks via Bash, Python, PowerShell, or other scripting tools.
- Experience in Linux and Windows-based systems administration in a cloud or virtualized environment.
- Experience with API development and integration.
- Experience with Git, Sigma, Yara, Snort, and Suricata.
- Experience with Detection-as-a-Code.
- Experience with malware analysis concepts and methods.
- Advanced Certifications such as GREM, OSCP, CISSP or CASP.
While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:Pay Range $101,400.00 - $183,300.00The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
-
Advanced Threat Detection
2 weeks ago
Scott Air Force Base, IL, United States Leidos Inc Full timeDescription Leidos' Digital Modernization sector has a current job opportunity for a Defensive Cyber Operations (DCO) Counter-Measures Engineer to perform advanced threat detection and hunt engineering at Scott AFB, IL.This position will support the GSM-O II program, which provides network operations and cyber defense support to the Defense Information...
-
Advanced Threat Detection
3 weeks ago
Scott Air Force Base, United States Leidos Full timeR-00134154 Description Leidos' Digital Modernization sector has a current job opportunity for a Defensive Cyber Operations (DCO) Counter-Measures Engineer to perform advanced threat detection and hunt engineering at Scott AFB, IL. This position will support the GSM-O II program, which provides network operations and cyber defense support to the Defense...
-
Scott Air Force Base, United States Leidos Full timeR-00131823 Description This position will support the Defense Information Systems Agency (DISA) GSM-O II program, and DISA Global Defensive Cyber Operations (DCO) organization based out of Scott AFB, IL with Cyber Threat Intelligence products, management of adversary indicators of compromise, tracking and monitoring of adversary tactics, techniques, and...
-
Intrusion Detection Analyst
4 weeks ago
Scott Air Force Base, United States CSIOS Corporation Full timeReview audit data and network traffic data for irregularities or otherindications of real or potential security violations● Correlate and analyze security data and events from alert and traffic flowsystems● Identify potential advanced persistent and coordinated threats acrossmultiple platforms● Perform tuning and optimization tasks to include sensor...
-
Scott Air Force Base, IL, United States Leidos Full timeR-00131823 Description This position will support the Defense Information Systems Agency (DISA) GSM-O II program, and DISA Global Defensive Cyber Operations (DCO) organization based out of Scott AFB, IL with Cyber Threat Intelligence products, management of adversary indicators of compromise, tracking and monitoring of adversary tactics, techniques, and...
-
Intrusion Detection Analyst
4 weeks ago
Scott Air Force Base, IL, United States CSIOS Corporation Full timeReview audit data and network traffic data for irregularities or otherindications of real or potential security violations● Correlate and analyze security data and events from alert and traffic flowsystems● Identify potential advanced persistent and coordinated threats acrossmultiple platforms● Perform tuning and optimization tasks to include sensor...
-
supv it cybersecurity specialist
2 days ago
Scott Air Force Base, Illinois, United States Defense Information Systems Agency Full timeProvides leadership and guidance to Computer Network Defense (CND) Information Security (INFOSEC) analysts to promote advanced analysis, correlation, and the use of automation to enhance attack detection and mitigation. Establishes guidelines and performance expectations for subordinate employees, which are clearly communicated through the formal employee...
-
Lead Cybersecurity Engineer
1 week ago
Scott Air Force Base, United States CDIT Full timeJob Description Lead Cybersecurity Engineer The Lead Cybersecurity Engineer shall have a bachelor's degree in Information Technology, Engineering, or a related field with a minimum of 10 years of progressive enterprise engineering and management experience. This position requires an IAT III certification. The lead cybersecurity engineer will be the principle...
-
Cyber Threat Analyst with Security Clearance
3 weeks ago
Scott AFB, United States CSIOS Corporation Full timeDuties and Responsibilities Perform analysis and correlation on cybersecurity eventsCollaborate with internal and external cyber defense organizationsCollaborate with intelligence community and cyber operational forcesMaintain awareness of active cyber threat actors and associated threat setsPredict trends in cyber threat activity relative to the associated...
-
Cyber Threat Hunter
2 weeks ago
Ashburn, VA, United States Leidos Inc Full timeDescription Leidos has an immediate need for a Cyber Threat Hunter to join our NOSC Cyber Team. The ideal Cyber Threat Hunter is someone who is process driven, curious, and enjoys identifying patterns and anomalies in data that are not immediately obvious.The Department of Homeland Security (DHS), Network Operations Security Center (NOSC) Cyber is a US...
-
Cyber Threat Intelligence Analyst
2 weeks ago
Ashburn, VA, United States Leidos Inc Full timeDescription Leidos is seeking a talented Cyber Threat Intelligence Analyst to join our team to support a federal customer within the customers Security Operations.The Cyber Threat Intel Analyst will need a strong cyber security background with experience with the following:Identify, track and investigate high priority threat campaigns, malicious actors with...
-
Threat Hunter with Security Clearance
3 weeks ago
Washington, DC, United States Base One Technologies Full timeRequired Education/ExperienceThe candidate must possess an active TS/SCI ClearanceIn addition to clearance requirement, all DHS personnel must obtain an EODBS degree in Science, Technology, Engineering, Math or related field and 8+ years of prior relevant experience with a focus Primary Responsibilities• Create Threat Models to better understand the DHS IT...
-
Ashburn, VA, United States Leidos Full timeR-00125085 Description The U.S. Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a U.S. Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems...
-
Bluemont, VA, United States Leidos Full timeR-00132727 Description Leidos is seeking a talented Cyber Threat Intelligence Analyst to join our team to support a federal customer within the customers Security Operations. The Cyber Threat Intel Analyst will need a strong cyber security background with experience with the following:• Identify, track and investigate high priority threat campaigns,...
-
Real Time Cyber Analyst
4 weeks ago
Scott Air Force Base, United States The Newberry Group Full timeJob DescriptionJob DescriptionWho We Are…Today’s leading government agencies and commercial organizations are putting their trust in Newberry Group, and for good reason.Newberry brings strength to our clients, from the inside out through:Client intimacy and superior quality;Presence and accountability in our relationships; and,Cross-sector leverage of...
-
Cyber Detection Engineer with Security Clearance
2 weeks ago
Fairmont, WV, United States Leidos Full timeR-00131934 Description Leidos is looking for a senior Cyber Detection Engineer Analyst to join our Security Operations Center (SOC) in support of our customer at the National Oceanic and Atmospheric Administration (NOAA)The Cyber Detection Engineer will develop detections based on intelligence available, then research and assist in implementing new detection...
-
Cyber Fusion and Threats Analyst
2 weeks ago
SHILOH, IL, United States Leidos Full timeThis position will support the Defense Information Systems Agency (DISA) GSM-O II program, and DISA Global Defensive Cyber Operations (DCO) organization based out of Scott AFB, IL with Cyber Threat Intelligence products, management of adversary indicators of compromise, tracking and monitoring of adversary tactics, techniques, and procedures, and leading...
-
Cyber Threat Analyst with Security Clearance
2 weeks ago
Morrisville, NC, United States Peraton Full timeAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxyAs the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our...
-
Washington, DC, United States Base One Technologies Full timeRequired Education/ExperienceThe candidate must possess an active TS/SCI ClearanceIn addition to clearance requirement, all DHS personnel must obtain an EODBS degree in Science, Technology, Engineering, Math or related field and 12+ years of prior relevant experience with a focus Primary ResponsibilitiesCreate Threat Models to better understand the DHS IT...
-
Cyber Threat Hunter Lead with Security Clearance
4 weeks ago
Bay St. Louis, MS, United States Base One Technologies Full timeOur Stennis, MS, DC metro and Ashburn VA based client is looking for Cyber Threat Hunter LeadIf you are qualified for this position, please email your updated resume in word format to Cyber Threat Hunter LeadRequired Education/ExperienceThe candidate must possess an active TS/SCI ClearanceIn addition to clearance requirement, all DHS personnel must obtain an...