Cyber Detection Analyst
4 weeks ago
Create and modify SIEM dashboards to clearly identify scope of findings or monitor activity
Identify patterns/outliers within data sets that match threat actor TTPs, post compromise behavior, and otherwise unusual activity, such as insider threat
Conduct dynamic and static malware analysis on samples obtained during incident handling or hunt operations to identify IOCs
Track investigations to resolution and provide an after-action report as required
Identify misuse, malware, or unauthorized activity on monitored networks Analyze all relevant cyber security event data and other data sources for attack indicators and potential security breaches Assist in coordination during incidents Identify intrusions utilizing various detection and prevention systems and other security event data sources on 24x7x365 basis Analyze intrusion related data to determine root cause and identify follow on activity while coordinating with Incident Handlers, Hunters, and various partners Correlate data from intrusion detection and prevention systems with data from other sources such as firewall, web server, and DNS logs, to include NetFlow, metadata, and pcap analysis Contributes in tuning and filtering of events and information, creating custom views and content using all available tools Review assembled data with firewall administrators, engineering, system administrators and other appropriate groups to determine the risk of a given event Contribute to the development of playbooks and procedures for handling each security event detected.
Required Skills: Requires Bachelor's degree or equivalent and minimum 5 years of related experience
OR 4 additional years of experience in lieu of degree Minimum of 5 years of progressively responsible experience in Cyber Security, InfoSec, Security Engineering, Network Engineering with emphasis in cyber security issues and operations, computer incident response, systems architecture, data management
Familiarity with the following classes of enterprise cyber defense technologies Security Information and Event Management (SIEM) systems to include Splunk ES, Elk, Sentinel, Chronicle Sysmon Azure AWS GCP Network Intrusion Detection System/Intrusion Prevention Systems (IDS/IPS) Host Intrusion Detection System/Intrusion Prevention Systems (IDS/IPS) Network and Host malware detection and prevention Network and Host forensic applications Web/Email gateway security technologies Log aggregation toolsOptional Skills: MUST be a US Citizen with a U.S
Government clearance - Intel with Polygraph NOTE: Must have an active TS-SCI with poly
No sponsorships or upgrades are available
Submissions without this requirement will not be considered
H1-B holders will not be considered
Benefits:
5 week paid vacation 10 gov't holidays
15% contribution to 401k
LTD, STD disability and life insurance
Paid health, dental, and vision for employee and family.
$5000 annual training expense reimbursement
Computer purchase plan
-
Cyber Network Defense Analyst
3 weeks ago
Arlington, VA, United States ZP Group Full timeCyber Network Defense Analyst - Level IV Arlington, VA Job Id: 87992 Job Category: Other Job Location: Arlington, VA Security Clearance: TS/SCI Business Unit: ZP Group Division: Not Defined Position Owner: Trudee Wooden Zachary Piper Solutions provides remote and onsite advanced technical assistance, proactive...
-
Cyber Network Defense Analyst Level III
2 weeks ago
Arlington, VA, United States ZP Group Full timeCyber Network Defense Analyst Level III Arlington, VA Job Id: 87991 Job Category: Other Job Location: Arlington, VA Security Clearance: TS/SCI Business Unit: ZP Group Division: Not Defined Position Owner: Trudee Wooden The DHS’s Hunt and Incident Response Team (HIRT) secures the Nation’s cyber and...
-
Herndon, United States Accylerate Full timeClient: Defense ContractorTitle: Senior Cyber Security Analyst Duration: Direct HireLocation: Herndon, VA Active TS/SCI ClearanceCAP or CCSP or CISSP or Cloud+ Certification Client is seeking an Senior Cyber Security Analyst with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to...
-
Senior CND-SP Analyst
6 days ago
Fredericksburg, VA, United States City of Fredericksburg, VA Full timeSenior CND-SP Analyst This Position is located in Washington, DC ARTTRA Inc. is seeking a highly qualified Cyber Network Defense-Service Provider Analyst to ensure the safety of information systems assets, and to protect systems from intentional or inadvertent access or destruction. The ideal candidate will:• Perform Computer Security Incident Response•...
-
Early Career Cyber Security Operations Center
2 weeks ago
Quincy, MA, United States State Street Corporation Full timeWho are we looking for: State Street seeks to recruit an Early Career Cyber Security Operations Center (SOC) analyst that will assist in the detection, triage, analysis and response to cyber-attacks. The analyst will join our SOC team which will run a 24/7 coverage, 365 days a year model, with a partner team in Ireland. The SOC team is responsible for...
-
Lead Cyber Security Operations Center
6 days ago
Quincy, MA, United States State Street Corporation Full timeWho are we looking for: State Street seeks to recruit an Lead Cyber Security Operations Center (SOC) analyst that will assist in the detection, triage, analysis and response to cyber-attacks. The analyst will join our SOC team which will run a 24/7 coverage, 365 days a year model, with a partner team in Ireland. The SOC team is responsible for analyzing...
-
Cyber Security Engineer
4 weeks ago
Herndon, United States Altus Consulting Corp Full timeAltus Consulting is seeking a skilled Cyber Security Engineer to analyze, design, and implement security solutions across various client environments. You will collaborate with analysts, stakeholders, and internal teams to ensure comprehensive cyber defense and deliver high-quality solutions that meet client needs and exceed security objectives....
-
SALVATION - Catch All with Security Clearance
24 hours ago
Herndon, United States Cornerstone Defense Full timeTitle: Catch All Location: Herndon, Virginia Clearance: TS/SCI w/ Polygraph Company Overview: Cornerstone Defense, in partnership with our military, intelligence, and civil government customers, supports U.S. operations worldwide through the use of many different types of intelligence, satellite, and cyber technologies. Cornerstone's Intelligence Sector is...
-
Cyber Security Engineer
3 weeks ago
Herndon, United States Altus Consulting Corp Full timeJob DescriptionJob DescriptionAltus Consulting is seeking a skilled Cyber Security Engineer to analyze, design, and implement security solutions across various client environments. You will collaborate with analysts, stakeholders, and internal teams to ensure comprehensive cyber defense and deliver high-quality solutions that meet client needs and exceed...
-
Cyber Security Senior with Security Clearance
4 weeks ago
Herndon, United States Cornerstone Defense Full timeTitle: Cyber Security Senior Location: Herndon, VA *Clearance: *Active TS/SCI w/ Polygraph needed to apply * Company Overview: Cornerstone Defense, in partnership with our military, intelligence, and civil government customers, supports U.S. operations worldwide through the use of many different types of intelligence, satellite, and cyber technologies....
-
Data Automation Engineer
4 weeks ago
Herndon, United States GovFirst Full timeJob DescriptionJob DescriptionWe are actively seeking a talented and experienced Data Automation Engineer (Cyber Security Systems) to join our team in supporting our customer's Division level Authorization and Accreditation (A&A) projects. The ideal candidate will have a minimum of 16 years of experience and will play a crucial role in identifying...
-
Herndon, United States KDA Consulting Inc Full timeJob DescriptionJob DescriptionWe are looking for experienced Systems Engineers/Cyber Security Engineers/Information Systems Security Engineer (ISSE) to join our technology-based program supporting a key government customer in a fast paced, challenging, and career rewarding experience. As a mission-focused Cyber Security Engineer / ISSE that solves problems...
-
Cyber Security Operations Center
2 weeks ago
Quincy, MA, United States State Street Corporation Full timeState Street seeks to recruit a SOC Manager for its Cyber Defense Center. The SOC Manager will help lead the triage, analysis and response to cyber-attacks. Join us in evolving our response capabilities to protect State Street, its customers and partners from ever-evolving and sophisticated threat actors. State Streets Cyber Fusion Center is responsible for...
-
Herndon, United States Indotronix International Corp Full timeDescription: JOB TITLE: Senior Associate, IT Security (IUP2)External Title: Security Operations Center AnalystLOCATION: Herndon, VirginiaPay Rate$45/hr on w2 JOB DESCRIPTION: The client is searching for talented Information Technology (IT) Security professional to join the Security Operations Team as a Security Analyst. This is an operations center staff...
-
Arlington, VA, United States Invictus International Consulting Full timeTitle: Counter Drug/Transnational Organized Crime Analyst Location: Arlington, VAClearance: TS/SCI Responsibilities:Conduct all-source network analysis of world-wide drug related issues to include Transnational Organized Crime (TOC) and drug trafficking organizations (DTOs) Provide operational intelligence support both for DoD elements performing various...
-
Medical Data Analyst
4 hours ago
McLean, VA, United States Collabera Full timeTitle: Cybersecurity Analyst - Data Loss Prevention Client Domain: Federal Home Loan Mortgage Location: McLean, VA - 22102 - Hybrid/Remote Duration: 12 Contract potential to hire/possible extension Must Haves: Must have hands on experience with Data Loss Prevention (DLP) technologies, not solely from the administrative perspective, looking for...
-
Data Loss Prevention Analyst
4 hours ago
McLean, VA, United States Collabera Full timeTitle: Cybersecurity Analyst – Data Loss Prevention Client Domain: Federal Home Loan Mortgage Location: McLean, VA – 22102 – Hybrid/Remote Duration: 12 Contract potential to hire/possible extension Must Haves: Must have hands on experience with Data Loss Prevention (DLP) technologies, not solely from the administrative perspective, looking for...
-
N/A, N/A, United States CrowdStrike, Inc. Full timeAbout the Role:CrowdStrike is looking for a Senior Software Engineer to join our growing Content Research & Integration Tactical team within the EndPoint Protection Content group, which focuses on vulnerability research, exploit mitigations, and security-related endpoint development on the Windows operating system. The Endpoint Protection Content group...
-
Cyber Security Analyst
7 days ago
Herndon, United States CIBR Warriors Full timeCIBR Warriors is seeking a candidate for a Federal Government IAM/Zero Trust Analyst role. This is primarily a remote role, with one day per week required to be in the Herndon office. The ideal candidate will work with the security architect to build and upkeep the Enterprise IT Security Architecture (EITSA) and other related architecture documents. They...
-
Cyber Security Analyst
1 week ago
Herndon, United States CIBR Warriors Full timeCIBR Warriors is seeking a candidate for a Federal Government IAM/Zero Trust Analyst role. This is primarily a remote role, with one day per week required to be in the Herndon office. The ideal candidate will work with the security architect to build and upkeep the Enterprise IT Security Architecture (EITSA) and other related architecture documents. They...
