Advanced Threat Detection
3 weeks ago
Description
Leidos' Digital Modernization sector has a current job opportunity for a Defensive Cyber Operations (DCO) Counter-Measures Engineer to perform advanced threat detection and hunt engineering at Scott AFB, IL.
This position will support the GSM-O II program, which provides network operations and cyber defense support to the Defense Information Systems Agency (DISA) in support of the DoD and COCOMs. The selected candidate will provide support for defensive cyber operations activities and will be expected to actively engage with a variety of customers and mission partners.
PRIMARY RESPONSIBILITIES:
- Author and deploy novel countermeasures to eliminate threats and illuminate their activities.
- Assess the effectiveness of countermeasures on an ongoing basis and revector actions as needed.
- Design and develop solutions to deliver automated cybersecurity services, conduct agile development & maintenance of automation script/tools to scale cybersecurity work across the enterprise.
- Develop custom integrations, data correlation, and processing strategies to reduce cybersecurity risk and act as a Subject Matter Expert for the automation team.
- Maintain situational awareness of cyber activity by reviewing DoD, Intelligence Community and open-source reporting for new vulnerabilities, malware or other threats that have the potential to impact the DoDIN.
BASIC QUALIFICATIONS:
- Must have an active DoD Secret clearance and be eligible to obtain TS/SCI
- Bachelor's degree in a related discipline with 8+ years of applicable experience; additional related years of experience is accepted in lieu of a degree.
- DoD-8570 IAT Level 2 baseline certification (Sec+ CE or equivalent) is required to start and CSSP-A certification must be obtained within 180 days of start date
- Proficiency in programming in at least one modern language (Java, Python, Ruby, C++).
- Custom malware detection development experience.
- Advance understanding of TCP/IP, networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
- Understand the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
- UNIX Administrative skills.
PREFERRED SKILLS:
- Experience with DISA and DoD Networks.
- Experience countering APTs or emergent threats to DOD networks.
- Skilled in developing extended cyber security analytics.
- Experience in developing and supporting a development environment.
- Experience automating tasks via Bash, Python, PowerShell, or other scripting tools.
- Experience in Linux and Windows-based systems administration in a cloud or virtualized environment.
- Experience with API development and integration.
- Experience with Git, Sigma, Yara, Snort, and Suricata.
- Experience with Detection-as-a-Code.
- Experience with malware analysis concepts and methods.
- Advanced Certifications such as GREM, OSCP, CISSP or CASP.
While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:Pay Range $101,400.00 - $183,300.00The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
-
Intrusion Detection Analyst
1 month ago
Scott Air Force Base, United States CSIOS Corporation Full timeReview audit data and network traffic data for irregularities or otherindications of real or potential security violations● Correlate and analyze security data and events from alert and traffic flowsystems● Identify potential advanced persistent and coordinated threats acrossmultiple platforms● Perform tuning and optimization tasks to include sensor...
-
Intrusion Detection Analyst
2 days ago
Scott Air Force Base, United States CSIOS Corporation Full timeReview audit data and network traffic data for irregularities or otherindications of real or potential security violations Correlate and analyze security data and events from alert and traffic flowsystems Identify potential advanced persistent and coordinated threats acrossmultiple platforms Perform tuning and optimization tasks to include sensor rule review...
-
supv it cybersecurity specialist
2 weeks ago
Scott Air Force Base, Illinois, United States Defense Information Systems Agency Full timeProvides leadership and guidance to Computer Network Defense (CND) Information Security (INFOSEC) analysts to promote advanced analysis, correlation, and the use of automation to enhance attack detection and mitigation. Establishes guidelines and performance expectations for subordinate employees, which are clearly communicated through the formal employee...
-
Lead Cybersecurity Engineer
3 days ago
Scott Air Force Base, United States CDIT Full timeJob Description Lead Cybersecurity Engineer The Lead Cybersecurity Engineer shall have a bachelor's degree in Information Technology, Engineering, or a related field with a minimum of 10 years of progressive enterprise engineering and management experience. This position requires an IAT III certification. The lead cybersecurity engineer will be the principle...
-
Cyber Threat Analyst with Security Clearance
4 weeks ago
Scott AFB, United States CSIOS Corporation Full timeDuties and Responsibilities Perform analysis and correlation on cybersecurity eventsCollaborate with internal and external cyber defense organizationsCollaborate with intelligence community and cyber operational forcesMaintain awareness of active cyber threat actors and associated threat setsPredict trends in cyber threat activity relative to the associated...
-
Real Time Cyber Analyst
1 month ago
Scott Air Force Base, United States The Newberry Group Full timeJob DescriptionJob DescriptionWho We Are…Today’s leading government agencies and commercial organizations are putting their trust in Newberry Group, and for good reason.Newberry brings strength to our clients, from the inside out through:Client intimacy and superior quality;Presence and accountability in our relationships; and,Cross-sector leverage of...
-
Cyber Fusion and Threats Analyst
3 weeks ago
SHILOH, IL, United States Leidos Full timeThis position will support the Defense Information Systems Agency (DISA) GSM-O II program, and DISA Global Defensive Cyber Operations (DCO) organization based out of Scott AFB, IL with Cyber Threat Intelligence products, management of adversary indicators of compromise, tracking and monitoring of adversary tactics, techniques, and procedures, and leading...
-
Deputy Chief Information Security Offic.
1 week ago
Hanscom Air Force Base, United States Kessel Run Full timeResponsibilities: You may have noticed that the responsibilities and qualifications listed here are very similar to that of a CSO. This is intentional because you are the Deputy and need to be able to step up and represent the CSO when needed. As a talented deputy, you work closely with CSO and gain the CSO\'s trust and respect so that he/she can delegate...
-
Junior Mechanical Engineer
4 weeks ago
Kirtland Air Force Base, United States Applied Research Associates Full time**Description** The Test Technology Division of Applied Research Associates, Inc. (ARA) has an exciting opportunity for a Junior Mechanical Engineer to provide technical support in weapons effects testing and build a lasting career with ARA. The successful candidate should have a background in Engineering, Chemistry, or Physics and should have a strong...
-
NGTS VTTC Software Engineer Developer Jr.
1 week ago
Nellis Air Force Base, United States Huntington Ingalls Industries Full timeRequisition Number: 18702 Required Travel: 0 - 10% Employment Type: Full Time/Salaried/Exempt Hours Per Week: 40 Security Clearance: TS/SCI Level of Experience: Mid Job Description Mission Technologies, a Division of HII is seeking a software developer to support Modeling, Simulation and Training at the Virtual Test and Training Center (VTTC), Nellis...
-
Staff Security Engineer
7 days ago
North Cambridge, MA, United States State Street Corporation Full timeWho we are looking for The State Street Global Cybersecurity team is looking for a Staff Security Engineer - Identity Threats & IAM Defense. The Cybersecurity team delivers platforms, architecture, and tooling to help Cybersecurity teams make faster, more informed decisions as we work to secure State Street's digital footprint. As a Staff Security Engineer -...
-
Advanced Practice Nurse
7 days ago
Carlinville, IL, United States Carlinville Area Hospital & Clinics Full timePosition Summary:The Carlinville Rural Health Clinic is looking for an Advanced Practice Nurse who, under the direction of the primary care physician, provides health maintenance as well as care to patients with common acute and chronic illness. The APRN is responsible for directing a patient's care that is comprehensive, continuous and coordinated. The...
-
advance tomahawk cruise missile
2 days ago
Naval Base, Norfolk, United States Department Of The Navy Full timeSummaryThis announcement is to inform potential candidates about upcoming job openings. Please note that applications should not be submitted through this notice. To apply, follow the instructions in the "How to Apply" section below. It's important to follow these steps to be considered for the position. The vacancies mentioned in this notice may or may not...
-
Offutt Air Force Base, United States Barbaricum Full timeBarbaricum is a rapidly growing government contractor providing leading-edge support to federal customers, with a particular focus on Defense and National Security mission sets. We leverage more than 15 years of support to stakeholders across the federal government, with established and growing capabilities across Intelligence, Analytics, Engineering,...
-
advance tomahawk cruise missile
4 weeks ago
Naval Base, Norfolk, United States Department Of The Navy Full timeSummary This is a public notice flyer to notify interested applicants of anticipated vacancies. Applications will not be accepted through this flyer. Interested applicants must follow the directions in the "How to Apply" section of this flyer to be considered. There may or may not be actual vacancies filled from this flyer. Notice of Result letters will not...
-
N/A, N/A, United States CrowdStrike, Inc. Full timeAbout the Role:CrowdStrike is looking for a Senior Software Engineer to join our growing Content Research & Integration Tactical team within the EndPoint Protection Content group, which focuses on vulnerability research, exploit mitigations, and security-related endpoint development on the Windows operating system. The Endpoint Protection Content group...
-
SOC Analyst with Security Clearance
4 days ago
Scott AFB, United States TEKsystems co Allegis Group Full timeJob DescriptionResponsible for maintaining the integrity and security ofenterprise-wide cyber systems and networks. Supports cyber securityinitiatives through both predictive and reactive analysis, articulatingemerging trends to leadership and staff. Coordinates resources duringenterprise incident response efforts, driving incidents to timely and...
-
Cyber Analyst
1 week ago
Hill Air Force Base, United States AERMOR LLC Full timeJob DescriptionJob DescriptionEmployee Type: Full-TimeLocation: Hill AFBJob Type: Cyber SecurityExperience: 5+ YearsClearance Type: TS/SCIStart Date: May 2024AERMOR, LLC is seeking qualified candidates to assist in analyzing and testing Intercontinental Ballistic Missile (ICBM) weapon systems and related systems/sub systems using qualified...
-
Cybersecurity Analyst
3 days ago
Hill Air Force Base, United States AERMOR LLC Full timeJob DescriptionJob DescriptionEmployee Type: Full-TimeLocation: Hill AFBJob Type: Cyber SecurityExperience: 4+ YearsClearance Type: TS/SCIStart Date: May 2024AERMOR, LLC is seeking qualified candidates to assist in analyzing and testing Intercontinental Ballistic Missile (ICBM) weapon systems and related systems/sub systems using qualified...
-
Staff Engineer 1
4 weeks ago
Kirtland Air Force Base, United States ARA Full timeARA's Test Technology Division (ARA-TTD) Hard Target Mechanics group is looking for an individual with a background in Mechanical Engineering, Civil Engineering, or related engineering field. You will be instrumental in characterizing weapon effects against a variety of targets. These tests are critical to develop technologies that safeguard our nation from...