Cybersecurity/Incident Response Analyst with Security Clearance
4 weeks ago
1) IAT II and CND Analyst or IR compliant
2) IDS/IPS experience - Splunk
3) PCAP analysis - Wireshark
**Minimum of a Secret Clearance Required with ability to obtain TS/SCI** Position Description As a CND Incident Response Analyst you will identify, isolate, investigate, inform, and implement measures to detect and protect data across a wide spectrum of sources and locations
You will validate suspicious events or reports and determine if the event constitutes an incident
You will ensure incidents are properly entered into the appropriate reporting system and determine the severity of the incident
Position Requirements and Duties • Maintains familiarity with CJCSM 6510.01B.
• Compiles and maintains internal standard operating procedure (SOP) documentation.
• Ensures associated documentation and capabilities remain compliant with CJCSM 6510.01B and other applicable policy directives.
• Provides network intrusion detection and monitoring, correlation analysis, incident response and support for the Cybersecurity Service Provider (CSSP) and its subscriber sites.
• Validates suspicious events or reports and determine if the event constitutes an incident and properly enter associated data into the appropriate reporting systems.
• Coordinates with JFHQ-DoDIN and supported entities regarding significant incidents to ensure proper analysis is performed and timely and accurate reporting of the incident is completed.
• Provides 24x7 support for the CSSP’s Incident Response capability during non-core business hours consistent with CSSP requirements as needed.
• Performs network and host-based digital forensics on Microsoft Windows based systems and other operating systems as necessary to enhance response to, support of, and investigation into significant network incidents.
• Possesses working knowledge of full packet capture PCAP analysis and accompanying tools (Wireshark, etc.).
• Explores patterns in network and system activity via log correlation using Splunk and supplemental tools
• Possesses understanding of IDS/IPS solutions to include signature development and implementation
• Participates in program reviews, product evaluations, and onsite certification evaluations
Qualifications 4+ years experience in Cybersecurity Service Provider (CSSP) environment or similar
DoD or DoN Cybersecurity Workforce (CSWF) Certification or compliance (DoD 8140 or SECNAV M-5239) Required Skills Knowledge of Incident Response Procedures
Knowledge of Packet Analysis
Knowledge of IDS/IPS solutions
Familiarity with various Host-Based Tools
Experience with Log Aggregation Tools
Logical thinking and analytical ability
Verbal and written communication ability
Highly Desired Skills Knowledge of CJCSM 6510.01B
Experience with Digital Forensics
The ability to solve problems independently ***Need to be flexible on shifts based on the nature of the work 24/365
There is a weekend rotation
IAT II Certs and Above: CCNA Security, CySA+ **, GICSP, GSEC, Security+ CE, CND, SSCP, CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP
CSSP Certs: CEH, CFR, CCNA Cyber Ops, CCNA-Security, CySA+ **, GCIA, GCIH, GICSP, Cloud+, SCYBER, PenTest+, SSCP, CHFI, CFR, CND, CCNA-Security, GCFA, CISA, GSNA,, CISM, CISSP, CCISO
-
Charleston, United States CareerBuilder Full timeTop Skills' Details 1) IAT II and CND Analyst or IR compliant 2) IDS/IPS experience Splunk 3) PCAP analysis Wireshark. Minimum of a Secret Clearance Required with ability to obtain TS/SCI Position Description As a CND Incident Response Analyst you will identify, isolate, investigate, inform, and implement measures to detect and protect data across a wide...
-
Tier II Cyber Incident Response Analyst
3 weeks ago
Charleston, United States SAIC Full timeDescription Overview: We are seeking a motivated, career and customer oriented Cyber Incident Response (CIR) Tier II Analyst interested in joining our Cyber Security Operations Center (CSOC) team in support of the Department of Veterans Affairs (VA). This is a Third Shift Position (11pm – 7am). (This is a 24/7/365 environment. Some weekends and holidays...
-
Information Security Analyst
2 weeks ago
Charleston, United States City National Bank of WV Full timeJob DescriptionJob DescriptionEQUAL OPPORTUNITY EMPLOYER, INCLUDING DISABILITY/VETSSummary DescriptionCity National Bank prioritizes the protection of our digital assets and the confidentiality, integrity, and availability of our information systems. As an Information Security Analyst, you will play a crucial role in strengthening our defenses against...
-
Cyber Security Analyst Ops Watch
4 weeks ago
North Charleston, United States Adapt Forward Full timeJob DescriptionJob DescriptionCyber Security Analyst Ops Watch Incident Response North Charleston, SC Minimum of a Secret Clearance Required with ability to obtain TS/SCIPosition DescriptionAs a CND Incident Response Analyst you will identify, isolate, investigate, inform, and implement measures to detect and protect data across a wide spectrum of sources...
-
Cybersecurity Subject Matter Expert
2 weeks ago
Charleston, United States TM3 Solutions Inc Full timeJOB DESCRIPTION: Experience: Twelve (12) years of hands-on experience with cybersecurity processes development and documentation, cybersecurity policy / guidance, cybersecurity inspections, cybersecurity training development/coordination or PKI, to include three (3) of the following four (4) areas: Systems Requirements, Operational Requirements, Test &...
-
Cybersecurity Subject Matter Expert
3 days ago
Charleston, United States TM3 Solutions Inc Full timeJOB DESCRIPTION: Experience: Twelve (12) years of hands-on experience with cybersecurity processes development and documentation, cybersecurity policy / guidance, cybersecurity inspections, cybersecurity training development/coordination or PKI, to include three (3) of the following four (4) areas: Systems Requirements, Operational Requirements, Test &...
-
Cloud CyberSecurity Specialist
4 weeks ago
Charleston, United States Novalink Solutions LLC Full timeJob DescriptionJob DescriptionThe Office of Cybersecurity is tasked with securing the Agency cloud infrastructure and performing ongoing enterprise cybersecurity threat monitoring and incident response capabilities. A strong candidate for this position should possess experience in the following by priority:1. Cyber Threat Response and Incident Handling2....
-
Senior Cybersecurity Specialist
4 weeks ago
Charleston, United States ASRC Federal Full timeWe are seeking a highly skilled and motivated cybersecurity specialist to lead efforts related to the design, development, integration, testing, and fielding support services for the Naval Information Warfare Center (NIWC) Atlantic in Charleston, SC. In this role, you will be responsible for providing cybersecurity support to various customers, including...
-
Security Analyst-Lead
2 weeks ago
Charleston, United States Novalink Solutions Full timeJob Description SCOPE OF THE PROJECT: The Office of Inspector General, Office of the CISO is responsible for securing and monitoring the agency's critical applications and network for the SC Department of Social Services. The Department seeks a highly motivated individual who has the skills and experience needed to support this Office's mission in protecting...
-
Computer System Analyst III
6 days ago
Charleston, United States Link Solutions Full timeJob Description Links Solutions is seeking a Computer System Analyst III to join our team in Charleston, SC. Must be a US Citizen Hybrid Permitted (Must be able to come into office 1-2 days weekly) Public Trust Security Clearance or have the ability to obtain The Computer Systems Analyst will oversee cybersecurity operations, system maintenance, and network...
-
Exabeam Consultant
1 week ago
Charleston, United States forhyre.com Full timeResponsibilities Assist in the deployment, configuration, and maintenance of Exabeam SIEM solutions to monitor and analyze security events in both IT and OT environments. Monitor Exabeam alerts and logs to identify potential security threats, anomalies, and operational issues across IT and OT infrastructure. Triage and investigate security incidents...
-
North Charleston, United States Adapt Forward Full timeJob DescriptionJob DescriptionCoretex XSOAR - Security Orchestration and Automated Response (SOAR) Engineer Charleston, SC preferred, Stuttgart, Germany and Pearl City, Hawaii also acceptable Minimum Secret Clearance required with upgrade to TS-SCI As a SOAR Engineer, you will be responsible for the development, tuning, management, and deployment of...
-
Corelight Cyber Security Engineer
2 weeks ago
North Charleston, United States Adapt Forward Full timeJob DescriptionJob DescriptionCyber Security Engineer (Corelight) Remote, USMinimum Secret Clearance required with upgrade to TS-SCI As a Cyber Security Engineer (Corelight), you will be responsible for the development, tuning, management, and deployment of the Corelight Application in support of Network Detect and Respond activities. This role also...
-
Product Cybersecurity Engineer
6 days ago
Boulder, CO, United States SciTec Full timeSciTec has been awarded multiple government contracts and is growing our creative Team! SciTec, Inc. is a dynamic small business with the mission to deliver advanced sensor data processing technologies and scientific instrumentation capabilities in support of National Security and Defense. We support customers throughout the Department of Defense and U.S....
-
RMF Engineer with Security Clearance
5 days ago
North Charleston, United States ClearanceJobs Full timeDescription The Assessment and Authorization (A&A) SME will manage customer-required Risk Management Framework (RMF) efforts for Department of Defense (DoD) customers. This role will work collaboratively with Information Technology (IT) Engineers and System Administrators to conduct Cyber Security (CS) analysis, mitigation, remediation, and monitoring to...
-
Product Cybersecurity Lead
6 days ago
Boulder, CO, United States SciTec Full timeSciTec has been awarded multiple government contracts and is growing our creative Team! SciTec, Inc. is a dynamic small business with the mission to deliver advanced sensor data processing technologies and scientific instrumentation capabilities in support of National Security and Defense. We support customers throughout the Department of Defense and U.S....
-
Senior Cybersecurity Specialist
2 weeks ago
Charleston, United States ASRC Federal Holding Company Full timeJob Description We are seeking a highly skilled and motivated cybersecurity specialist to lead efforts related to the design, development, integration, testing, and fielding support services for the Naval Information Warfare Center (NIWC) Atlantic in Charleston, SC. In this role, you will be responsible for providing cybersecurity support to various...
-
Senior Cybersecurity Specialist
3 days ago
Charleston, United States ASRC Federal Holding Company Full timeJob Description We are seeking a highly skilled and motivated cybersecurity specialist to lead efforts related to the design, development, integration, testing, and fielding support services for the Naval Information Warfare Center (NIWC) Atlantic in Charleston, SC. In this role, you will be responsible for providing cybersecurity support to various...
-
Lead Cyber Security Operations Center
38 minutes ago
Quincy, MA, United States State Street Corporation Full timeWho are we looking for: State Street seeks to recruit an Lead Cyber Security Operations Center (SOC) analyst that will assist in the detection, triage, analysis and response to cyber-attacks. The analyst will join our SOC team which will run a 24/7 coverage, 365 days a year model, with a partner team in Ireland. The SOC team is responsible for analyzing...
-
Quincy, MA, United States State Street Corporation Full timeWho are we looking for: State Street seeks to recruit an Early Career Cyber Security Operations Center (SOC) analyst that will assist in the detection, triage, analysis and response to cyber-attacks. The analyst will join our SOC team which will run a 24/7 coverage, 365 days a year model, with a partner team in Ireland. The SOC team is responsible for...
