Cyber Security Analyst, Senior- TS/SCI with Security Clearance
3 weeks ago
Candidates are expected to have a strong work ethic and possess the ability to work as a critical member of a team in pursuit of mission objectives and in support of our customers
We value candidates who are detail-oriented while also being able to think and react quickly to emerging and unique problem sets
To be successful in this role, you'll be able to rapidly adapt and learn how to operate the front and back end of new products and processes
Responsibilities:
• Use Splunk to proactively monitor and provide near real-time cybersecurity status and reports to enable timely decision-making.
• Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources.
• Proactively search for threats and inspect traffic for anomalies and new malware patterns.
• Perform log analysis from a variety of sources, such as individual host, network traffic, firewall, and intrusion detection (IDS) system logs, to identify trends and abnormal behavior, correlate events, and detect tactics, techniques, and procedures (TTPs) that could pose a threat to network security.
• Investigate and analyze logs as well as provide analysis and response to alerts.
• Perform real-time cyber defense incident handling tasks (e.g., forensic collections, intrusion correlation and tracking, threat analysis, and direct system remediation) to support incident response across Windows and Linux platforms and escalate incidents by following documented standard operating procedures.
• Produce high-quality written and verbal communications, recommendations, and findings to customer management.
• Perform critical thinking and analysis to investigate cybersecurity alerts.
• Coordinate with internal and external teams to address threats and risks
#divergent Here's what you'll need:
• Must have active TS/SCI
• At least 10 years of relevant experience
• DoDD 8140 (8570), IAT II Security certification required
• Minimum of 3 years of professional experience in cybersecurity, information risk management, or information systems risk assessment
• Must be knowledgeable in activities such as vulnerability assessment; intrusion prevention and detection; access control and authorization; policy enforcement; application security; protocol analysis; firewall management; incident response; data loss prevention; encryption; advanced threat and incident response; and web-filtering
• At least 2 years of experience working in security operations center or cybersecurity-related environment
• Possess the ability to create ad hoc SPL searches using a wide variety of sources
• Experience conducting or managing incident response and investigating targeted threats
• Understanding of system internals is required to order to implement and execute countermeasures and remediation
• Possess knowledge of network protocols (e.g
TCP/UDP, HTTP, ICMP, DNS, SMTP, etc.), network analysis tools, and ability to perform analysis of associated network logs
• Experienced with network topologies and network security devices (e.g
firewall, proxy, IDS/IPS, DNS, WAF, etc.).
• Solid understanding of cyber threats, MITRE ATT&CK framework and other TTPs
• Knowledge of current IT security best practices
• Knowledge of advanced persistent threats, their capabilities, and experience implementing appropriate countermeasures Preferred:
• Splunk Core Certified User
• Experience with Splunk Enterprise Security
• Experience in a scripting language (e.g., Python, PowerShell, etc.)
• DoDD 8140 (8570) CSSP, CySA , CEH, or GCIH certification preferred
-
Senior Cyber Security Analyst
12 hours ago
San Antonio, United States University Health Full timePOSITION SUMMARY/RESPONSIBILITIES The Senior Cyber Security Analyst must have a deep understanding of information security protocols and a passion for protecting Community First Health Plans Inc. (Community First) healthcare data. In this role, the Senior Analyst will be instrumental in establishing and maintaining security standards across Community First....
-
Cyber Security Specialist
1 week ago
San Antonio, United States Silotech Group Full timeOverview Silotech Group provides Advanced Cyber Solutions, Intelligence Solutions, Enterprise/Cloud IT Services and Products, and Managed IT/Security Services to Federal, State, and Commercial clients. We provide Federal Government and Commercial clients with customized, agile technical solutions focused on data, enterprise platforms, service engagement, and...
-
Cyber Security Specialist
2 days ago
San Antonio, United States Silotech Group Full timeOverview Silotech Group provides Advanced Cyber Solutions, Intelligence Solutions, Enterprise/Cloud IT Services and Products, and Managed IT/Security Services to Federal, State, and Commercial clients. We provide Federal Government and Commercial clients with customized, agile technical solutions focused on data, enterprise platforms, service engagement, and...
-
Cyber Security Analyst 3
3 days ago
San Antonio, United States Broadleaf Results Full timeThe Cyber Security Analyst will help plan and carry out security measures to protect CPS Energy information systems. Tasks include but are not limited to the following areas: Security and Risk Management, Asset Security, Security Architecture and Engineering, Communications and Network Security, Identify and Access Management, Security Assessment and...
-
Cyber Intelligence Exercise Planning Analyst
3 weeks ago
San Antonio, United States Spectrum Comm Inc Full timeJob DescriptionJob DescriptionSpectrum's ideal candidate to meet the requirements of the Cyber Intel Exercise Planning Analyst should have the following capabilities: Able to provide key strategy-to-task input in operational planning processes, and deliberate and crisis action planning and exercises support to Wing readiness exercises, AF exercises and...
-
Cyber Intelligence Exercise Planning Analyst
3 weeks ago
San Antonio, Texas, United States Spectrum Comm Inc Full timeSpectrum's ideal candidate to meet the requirements of the Cyber Intel Exercise Planning Analyst should have the following capabilities: Able to provide key strategy-to-task input in operational planning processes, and deliberate and crisis action planning and exercises support to Wing readiness exercises, AF exercises and Joint exercises. Integrates...
-
Associate Security Assessor
4 weeks ago
San Diego, United States RSI Security Full timeTHIS IS A REMOTE, WORK-FROM-HOME POSITION.The starting salary range is based on your experience, education, and skills. There is also bonus potential for this position.RSI Security is a small organization where collaboration is not only encouraged, but expected. We value relationships within our team and are intentional to build and maintain a strong team...
-
Associate Security Assessor
3 weeks ago
San Diego, United States RSI Security Full timeJob DescriptionJob DescriptionTHIS IS A REMOTE, WORK-FROM-HOME POSITION.The starting salary range is based on your experience, education, and skills. There is also bonus potential for this position.RSI Security is a small organization where collaboration is not only encouraged, but expected. We value relationships within our team and are intentional to build...
-
Security Engineer
5 days ago
San Antonio, TX, United States Leidos Full timeLeidos has an opportunity for a Security Engineer at Lackland AFB, in San Antonio, TX supporting the Department of the Air Force CLOUDworks. For this position, candidates must already possess a TS/SCI security clearance in order to be considered.Primary ResponsibilitiesThe Security Engineer in this effort is responsible for providing technical direction...
-
Digital Network Exploitation Analyst
1 week ago
San Antonio, United States Altamira Technologies Full timeDigital Network Exploitation Analyst (DNEA) Clearance: TS/SCI/FS Poly Location: San Antonio TX As cyber threats evolve and proliferate at a rapid pace, Altamira Technologies are very involved in cyber network operations (CNO) and enabling information superiority. We help our customers prepare, defend, and sustain their cyber missions and protect...
-
RMF Cyber Analyst
4 hours ago
San Antonio, United States Mount Indie Full timeJob DescriptionJob DescriptionGeneral SummaryRisk Management Framework Information System Security Manager (ISSM).ISSM reviews (RMF) Certification and Accreditation documentation, standard operating procedures, policies, and security instructions for both networked and stand-alone computer systems and provides oversight and guidance for multiple...
-
Technology Vulnerability Analyst 2
2 days ago
San Antonio, United States IntelliGenesis LLC Full timeJob Duties Identify vulnerabilities of and attacks of various physical, chemical and electromagnetic characteristics and properties of signals, equipment and security mechanisms Characterize attacks with respect to resources and capabilities required to accomplish those attacks and relate those vulnerabilities and attacks to their effects on the operations...
-
Cyber Security Analyst
4 weeks ago
San Diego, United States Atechstar Full timeJOB DESCRIPTIONIdeally you have experience from the Maritime industry; and in depth maritime control systems and Cyber Security competence. You will be working closely with our Cybersecurity and Security Operations Center teams you will also be making observations on vessel threats and vulnerabilities management to ensure adherence to ICT Governance and...
-
Exploitation Analyst
1 week ago
San Antonio, United States Farfield Systems, Inc Full timeAbout Farfield Systems, Inc At Farfield we are committed to delivering trusted expertise to our government clients. As we grow, our focus is on increasing opportunities for you to grow with us while still delivering the same excellence customers have grown to expect from us. We continually evaluate our environment to provide a place where your career is...
-
Cyber Security Analyst
4 weeks ago
San Diego, California, United States Atechstar Full timeJOB DESCRIPTIONIdeally you have experience from the Maritime industry; and in depth maritime control systems and Cyber Security competence. You will be working closely with our Cybersecurity and Security Operations Center teams you will also be making observations on vessel threats and vulnerabilities management to ensure adherence to ICT Governance and...
-
San Antonio, United States CNF Technologies Full timeGENERAL EXPERIENCE: This is a multidisciplinary security position requiring a highly qualified security professional in support of multiple special access programs (SAP) sensitive compartmented information (SCI) and collateral level contracts. The Physical Security Lead, Industrial Security Analyst, Alt. CSSO/CPSO is responsible for the management,...
-
Technology Vulnerability Analyst 2
1 week ago
San Antonio, United States IntelliGenesis LLC Full timeJob Duties Identify vulnerabilities of and attacks of various physical, chemical and electromagnetic characteristics and properties of signals, equipment and security mechanisms Characterize attacks with respect to resources and capabilities required to accomplish those attacks and relate those vulnerabilities and attacks to their effects on the operations...
-
Cyber Operations Planner
5 days ago
San Antonio, United States Tyto Athene, LLC Full timeTyto Athene is seeking a Cyber Operations Planner for a newly awarded multi-year contract providing Cyberspace Support Services in support of the Air Force’s 688th Cyberspace Wing (688 CW) located in San Antonio, TX. Cyber Operations Planner is responsible for planning, implementing and executing the AF cyber operations plans and strategy assigned to the...
-
Cyber Operations Planner
6 days ago
San Antonio, United States Tyto Athene, LLC Full timeTyto Athene is seeking a Cyber Operations Planner for a newly awarded multi-year contract providing Cyberspace Support Services in support of the Air Force’s 688th Cyberspace Wing (688 CW) located in San Antonio, TX. Cyber Operations Planner is responsible for planning, implementing and executing the AF cyber operations plans and strategy assigned to the...
-
Lead, Software
2 days ago
Melbourne, FL, United States L3Harris Technologies Full timeJob Title: Lead, Software Engineer – DevSecOps (TS/SCI Clearance) Job Code: 9220 Job Location: Melbourne, FL (NOTE: Onsite position with the customer) Job Description: L3Harris has an immediate opening for a DevSecOps Software Engineer. The individual will support work in a dynamic classified environment to help us provide world class solutions in support...