Cyber Response Analyst
2 months ago
Overview:
Come Join Our Team
Fast-paced, dynamic, and rewarding environment supporting regional defense efforts. This project delivers defensive cyberspace operations (DCO) support to Cyber Security Service Provider Division (CSSP-D), US Army Regional Cyber Center-Korea. The CSSP-D environment includes any hardware, software, application, tool, system, or network used by the Government, whether developed, leased, or commercially purchased. Our operations are based on-site at Camp Humphreys, South Korea. Employees are authorized to receive a Living Quarters Allowance, a Cost-of-Living Allowance, and relocation expenses. Additionally, our employees are eligible for reimbursement for school-aged children to attend either Department of Defense Education Activity schools (space available) or local school of choice.
What is the position?
As a Cyber Response Analyst, you will be required to defend against unauthorized activity on all Army assets residing on NIPRNet, SIPRNet, and CENTRIX-K. Your work will include current and new systems at various lifecycle stages, and any future applications/systems not currently identified. This includes activities from external hackers who may attempt to gain unauthorized access, insider threat attempts for unauthorized access, and policy violations that may impact network security and operations. You will be required to continue performance during peacetime, crisis, hostilities, and war operations. This position requires DoD 8140 Certification compliance by having either a Bachelors degree in an appropriate major or one of the certifications listed below.
This is a contingent position with an expected start date in August 2024.
Responsibilities:- Recognize a cyber security incident and take appropriate action to report the incident and preserve evidence, mitigating any adverse impact, and devising defensive measures.
- Develop and implement access control lists on routers, firewalls, and other network devices.
- Identify vulnerabilities resulting from a departure from an implementation plan or that were not apparent during testing.
- Design and implement technical vulnerability corrections and security countermeasures.
- Install and maintain perimeter defense systems including intrusion detection systems, firewalls, grid sensors, etc., and enhance rule sets to block sources of malicious traffic.
- Identify and/or determine whether a security incident is indicative of a violation of law that requires specific legal action.
- Monitor and evaluate the effectiveness of enclave IA security procedures and safeguards.
- Support the design and execution of security exercises.
- Conduct tests of network devices and IA safeguards in accordance with established test plans and procedures to ensure compliance with security policies, procedures, and requirements.
- Provide DCO Network Security Monitoring, Detection, and Analysis; coordinate, de-conflict, and employ internal defensive measures within the DoDIN; assess new technologies and devices relevant to DCO.
- Conduct exploratory and in-depth analysis of network traffic from security devices, analysis of host-based audit logs, malware analysis, trending of incident reports, correlation of classified and opensource threat reporting, and linkages/integration with other DCO agencies.
- Analyze and correlate anomalous events identified in Security Information Event Management (SIEM) systems, Big Data Analytics, and supporting devices/applications.
- Recognize a cyber security incident, take appropriate action to report the incident and preserve evidence, mitigating any adverse impact, and devising defensive measures.
- Perform initial analysis on captured volatile data, log data, captured network traffic data, etc. to identify any immediate intrusion related artifacts which in turn will allow immediate defensive countermeasures to be implemented.
- Report incidents to law enforcement and counterintelligence agencies.
- Implement mitigation measures in response to general or specific Advanced Persistent Threats (APT), (attempted exploits/attacks, malware delivery, etc.) on the respective networks.
- Participate in Incident Response investigations for the operational environment (NIPRNet, SIPRNet, and CENTRIX-K).
- Provide situational awareness of evolving network threats trends.
- Synchronize DCO programs with ARCYBER personnel as required via working group participation to develop, research, publish, test, and annually update Deliverables, Standard Operating Procedures and Tools, Tactics, Techniques and Procedures (TTTP) related to Cyber Defense, Live Incident Handling Analysis, Cyber Threat Analysis, Threat Detection, Computer Defense Assistance Program (CDAP), and the Cyber Intrusion Analysis Program (CIAP).
- Participate in ARCYBER Cyberspace Operations (CO) meetings, conferences, and working groups.
- Support Disaster Recovery (DR) and Continuity of Operations (COOP) Capability.
- Support Cybersecurity Service Provider (CSSP) accreditation.
- Participate, if tasked, in exercises and assist with the development, planning and support of exercises such as Gaining Cyber Dominance or other cyberspace defense engagements.
- Active DoD TS/SCI clearance
- Bachelors degree or higher from an accredited college or university in one of the following fields: Computer Science, Cyber Security, Information Technology, Software Engineering, Information Systems, Computer Engineering, Mathematics or Engineering
- Any of the following certifications can be substituted for a Bachelors degree: CCSP or CEH or CFR or Cloud+ or CySA+ or GCED or GICSP or PenTest+
- If substituting certification for a Bachelors degree, a HS diploma or GED is required in addition to the certification.
Preferred Qualifications
- Previous experience in an equivalent position
About i3:
Headquartered in Huntsville, AL, i3 is a national leader in providing innovative technical and engineering solutions to a broad customer base across the U.S. DoD. Specializing in missile and aviation engineering and logistic services, electronic warfare and electromagnetic affects analysis, UAS system integration and flight operations, full lifecycle C5ISR engineering services, engineering analysis, cybersecurity and IT/IA innovative solutions and virtual training, simulation & serious game development and implementation.
- We were founded in 2007 with the intent to do business differently.
- Our focus is to leave our team members and customers better than we found them.
- Our ultimate goal is to strengthen our Nation and our warfighter.
Perks and Benefits at i3:
- 100% team member owned
- Outstanding insurance coverage
- 401(k) match
- Health and wellness incentives
- Tuition and certification reimbursement
- Generous PTO
- Fun culture with company activities
- Countless opportunities to give back to the community through our charitable organization, i3 Cares
We work hard. We compete hard. We play hard. Apply now to join us
-
Cyber Security Analyst
4 days ago
Richmond, Virginia, United States Capital One Full timeAbout the RoleCapital One is seeking a highly skilled Cyber Security Analyst to join our Cyber Governance & Risk division. As a key member of our team, you will work closely with top talent to identify and mitigate cyber risks, ensuring the security and integrity of our systems and data.Key ResponsibilitiesDevelop and implement effective security controls...
-
Cyber Security Analyst
4 days ago
Richmond, Virginia, United States Capital One Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Analyst to join our team at Capital One. As a key member of our Cyber Governance & Risk division, you will play a critical role in helping us reduce cyber risk and drive business growth.Key ResponsibilitiesDevelop and implement effective information security standards and procedures to ensure...
-
Principal Associate, CSOC Analyst
4 weeks ago
Richmond, United States Capital One Full timeCenter 3 (19075), United States of America, McLean, VirginiaPrincipal Associate, CSOC Analyst (Incident Response)Capital One is looking for talented Cyber Security Analysts with traditional network security and cloud infrastructure monitoring experience to join our Cyber Security Operations Center (CSOC) in McLean, VA. The Principal Associate level CSOC...
-
Manager, Cyber eDiscovery Senior Analyst
4 weeks ago
Richmond, United States Capital One Full timeCenter 3 (19075), United States of America, McLean, VirginiaManager, Cyber eDiscovery Senior AnalystCapital One is looking for an eDiscovery analyst to join the Cyber Insider Threat and Technical Investigations Team. The role will work closely with other lines of business to support litigation and investigation requests utilizing multiple applications across...
-
Richmond, United States Capital One Full timeCenter 3 (19075), United States of America, McLean, VirginiaPrincipal Associate, Cyber Security Operations Center (CSOC) Countermeasures AnalystCapital One is looking for talented Cyber Security Analysts with experience performing endpoint, network, and cloud security monitoring to join our Cyber Security Operations Center (CSOC). The Principal Associate...
-
Richmond, United States Capital One Full timeCenter 3 (19075), United States of America, McLean, VirginiaPrincipal Associate, Cyber Security Operations Center (CSOC) - (Fusion) AnalystThe Cyber Security Operation Center Fusion team synthesizes multi-source security alerting, intrusion investigations, cyber intelligence, and business information into actionable analysis. The Fusion team provides this...
-
Cyber Governance Expert
4 days ago
Richmond, United States Capital One Full timeAbout the RoleCyber Procedure Governance AssociateCapital One is seeking a highly skilled Cyber Procedure Governance Associate to join our Cyber Governance team. As a key member of our team, you will play a critical role in developing and implementing effective Cyber procedures, identifying gaps in requirements and processes, and driving efforts to promote...
-
Cyber Security Specialist
3 months ago
Richmond, United States TECHEAD Full timeTECHEAD is celebrating over thirty-five years of incredible heritage, talent, andaccomplishments! To learn more about TECHEAD, visit us at TECHEAD.com oron Glassdoor.Cyber Security SpecialistContract-to HireHybrid - 3 days a week including WednesdayGlen Allen, Virginia Monitor systems for security gaps, implement effective cyber security solutions, and...
-
Cyber Security Specialist
3 months ago
Richmond, United States TECHEAD Full timeTECHEAD is celebrating over thirty-five years of incredible heritage, talent, andaccomplishments! To learn more about TECHEAD, visit us at TECHEAD.com oron Glassdoor.Cyber Security SpecialistContract-to HireHybrid - 3 days a week including WednesdayGlen Allen, Virginia Monitor systems for security gaps, implement effective cyber security solutions, and...
-
Cyber Security Manager
1 month ago
Richmond, United States Unisys Full timeKey Responsibilities• Responsible for the identification, tracking and management of enterprise risks. This includes performing risk assessments and measuring the success and effectiveness of mitigation efforts.• Identifies, evaluates, tests and implements appropriate security products, tools, and systems to establish and ensure a secure infrastructure....
-
Cyber Threat Intelligence Specialist
1 week ago
Richmond, Virginia, United States Zantech Full timeAre you ready to elevate your career? At Zantech, we pride ourselves on being a forward-thinking Small Business dedicated to delivering complex, mission-oriented solutions. Our commitment to exceptional customer service and employee satisfaction sets us apart. We are in search of individuals who are eager to contribute to a high-performing team and...
-
Taxation Legal Advisor
1 week ago
Richmond, Virginia, United States Cyber Armor Solutions Full timePosition OverviewLocation: Flexible options availableCyber Armor Solutions is seeking a Legal Associate to join our esteemed transactional tax division, focusing on the energy sector. This role is ideal for individuals with 1 to 4 years of relevant experience in a transactional tax environment.Key ResponsibilitiesEngage in a collaborative team environment,...
-
Associate Systems Compliance Analyst
2 weeks ago
Richmond, United States Astyra Full time*Associate Systems Compliance Analyst* **This is a 2 year-long contract position **This is a hybrid position requiring 1 week in office, 1 week remote *Description:* * This position focuses on Compliance for the EMS (Energy Management Systems). * This role often performs cyber compliance program governance or development of policies, procedures, and tools to...
-
Business Analyst
1 week ago
Richmond, United States Chenega Corporation Full timeOverview Come join a company that strives for Extraordinary People and Exceptional Performance ! Chenega Services & Federal Solutions, LLC a Chenega Professional Services ’ company, is looking for a Business Analyst to support the U.S. Department of Education, Federal Student Aid (FSA) program in the modernization of IT Service Management and Cyber...
-
Richmond, United States Dominion Energy Full timeJob Summary *There is one vacancy which will be filled at the level commensurate with the successful candidate's education, experience, knowledge, skills and abilities. This role is to execute cyber security initiatives in accordance with the Electric Transmission Field Operations (ETFO) Cyber Compliance Monitoring Program. This position will...
-
Principal Associate, Cyber Controls Monitoring
4 weeks ago
Richmond, United States Capital One Full timeCenter 3 (19075), United States of America, McLean, VirginiaPrincipal Associate, Cyber Controls MonitoringAs a Principal Associate (PA) in Capital One's Cyber Governance & Risk organization, you will have the chance to oversee control development, enhancement, execution, testing and reporting, and ensuring controls meet quality standards. You will work on a...
-
Sr. Director, Cyber Risk
4 weeks ago
Richmond, United States Capital One Full timeCenter 2 (19050), United States of America, McLean, VirginiaSr. Director, Cyber Risk & Analysis | Retail BankSummary:Capital One, a Fortune 500 company and one of the nation's top 10 banks, offers a broad spectrum of financial products and services to consumers, small businesses and commercial clients. Our mission is to create one of the nation's great...
-
Defense Assessment Analyst
1 week ago
Richmond, United States Integration Innovation, Inc. Full timeOverview: Come Join Our Team Fast-paced, dynamic, and rewarding environment supporting regional defense efforts. This project delivers defensive cyberspace operations (DCO) support to Cyber Security Service Provider Division (CSSP-D), US Army Regional Cyber Center-Korea. The CSSP-D environment includes any hardware, software, application, tool, system, or...
-
GIS IT Analyst
4 weeks ago
Richmond, United States MKS2 Technologies Full timeJob DescriptionJob DescriptionMKS2 Technologies, LLC, an award-winning high growth small business, creates innovative and customer-centric technology solutions in the areas of Cyber Security, Instructional Design and Training, Software Engineering and IT Support Services to improve the security and well-being of our clients. Our commitment to excellence and...
-
Cyber Security Chief of Staff
2 weeks ago
Richmond, United States Morton Full timeJob Title: Cyber Security, Chief of StaffDuration: 6-Month Contract to HireSchedule: HYBRID (3 days onsite) OVERVIEWOur client is seeking a skilled Cybersecurity professional who will play a pivotal role in supporting the CISO and the cybersecurity team.This position is responsible for overseeing the daily operations, strategic planning, and coordination of...
