Cybersecurity - Cyber Defense Analyst - Malware, Vulnerability, Incidents
1 month ago
Erias Ventures was founded to serve its customers with an entrepreneurial mindset. We value creative problem-solving, open communication, and empowering our employees to make decisions and put forth new ideas.
We are seeking engineers who wish to grow their careers and want to become part of a strong, entrepreneurial-minded, and technical company focused on bringing innovative solutions to the difficult mission problems facing our customers.
Description
The Cyber Defense Analyst uses information collected from a variety of sources to monitor network activity and analyze it for evidence of anomalous behavior. Identifies, triages, and reports events that occur in order to protect data, information systems, and infrastructure. Finds trends, patterns, or anomaly correlations utilizing security-relevant data. Recommends proactive security measures. Conducts analysis to isolate indicators of compromise. Notify designated managers, cyber incident responders, and cybersecurity service provider team member of suspected cyber incidents and articulate the event's history, status, and potential impact for further action in accordance with the organization's cyber incident response plan.
- Use cyber defense tools to monitor, detect, analyze, categorize, and perform initial triage of anomalous activity.
- Generate cybersecurity cases (including event's history, status, and potential impact for further action) and route as appropriate.
- Leverage knowledge of commonly used network protocols and detection methods to defend against related abuses.
- Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
- Perform advanced manual analysis to hunt previously unidentified threats.
- Conduct PCAP analysis.
- Identify cyber-attack phases based on knowledge of common attack vectors and network layers, models and protocols.
- Apply techniques for detecting host- and network-based intrusions.
- Working knowledge of enterprise-level network intrusion detection/prevention systems and firewall capabilities.
- Understand the foundations of a hardened windows network and what native services and protocols are subject to abuse (such as RDP, Kerberos, NTLM, WMI, and SMB).
- Familiarity with fragmentation of network traffic and how to detect and evaluate fragmentation related attacks in raw packet captures.
- Conduct network - traffic, protocol and packet-level - and netflow analysis for anomalous values that may be security-relevant using appropriate tools (such as Wireshark, tshark, tcpdump).
- Understand snort filters and how they are crafted and tuned to feed IDS alerting.
- Understand system and application security threats and vulnerabilities to include buffer overflow, SQL injection, race conditions, covert channel, replay and return-oriented attacks, malicious code and malicious scripting.
- Analyze malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information.
- Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack.
- Familiar with indications of Command and Control (C2) channels and what strategies attackers use to bypass enterprise defenses from a compromised host.
- Demonstrate advanced knowledge of how adversaries penetrate networks and how those attacks map to detectable events across the ATTACK framework.
- Understand how VBS, Jscript, and Powershell can be maliciously used within a network and what level of monitoring and auditing is required to detect.
- Possess deep knowledge of active directory abuse used by attackers for lateral movement and persistence.
- Provide expertise in the identification of adversarial Tactics, Techniques, and Procedures (TTPs) and in the development and deployment of signatures.
- Perform after-action reviews of team products to ensure completion of analysis.
- Lead and mentor team members as a technical expert.
Requirements
A current Top-Secret/SCI with polygraph security clearance is required. Candidates cannot be sponsored or nominated for a government security clearance under this position.
- Four (4) years of demonstrated experience as CDA in programs and contracts of similar scope, type, and complexity required. A technical bachelor's degree from an accredited college or university may be substituted for two (2) years of CDA experience on projects of similar scope, type, and complexity.
- One (1) year of demonstrated and practical experience in TCP/IP fundamentals.
- One (1) year of demonstrated experience with Bricata, tcpdump or Wireshark.
- Two (2) years of demonstrated experience using security information and event management suites (such as Splunk, ArcSight, Kibana, LogRhythm).
- Two (2) years of demonstrated experience in network analysis and threat analysis software utilization.
- Two (2) years of demonstrated experience maintaining or managing Cloud environments such as Microsoft Azure, Amazon Web Services (AWS), using tools like Microsoft Sentinel.
- Requires DoD 8570 compliance with CSSP Analyst baseline certification, Information Assurance Technical (IAT) Level II or Level III certification, and Computing Environment (CE) certification.
Erias Ventures provides employees with a complete benefits package that includes:
- Above Market Hourly Pay that includes Paid Time Off, Birthday Off, Flexible Work Schedules
- 11% Roth or Traditional 401k with Immediate Vesting and Deposit
- Company subsidized Medical Coverage
- 100% Company Paid Vision and Dental Coverage
- 100% Company Paid Long Term Disability, Short Term Disability, and Group Life Insurance
- Monthly Internet and Wellness Reimbursement
- Company Paid Professional Development and Training
- Technology and Productivity Allowance for Equipment and Supplies
- Bonuses for Assisting with Business Development and Company Growth
- Morale Building and Company Events to Celebrate our Successes and Build our Community
Referrals
Know a cleared professional looking for more in their career? Want some extra money for the Summer? If so, drop us a line with their name and contact information and you could be eligible for a referral bonus up to $10,000 for each successful hire.
Not seeing the right position? Drop us a line to be notified as we add new contracts and opportunities
Please send referrals and inquiries to:
jobs@eriasventures.com
To learn more about our company visit our webpage or LinkedIn .
-
Cyber Security Analyst
2 months ago
San Antonio, United States Apex Systems Full timePosition Name: Senior Cybersecurity Risk AnalystEmployee Type: Full Time – Permanent – Direct HireExperience: Senior Location: San Antonio, TX (4 days onsite) Compensation: $100-145K with 12-15% Bonus pay out*If interested and qualified, please reach out to the professional recruiter, Nicole, at nrosipal@apexsystems.com Position SummaryWe are seeking a...
-
Cyber Security Analyst
2 months ago
San Antonio, United States Apex Systems Full timePosition Name: Senior Cybersecurity Risk AnalystEmployee Type: Full Time – Permanent – Direct HireExperience: Senior Location: San Antonio, TX (4 days onsite) Compensation: $100-145K with 12-15% Bonus pay out*If interested and qualified, please reach out to the professional recruiter, Nicole, at nrosipal@apexsystems.com Position SummaryWe are seeking a...
-
Cybersecurity / Vulnerability Analyst 2
3 months ago
San Antonio, United States Secure Innovations LLC Full timeWhy Work at SI? Secure Innovations (SI) successfully and continuously strives to become experts in the Cybersecurity field by only focusing on Cyber! Because of this, we proudly stand behind our motto, "We're Not Standard Cyber. We're the Cyber Standard." SI was built on the principle that people matter first and foremost. SI believes in providing a strong...
-
Cyber Defense Analyst 3
7 days ago
San Antonio, United States The Swift Group Full timeJob DescriptionJob DescriptionTitle: Cyber Defense Analyst - Level 3Location: San Antonio, TXOPS Consulting is seeking a qualified Cyber Defense Analyst - Level 3 (ICS, SCADA) candidate who uses information collected from a variety of sources to monitor network activity and analyze it for evidence of anomalous behavior. Identifies, triages, and reports...
-
Expert OT Cyber Incident Responder
3 months ago
San Francisco, United States Pacific Gas and Electric Company Full timeRequisition ID # 157239 Job Category: Information Technology Job Level: Individual Contributor Business Unit: Information Technology Work Type: Hybrid Job Location: Concord Department Overview The Cybersecurity function is led by PG&E's Senior VP and Chief Information Officer and is responsible for cybersecurity and risk...
-
Cyber Defense Analyst 2
7 days ago
San Antonio, United States The Swift Group Full timeJob DescriptionJob DescriptionOPS Consulting is seeking a qualified Cyber Defense Analyst - Level 2 (SCADA) based out of San Antonio, TX., who uses information collected from a variety of sources to monitor network activity and analyze it for evidence of anomalous behavior. Identifies, triages, and reports events that occur to protect data, information...
-
Lead Cybersecurity Instructor
1 month ago
San Antonio, United States NukuDo Full timeWHO WE AREAs a cybersecurity talent development company, we believe that cybersecurity is not just a profession, it is a mission. This propels our dedication to transforming aspiring individuals who can contribute towards building a safer cyber space.Inclusivity and diversity is at the heart of our mission. We are committed to empowering trainees from...
-
Lead Cybersecurity Instructor
3 months ago
San Antonio, United States NukuDo Full timeWHO WE AREAs a cybersecurity talent development company, we believe that cybersecurity is not just a profession, it is a mission. This propels our dedication to transforming aspiring individuals who can contribute towards building a safer cyber space.Inclusivity and diversity is at the heart of our mission. We are committed to empowering trainees from...
-
Cyber Security Analyst
5 days ago
San Diego, United States VIA Technical Full timeJob Title: Cybersecurity Analyst Location: San Diego, CA (Hybrid) Type: Full-Time Company: Our client, a leader in the clean energy sector, is seeking a Cybersecurity Analyst to join their team. Overview: We are looking for a skilled Cybersecurity Analyst to lead the continuous monitoring and protection of our organization's enterprise assets. This role...
-
Cyber Security Analyst
2 weeks ago
San Diego, United States VIA Technical Full timeJob Title: Cybersecurity AnalystLocation: San Diego, CA (Hybrid)Type: Full-TimeCompany: Our client, a leader in the clean energy sector, is seeking a Cybersecurity Analyst to join their team.Overview:We are looking for a skilled Cybersecurity Analyst to lead the continuous monitoring and protection of our organization's enterprise assets. This role involves...
-
Cyber Security Analyst
2 days ago
san diego, United States VIA Technical Full timeJob Title: Cybersecurity AnalystLocation: San Diego, CA (Hybrid)Type: Full-TimeCompany: Our client, a leader in the clean energy sector, is seeking a Cybersecurity Analyst to join their team.Overview:We are looking for a skilled Cybersecurity Analyst to lead the continuous monitoring and protection of our organization's enterprise assets. This role involves...
-
Cyber Security Analyst
2 days ago
san diego, United States VIA Technical Full timeJob Title: Cybersecurity AnalystLocation: San Diego, CA (Hybrid)Type: Full-TimeCompany: Our client, a leader in the clean energy sector, is seeking a Cybersecurity Analyst to join their team.Overview:We are looking for a skilled Cybersecurity Analyst to lead the continuous monitoring and protection of our organization's enterprise assets. This role involves...
-
Cyber Security Analyst
2 weeks ago
San Diego, United States VIA Technical Full timeJob Title: Cybersecurity AnalystLocation: San Diego, CA (Hybrid)Type: Full-TimeCompany: Our client, a leader in the clean energy sector, is seeking a Cybersecurity Analyst to join their team.Overview:We are looking for a skilled Cybersecurity Analyst to lead the continuous monitoring and protection of our organization's enterprise assets. This role involves...
-
Cyber Security Analyst
3 weeks ago
San Antonio, United States C.H. Guenther & Son Full timeSummaryA Cyber Security Analyst is responsible for analyzing, detecting, monitoring, and responding to cyber threats that target the organization's infrastructure and operational technology (OT) systems. The Cyber Security Analyst works closely with the IT (Information Technology) and OT teams to ensure the security and resilience of the organization's...
-
Cyber Security Analyst
1 month ago
San Antonio, United States Bridgehead I.T. Full timePosition Summary: Cyber security analysts are responsible for managing, monitoring, troubleshooting, and protecting the security of the internal environment and that of our customers in real time. The Cyber Security Analyst is tasked with providing technical expertise in all areas of network, system, and application security. In this position the Cyber...
-
Cyber Security Analyst
2 months ago
San Antonio, United States Bridgehead IT Full timeJob DescriptionJob DescriptionSalary: Position Summary:Cyber security analysts are responsible for managing, monitoring, troubleshooting, and protecting the security of the internal environment and that of our customers in real time. The Cyber Security Analyst is tasked with providing technical expertise in all areas of network, system, and application...
-
System Vulnerability Analyst 2
2 months ago
San Antonio, Texas, United States iNovex Full timeWe're searching fortalented individuals who provide system vulnerability analysis.This program will maximize the effectiveness and efficiency of our country's most important missions both at home and abroad. If you are ready to support a high-performing team that truly makes a difference, thencome join us Job Description:Support the identification of...
-
Cybersecurity Analyst
5 days ago
San Francisco, United States Unreal Gigs Full timeIntroduction:Are you passionate about protecting systems, networks, and data from ever-evolving cyber threats? Do you have the analytical skills to detect vulnerabilities before they become risks, and the technical know-how to respond to incidents with precision and speed? If you're driven by the challenge of staying one step ahead of cybercriminals, then...
-
System Vulnerability Analyst 2
1 month ago
San Antonio, United States iNovex Information Systems Full timeJob Brief Vulnerability analysis, penetration testing, computer forensics. Job Description We're searching fortalented individuals who provide system vulnerability analysis.This program will maximize the effectiveness and efficiency of our country's most important missions both at home and abroad. If you are ready to support a high-performing team that truly...
-
System Vulnerability Analyst 2
7 days ago
San Antonio, United States iNovex Information Systems Full timeJob Brief Vulnerability analysis, penetration testing, computer forensics. Job Description We're searching fortalented individuals who provide system vulnerability analysis.This program will maximize the effectiveness and efficiency of our country's most important missions both at home and abroad. If you are ready to support a high-performing team that...
