Cyber Security Analyst III

3 weeks ago


Vienna, United States Navy Federal Credit Union Full time

Overview

The Cyber Security Analyst will develop advanced cybersecurity monitoring content from request to implementation to decommission in support to enhancing the cyber security posture of NFCU. Collaborate in complex, sensitive incident response activities, applying knowledge of computer and network architecture to enhance cyber security detection capabilities. Identify adversarial activity and methods for future detection and prevention within NFCU infrastructure. Serve as subject matter expert within Information Security to identify use cases and develop monitoring content within the Navy Federal environment while establishing mitigation strategies.

Responsibilities

Cyber Security Content Development:

  • Create high-confidence security monitoring content consisting of dashboards and alerts within SIEM and other network security tools (Hybrid/Cloud) to detect threats, suspicious activities, potential incidents, and aid in analytical-investigations.
  • Continuously evaluate and optimize custom and OOTB (out of the box) detection content monitoring various on-prem and cloud service provider environments in support to SOC operations.
  • Serve as lead cyber security content SME for collaboration with various teams for purposes including, but not limited to threat intelligence, hunt operations, red team engagements, identity management, security architecture review, security event logging issues, and detection content management for identifying gaps and enhancing NFCU cyber security monitoring posture.

Log Analysis:

  • Troubleshoot issues in production and other test and development environments, applying debugging and problem-solving methodologies (e.g., log analysis, non-invasive tests).
  • Conduct independent critical thinking to diagnose and analyze threat intelligence data, latest threats and attack vectors, tactics, techniques, and procedures (TTPs) to make decisions on the most effective response and remediation strategies through content development.
  • Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats and vulnerabilities impacting the NFCU organization.

Documentation and Process Improvement:

  • Develop technical documents including, but not limited to content creation, content/rule review process, language-specific querying for disparate log sources, network/security visibility issues, detection gaps, SOPs, and monitoring strategies.
  • Continuously executes timely and effective communication across team and management channels regarding tasks completed, roadblocks experienced, and process improvement opportunities identified.

Qualifications

  • 7+ years of experience within cyber security operations and SIEM technologies serving in a senior analyst or supervisory role.
  • Advanced knowledge of content creation concepts, content development management, content testing, implementation, the revision cycle, and cybersecurity threat analysis of complex events.
  • Advanced skills in monitoring and analyzing logs and alerts from a variety of different technologies and sources, to include but not limited to IDS/IPS, firewall, proxies, network/host, anti-virus, OS events, application/database, EDR, NDR, Cloud (IaaS, PaaS, SaaS).
  • Advanced skill in developing complex detection content using various data sources and query languages - e.g., custom SPL(macros, lookups, regex) SNORT, YARA, KQL
  • Experience in analyzing security systems, and how changes in conditions, operations, or the environment will affect deployed monitoring content.
  • Experience in applying cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
  • Advanced knowledge of security architectures, devices, proxies, firewalls, and system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
  • Advanced understanding of blue team/red team processes and technologies and their applicability to custom content development.
  • Advanced verbal and written skill presenting complex findings, conclusions, alternatives, and information clearly and concisely to all levels of management, supervisors, stakeholders and vendors through advanced research, analytical, and problem solving skills.
  • Experience with security tools related to IPS/IDS, Antivirus, Firewalls, Proxies, DLP, Forensic Analysis, Malware analysis, SIEM, Cloud, and the content development lifecycle.
  • Advanced skill in analyzing log events for on prem and cloud technologies to facilitate development of cyber defense detections.

Desired Qualifications

  • Splunk Power User, CySA+, CASP+, CISSP or other related Information Security certifications.
  • Bachelor degree in cybersecurity or related discipline.
  • Advanced knowledge of IT security standards and frameworks (e.g., MITRE ATT&CK).

Hours: Monday - Friday, 8:00AM - 4:30PM

Location: 820 Follin Lane, Vienna, VA 22180 | 5550 Heritage Oaks Dr. Pensacola, FL 32526 | 141 Security Dr. Winchester, VA 22602 | Remote

About Us

Navy Federal provides much more than a job. We provide a meaningful career experience, including a culture that is energized, engaged and committed; and fierce appreciation for our teams, who are rewarded with highly competitive pay and generous benefits and perks. Our approach to careers is simple yet powerful: Make our mission your passion. * Best Companies for Latinos to Work for 2024 * Computerworld Best Places to Work in IT * Forbes 2024 America's Best Large Employers * Forbes 2024 America's Best Employers for New Grads * Forbes 2024 America's Best Employers for Tech Workers * Fortune Best Workplaces for Millennials 2024 * Fortune Best Workplaces for Women 2024 * Fortune 100 Best Companies to Work For 2024 * Military Times 2024 Best for Vets Employers * Newsweek Most Loved Workplaces * 2024 PEOPLE Companies That Care * Ripplematch Recruiting Choice Award * Yello and WayUp Top 100 Internship Programs From Fortune. 2024 Fortune Media IP Limited. All rights reserved. Used under license. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of, Navy Federal Credit Union. Equal Employment Opportunity: Navy Federal values, celebrates, and enacts diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected Veteran. Hybrid Workplace: Navy Federal Credit Union is a hybrid workplace, and details will be discussed during your interview process. Disclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team's discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position Bank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.
  • Sr. Cyber Analyst

    3 weeks ago


    Vienna, United States Leidos Full time

    Description Leidos has a new and exciting opportunity for a Sr. Cyber Security Analyst in our National Security Sector's (NSS) Cyber & Analytics Business Area (CABA).  Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, Analytical Methods and Modeling, Signals Intelligence (SIGINT), and...


  • Vienna, West Virginia, United States Acclaim Technical Services Full time

    Acclaim Technical Services, a leading provider of language, operations, and technology services, is committed to supporting the U.S. Federal government.We are actively seeking a highly skilled Cyber Security Expert to join our team in Tyson's, VA. The ideal candidate will have at least three years of experience in cyber security and a strong understanding of...


  • Vienna, United States Leidos Full time

    Description Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems including local area...

  • Cyber Capture Lead

    2 days ago


    Vienna, West Virginia, United States Leidos Full time

    Job OverviewThe Leidos National Security Sector is seeking an experienced Senior Capture Leader to spearhead cyber and analytical initiatives. This role offers a chance to drive significant wins in the rapidly growing sector.In this position, you will be responsible for leading capture efforts for designated opportunities, aligning with our cyber growth...

  • Cybersecurity Analyst

    2 weeks ago


    Vienna, United States ManTech Full time

    ManTech is seeking a Cybersecurity Analyst to join our team in Tysons, VA.Monitor Air Gapped Security Fabrics through managed SECOPs Tools. Performing event analysis within SIEM, leveraging systems to develop response tickets within case management tooling. Troubleshoot and coordinate with TIER 2 Analysts for event escalation, and follow defined security...


  • Vienna, Virginia, United States Leidos Full time

    About the Role We are seeking a highly skilled IT Security Specialist to join our team as an Assessment and Authorization (A&A) Analyst. The selected candidate will be responsible for evaluating CBP Information Systems being introduced to the environment to determine if they meet the required security standards and are authorized to operate within the CBP...


  • Vienna, Virginia, United States Leidos Full time

    We are seeking an experienced Senior Capture Leader to lead our cyber-related pursuits and proposals. This role offers an exciting opportunity to drive significant wins in a rapidly growing sector of the corporation.About the JobYou will take charge of the capture leadership for designated opportunities, aligning with our cyber growth strategy. Your primary...


  • Vienna, Virginia, United States Leidos Full time

    The Leidos Digital Modernization Sector is hiring a Security Operations Analyst to support multiple programs and customers.About the Role:This position will involve analyzing security metrics, providing day-to-day security support, and ensuring timely notification of pertinent security matters to program technical and management...


  • Vienna, United States Navy Federal Credit Union Full time

    OverviewIs this the role you are looking for If so read on for more details, and make sure to apply today.Navy Federal Credit Union is seeking a Cyber Security Engineer to maintain and implement the latest Palo Alto Strata Cloud Manager technology and strategies to ensure the cybersecurity posture of the systems is scalable and effective across the...


  • Vienna, United States Syneren Technologies Corporation Full time

    Job Title: Senior Penetration Testing Analyst Job Location: Hybrid Security: Successful completion of National Agency Check and Inquiries (NACI), Personnel will be screened in accordance with the requirements for High-Risk contracts. Job Description Lead Pentester will lead Penetration Testing effort that vary from normal to “Black Box” Forensic...

  • Intelligence Analyst

    4 weeks ago


    Vienna, United States T-Rex Solutions, LLC Full time

    T-Rex Solutions, a leader in mission-focused solutions, is seeking a dedicated Junior Intelligence Analyst to join our dynamic team in Sterling, VA. At T-Rex, we play a crucial role in supporting the Department of Homeland Security (DHS) Immigration and Customs Enforcement (ICE) Counterterrorism and Criminal Exploitation Unit. Our analysts are at the...

  • Cybersecurity Analyst

    2 weeks ago


    Vienna, VA, United States ManTech Full time

    ManTech is seeking a Cybersecurity Analyst to join our team in Tysons, VA . Monitor Air Gapped Security Fabrics through managed SECOPs Tools. Performing event analysis within SIEM, leveraging systems to develop response tickets within case management tooling. Troubleshoot and coordinate with TIER 2 Analysts for event escalation, and follow defined security...

  • Records Manager III

    3 days ago


    Vienna, United States Zen Strategics LLC Full time

    Job DescriptionJob DescriptionDescription:About Zen: Own your opportunity to work with a client-focused agile small business. Make an impact by advancing our government organizations charged with keeping our country safe, prosperous, and secure. Zen Strategics, LLC is a cleared, minority-owned SBA 8(a) specialized consulting firm, offering innovative...


  • Vienna, United States T-Rex Solutions Full time

    Job DescriptionJob DescriptionT-Rex Solutions, a leader in mission-focused solutions, is seeking a dedicated Junior Intelligence Analyst to join our dynamic team in Sterling, VA. At T-Rex, we play a crucial role in supporting the Department of Homeland Security (DHS) Immigration and Customs Enforcement (ICE) Counterterrorism and Criminal Exploitation Unit....


  • Vienna, United States Dynamo Technologies, LLC Full time

    Job Description: Dynamo Technologies, LLC is seeking a Senior Security Analyst to assist in the development, implementation, and maintenance of Dynamo's security program and procedures as required by the Defense Counterintelligence and Security Agency (DCSA), Department of Defense (DOD), and the National Industrial Security Program Operating Manual (32 CFR...


  • Vienna, Virginia, United States Watershed Security Full time

    Job OverviewWatershed Security is a Veteran Owned Small Business that provides high-quality Cyber Security Services to the Federal Government.About the JobWe are seeking a qualified PostgreSQL/Oracle Database Administrator to contribute to our Financial Solutions team. The ideal candidate will have experience working with database administration, data...


  • Vienna, VA, United States Red Cell Partners Full time

    About Us Red Cell Partners is an incubation firm building and investing in rapidly scalable technology-led companies that are bringing revolutionary advancements to market in three distinct practice areas: healthcare, cyber, and national security. United by a shared sense of duty and deep belief in the power of innovation, Red Cell is developing powerful...

  • Cyber Engineer

    3 weeks ago


    Vienna, United States Leidos Full time

    Description The Mission Solutions Business Area at Leidos has an opening for a Cyber Engineer in Reston, Virginia to support a fast-paced team working on projects critical to National Security. The primary focus of the group is reverse engineering Weapons of Mass Destruction (WMD) related installations.  Candidate must bring a creative, yet sound, approach...


  • Vienna, Virginia, United States Watershed Security Full time

    Secure Data Solutions SpecialistWatershed Security is a leader in providing quality Cyber Security Services to the Federal Government. We're seeking a highly skilled PostgreSQL and Oracle Database Administrator to join our team and help us deliver secure data solutions in a cloud-based AWS environment.About the RoleIn this role, you'll be responsible for...


  • Vienna, VA, United States Navy Federal Credit Union Full time

    Overview Is this the role you are looking for If so read on for more details, and make sure to apply today. Navy Federal Credit Union is seeking a Cyber Security Engineer to maintain and implement the latest Palo Alto Strata Cloud Manager technology and strategies to ensure the cybersecurity posture of the systems is scalable and effective across the...