Cyber Network Defense Analyst III
1 day ago
About Nightwing
Nightwing is a leading provider of full-spectrum cyber, data operations, systems integration, and intelligence mission support services to the U.S. government. With a deep set of credentials and an unfaltering commitment to the mission, our team has been providing critical support to the nation's most impactful initiatives for over four decades.
Job Summary
We are seeking a highly skilled Cyber Network Defense Analyst III to join our team. As a Cyber Network Defense Analyst III, you will be responsible for analyzing and characterizing network traffic to identify anomalous activity and potential threats to network resources. You will also be responsible for coordinating with enterprise-wide cyber defense staff to validate network alerts and documenting and escalating incidents that may cause ongoing and immediate impact to the environment.
Responsibilities
- Correlate forensic findings to network events in support of developing an intrusion narrative
- Collect and document system state information (e.g. running processes, network connections) prior to imaging, as required
- Perform forensic triage of an incident to include determining scope, urgency, and potential impact
- Track and document forensic analysis from initial participation through resolution
- Coordinate with Government staff and customer personnel to validate/investigate alerts or additional preliminary findings
- Conduct analysis of forensic images, and available evidence in support of forensic write-ups for inclusion in reports and written products
- Assist to document and publishing Computer Network Defense (CND) guidance and reports pertaining to incident findings
- Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources
- Coordinate with enterprise-wide cyber defense staff to validate network alerts
- Document and escalate incidents (including event's history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment
- Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
- Provide daily summary reports of network/host events and activity relevant to cyber defense practices
- Receive and analyze network & host alerts from various sources within the enterprise and determine possible causes of alerts
- Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities
- Use cyber defense tools for continual monitoring and analysis of system activity to identify malicious activity
- Analyze identified malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information
- Identify and analyze anomalies in network traffic using metadata
- Identify applications and operating systems of a network device based on network traffic
- Identify network mapping and operating system (OS) fingerprinting/other baselining activities
- Assist in the construction of signatures which can be implemented on cyber defense network tools in response to new or observed threats within the network environment or enclave
Requirements
- U.S. Citizenship
- Active TS/SCI clearance
- Ability to obtain Department of Homeland Security (DHS) Entry on Duty (EOD) Suitability
- 5+ years of direct relevant experience in cyber defense analysis using leading edge technologies and industry standard cyber defense tools
- Ability to create forensically sound duplicates of evidence (forensic images)
- Ability to author cyber investigative reports documenting digital forensics findings
- Proficiency with analysis and characterization of cyber attacks
- Skilled in identifying different classes of attacks and attack stages
- Understanding of system and application security threats and vulnerabilities
- Understanding of proactive analysis of systems and networks
Desired Skills
- Understanding of SaaS, PaaS, and IaaS in the Cloud Environment
- Proficiency with one or more of the following EDR Tools: CrowdStrike, SentinelOne, Cortex, MS MDE, or Trellix
- Proficiency with two or more of the following tools: Host forensics software (EnCase, FTK, X-Ways, Sleuth Kit/Autopsy), SIFT, Volatility, KAPE, WireShark, Splunk, Elastic
- Proficiency conducting all-source research
Required Education
- BS Computer Science, Cyber Security, Computer Engineering, or related degree; or HS Diploma & 7-9 years of network/host investigations experience
Desired Certifications
- GCFE, GCFA, GCLD, GCPS, GCPN, GWEB, GIRD, GREM, GNFA, GCIH, GCIA, GSEC, Kubernetes Security Specialist, Microsoft 365 Certifications, Microsoft Azure Certifications, AWS Certifications, SANS Cloud Courses (SEC541, SEC584, SEC588) and Certifications GSEC (SANS401), Network+, Security+, CEH
About the Role
This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply.
Benefits
Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.
Equal Opportunity Employer
RTX is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.
-
Cyber Network Defense Analyst
2 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob SummaryArgo Cyber Systems is seeking a highly skilled Cyber Network Defense Analyst to support our critical customer mission. As a key member of our team, you will play a vital role in securing the Nation's cyber and communications infrastructure.Key ResponsibilitiesNetwork Monitoring and Analysis: Use information collected from various sources to...
-
Cyber Network Defense Analyst III
5 days ago
Arlington, Virginia, United States Nightwing Full timeCyber Network Defense Analyst III Job DescriptionAbout NightwingNightwing is a leading provider of full-spectrum cyber, data operations, systems integration, and intelligence mission support services to the U.S. government. With over four decades of experience, our team has been delivering technically advanced solutions to the nation's most critical...
-
Cyber Network Defense Analyst Level III
2 weeks ago
Arlington, Virginia, United States Zachary Piper Solutions Full timeZachary Piper Solutions is currently seeking Cyber Network Defense Analysts (CNDA) to support a critical customer mission.The Cybersecurity Threat Analyst is responsible for monitoring network activity, analyzing suspicious behavior, and recommending proactive measures to contain incidents.Characterize and analyze network traffic to identify...
-
Cyber Network Defense Analyst
1 week ago
Arlington, Virginia, United States Nodel Full timeJob SummaryWe are seeking a highly skilled Cyber Network Defense Analyst to join our team at Node. Digital. As a Cyber Network Defense Analyst, you will play a critical role in supporting our customer mission by monitoring and analyzing network activity to identify and report potential threats.Key ResponsibilitiesNetwork Monitoring and Analysis: Characterize...
-
Cyber Network Defense Analyst Level III
1 day ago
Arlington, Virginia, United States Zachary Piper Solutions Full timeCyber Network Defense Analyst Job DescriptionZachary Piper Solutions is seeking a highly skilled Cyber Network Defense Analyst to join our team in supporting the Department of Homeland Security's (DHS) Hunt and Incident Response Team (HIRT). As a prime contractor to DHS, we perform HIRT investigations to develop a preliminary diagnosis of the severity of...
-
Cyber Network Defense Analyst
6 days ago
Arlington, Virginia, United States Zachary Piper Solutions Full timeAbout the RoleZachary Piper Solutions is seeking a highly skilled Cyber Network Defense Analyst to join our team in supporting the Department of Homeland Security's (DHS) Hunt and Incident Response Team (HIRT). As a key member of our team, you will play a critical role in securing the Nation's cyber and communications infrastructure.Key...
-
Cyber Network Defense Analyst
5 days ago
Arlington, Virginia, United States Nodel Full timeAbout the RoleWe are seeking a highly skilled Cyber Network Defense Analyst to join our team at Node. Digital. As a key member of our cybersecurity team, you will play a critical role in protecting our customers' networks and systems from cyber threats.Key ResponsibilitiesCharacterize and analyze network traffic to identify anomalous activity and potential...
-
Cyber Network Defense Analyst II
3 days ago
Arlington, Virginia, United States Nightwing Full timeCyber Network Defense Analyst IIAbout the Role:Nightwing is seeking a highly skilled Cyber Network Defense Analyst II to join our team. As a Cyber Network Defense Analyst II, you will be responsible for analyzing and responding to cyber threats, identifying vulnerabilities, and implementing security measures to protect our customers' networks and systems.Key...
-
Cyber Network Defense Analyst II
4 days ago
Arlington, Virginia, United States Nightwing Full timeCyber Network Defense Analyst IIAbout the Role:Nightwing is seeking a highly skilled Cyber Network Defense Analyst II to join our team. As a Cyber Network Defense Analyst II, you will be responsible for analyzing and identifying potential security threats to our network and systems.Key Responsibilities:Correlate forensic findings to network events to develop...
-
Cyber Network Defense Analyst IV AP
2 days ago
Arlington, Virginia, United States Nightwing Full timeCyber Network Defense Analyst IV APAbout the Role:Nightwing is seeking a highly skilled Cyber Network Defense Analyst IV AP to join our team. As a Cyber Network Defense Analyst IV AP, you will be responsible for analyzing and mitigating cyber threats to our customers' networks and systems.Key Responsibilities:Acquire and collect computer artifacts in support...
-
Cyber Network Forensic Analyst II
13 hours ago
Arlington, Virginia, United States Nightwing Full timeJob Title: Cyber Network Forensic Analyst IIAt Nightwing, we are seeking a highly skilled Cyber Network Forensic Analyst II to join our team. As a key member of our incident response team, you will be responsible for investigating and analyzing complex cyber threats to identify vulnerabilities and develop mitigation strategies.Responsibilities:Assist in...
-
Cyber Network Forensic Analyst IV
1 day ago
Arlington, Virginia, United States Raytheon Full timeJob SummaryWe are seeking a highly skilled Cyber Network Forensic Analyst IV to join our team. As a key member of our cybersecurity team, you will be responsible for conducting thorough investigations of cyber-attacks and providing expert analysis to support our customers' most critical missions.ResponsibilitiesAssist in coordinating teams in preliminary...
-
Manager of Cyber Incident Response
2 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob OverviewArgo Cyber Systems specializes in delivering advanced technical support, both remotely and on-site, for cybersecurity challenges. Our services include proactive threat hunting, immediate incident response, and thorough investigations utilizing host-based, network-based, and cloud-based analysis techniques. We are currently looking for skilled...
-
Cyber Defense Analyst IV
2 weeks ago
Arlington, Virginia, United States Nightwing Full timeAbout NightwingNightwing is a leading provider of full-spectrum cyber, data operations, systems integration, and intelligence support services to the U.S. government. With a rich history of delivering technically advanced solutions, we continue to shape the future of cybersecurity and intelligence.Job SummaryWe are seeking a highly skilled Cybersecurity...
-
Manager of Cyber Incident Response
3 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob OverviewArgo Cyber Systems specializes in delivering both remote and onsite advanced technical support, proactive threat hunting, rapid incident response, and immediate investigation and resolution through host-based, network-based, and cloud-based cybersecurity analysis capabilities. Our team is dedicated to providing frontline response for digital...
-
Cyber Network Forensic Analyst II
1 day ago
Arlington, Virginia, United States Nightwing Full timeJob Title: Cyber Network Forensic Analyst IIAbout Nightwing:Nightwing is a leading provider of technically advanced full-spectrum cyber, data operations, systems integration, and intelligence mission support services to the U.S. government and other customers. With a deep set of credentials and an unfaltering commitment to the mission, Nightwing has been...
-
Cyber Forensic Analyst III
4 days ago
Arlington, Virginia, United States Nightwing Full timeJob Title: Cyber Forensic Analyst IIIAt Nightwing, we are seeking a highly skilled Cyber Forensic Analyst III to join our team. As a Cyber Forensic Analyst III, you will play a critical role in supporting our customer's mission by conducting forensic investigations and analyzing digital evidence.Responsibilities:Assist federal leads with overseeing and...
-
Cyber Network Forensic Analyst IV
1 day ago
Arlington, Virginia, United States Nightwing Full timeJob Title: Cyber Network Forensic Analyst IVJob Summary:Nightwing is seeking a highly skilled Cyber Network Forensic Analyst IV to support our critical customer mission. As a key member of our team, you will assist in coordinating teams in preliminary incident response investigations, interface with customers, and determine appropriate courses of action in...
-
Cyber Network Forensic Analyst IV
9 hours ago
Arlington, Virginia, United States Nightwing Full timeJob Title: Cyber Network Forensic Analyst IVJob Summary:Nightwing is seeking a highly skilled Cyber Network Forensic Analyst IV to support our critical customer mission. As a key member of our team, you will assist in coordinating teams in preliminary incident response investigations, interface with customers, and determine appropriate courses of action in...
-
Cyber Forensic Analyst III
3 weeks ago
Arlington, Virginia, United States Nightwing Full timeAbout NightwingNightwing is a leading provider of full-spectrum cyber, data operations, systems integration, and intelligence mission support services to the U.S. government and other critical asset owners. Our team of experts has been supporting the nation's most mission-impacting initiatives for over four decades.Job SummaryWe are seeking a highly skilled...