Cyber Network Defense Analyst IV AP
4 weeks ago
About the Role:
We are seeking a highly skilled Cyber Network Defense Analyst IV AP to join our team at Nightwing. As a Cyber Network Defense Analyst IV AP, you will be responsible for analyzing and mitigating cyber threats to our customers' networks.
Key Responsibilities:
- Acquire and collect computer artifacts in support of onsite engagements
- Triage electronic devices and assess evidentiary value
- Correlate forensic findings to network events in support of developing an intrusion narrative
- Collect and document system state information prior to imaging, as required
- Perform forensic triage of an incident to include determining scope, urgency, and potential impact
- Track and document forensic analysis from initial participation through resolution
- Collect, process, preserve, analyze, and present computer-related evidence
- Coordinate with Government staff and customer personnel to validate/investigate alerts or additional preliminary findings
- Conduct analysis of forensic images and available evidence in support of forensic write-ups for inclusion in reports and written products
- Evaluate, extract, and analyze suspected malicious code
- Assist in documenting and publishing Computer Network Defense (CND) guidance and reports pertaining to incident findings
- Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources
- Coordinate with enterprise-wide cyber defense staff to validate network alerts
- Perform management duties as required to support the team, projects, and analysts
- Document and escalate incidents, including event history, status, and potential impact for further action
- Perform cyber defense trend analysis and reporting
- Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
- Provide daily summary reports of network events and activity relevant to cyber defense practices
- Receive and analyze network alerts from various sources within the enterprise and determine possible causes of alerts
- Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities
- Use cyber defense tools for continual monitoring and analysis of system activity to identify malicious activity
- Analyze identified malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information
- Identify and analyze anomalies in network traffic using metadata
- Validate intrusion detection system (IDS) alerts against network traffic using packet analysis tools
- Identify applications and operating systems of a network device based on network traffic
- Reconstruct a malicious attack or activity based on network traffic
- Identify network mapping and operating system (OS) fingerprinting activities
- Assist in the construction of signatures which can be implemented on cyber defense network tools in response to new or observed threats within the network environment or enclave
Requirements:
- U.S. Citizenship
- Active TS/SCI clearance
- Ability to obtain Department of Homeland Security (DHS) Entry on Duty (EOD) Suitability
- 8+ years of direct relevant experience in cyber defense analysis using leading edge technologies and industry standard cyber defense tools
- Ability to create forensically sound duplicates of evidence (forensic images)
- Ability to author cyber investigative reports documenting digital forensics findings
- Proficiency with analysis and characterization of cyber attacks
- Skilled in identifying different classes of attacks and attack stages
- Understanding of system and application security threats and vulnerabilities
- Understanding of proactive analysis of systems and networks, to include creating trust levels of critical resources
- Able to work collaboratively across physical locations
- Action-oriented and have a proactive approach to problem solving
- Proficiency with common operating systems (e.g., Linux/Unix, Windows)
Desired Skills:
- Understanding of SaaS, PaaS, and IaaS in the Cloud Environment
- Proficiency with one or more of the following EDR Tools: Crowdstrike, SentinelOne, Cortex, Microsoft MDE, or Trellix
- Proficiency with two or more of the following tools: Host forensics software (EnCase, FTK, X-Ways, Sleuth Kit/Autopsy), SIFT, Volatility, KAPE, WireShark, Splunk
- Proficiency conducting all-source research
Required Education:
BS Computer Science, Cyber Security, Computer Engineering, or related degree; or HS Diploma & 10 years of network investigations experience
Desired Certifications:
- GCFE, GCFA, GCLD, GCPS, GCPN, GWEB, GIRD, GREM, GNFA, GCIH, GCIA, GSEC
- Kubernetes Security Specialist, Microsoft 365 Certifications, Microsoft Azure Certifications, AWS Certifications, SANS Cloud Courses (SEC541, SEC584, SEC588) and Certifications GSEC (SANS401), Network+, Security+
About Nightwing:
At Nightwing, we value collaboration and teamwork. You'll have the opportunity to work alongside talented individuals who are passionate about what they do. Together, we'll leverage our collective expertise to drive innovation, solve complex problems, and deliver exceptional results for our clients.
Benefits:
Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.
Compensation:
The salary range for this role is $130,000 USD - $272,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function, and associated responsibilities, a candidate's work experience, location, education/training, and key skills.
Equal Opportunity Employer:
RTX is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, age, or any other federally protected class.
-
Cyber Network Defense Analyst IV
4 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob Title: Cyber Network Defense Analyst IVArgo Cyber Systems is seeking a highly skilled Cyber Network Defense Analyst IV to join our team. As a key member of our cybersecurity team, you will be responsible for monitoring and analyzing network activity to identify potential threats and protect our systems and data.Key Responsibilities:Characterize and...
-
Cyber Network Defense Specialist
4 weeks ago
Arlington, Virginia, United States Nine Mind Solutions Full timeCyber Network Defense Analyst RoleWe are seeking a skilled Cyber Network Defense Analyst to support our critical customer mission. The ideal candidate will use information collected from various sources to monitor network activity and analyze it for evidence of suspicious behavior.Key Responsibilities: Characterize and analyze network traffic to identify...
-
Cyber Network Defense Specialist
4 weeks ago
Arlington, Virginia, United States Piper Companies Full timePiper Companies is seeking a highly skilled Cyber Network Defense Analyst to join our team. As a Cyber Network Defense Analyst, you will be responsible for characterizing and analyzing network traffic to identify anomalous activity and potential threats to network resources. You will also coordinate with enterprise-wide cyber defense staff to validate...
-
Cyber Network Defense Analyst III
4 weeks ago
Arlington, Virginia, United States Nightwing Full timeAbout the Role:Cyber Network Defense Analyst III is a critical position at Nightwing, where you will play a key role in supporting the nation's most mission-impacting initiatives. As a Cyber Network Defense Analyst III, you will be responsible for correlating forensic findings to network events, performing forensic triage, and tracking and documenting...
-
Cyber Network Forensic Analyst IV
4 weeks ago
Arlington, Virginia, United States Raytheon Full timeJob Summary:As a Cyber Network Forensic Analyst at Nightwing, you will play a critical role in supporting our customer's mission by conducting thorough investigations of cyber-attacks and providing expert analysis to characterize the severity of breaches and develop mitigation plans. You will work collaboratively across physical locations to assist with the...
-
Cyber Defense Analyst III
1 month ago
Arlington, Virginia, United States Solutions³ LLC Full timeJob DescriptionSolutions³ LLC is seeking a highly skilled Cyber Defense Analyst III to support our prime contractor and their U.S. Government customer on a large mission critical development and sustainment program for on and offsite incident response to Government agencies and critical infrastructure owners who experience cyber-attacks.The selected...
-
Cyber Network Forensic Analyst IV
4 weeks ago
Arlington, Virginia, United States Nightwing Full timeAbout the Role:Nightwing is seeking a highly skilled Cyber Network Forensic Analyst IV to join our team. As a key member of our cybersecurity team, you will be responsible for conducting network investigations, analyzing network traffic, and identifying potential threats to our systems.Responsibilities:Assist the Government lead in coordinating teams in...
-
Cyber Network Defense Specialist
4 weeks ago
Arlington, Virginia, United States Nodel Full timeCyber Network Defense and Cloud Forensics RoleAt Node, we are seeking a highly skilled Cyber Network Defense Analyst with expertise in Cloud Forensics to support our critical customer mission. This role requires a strong understanding of cloud development and automation tools, as well as experience in acquiring, processing, and analyzing digital evidence...
-
Cyber Network Defense Analyst III
4 weeks ago
Arlington, Virginia, United States Nightwing Full timeAbout the Role:Nightwing is seeking a highly skilled Cybersecurity Threat Hunter to join our team. As a Cybersecurity Threat Hunter, you will be responsible for identifying and mitigating cyber threats to our customers' networks and systems.Key Responsibilities:Correlate forensic findings to network events to develop an intrusion narrativeCollect and...
-
Cyber Network Forensic Analyst II
4 weeks ago
Arlington, Virginia, United States Nightwing Full timeJob SummaryAt Nightwing, we are seeking a highly skilled Cyber Network Forensic Analyst II to join our team. As a Cyber Network Forensic Analyst II, you will be responsible for conducting thorough investigations of network security incidents, analyzing network traffic, and identifying potential threats to our customers' networks.Responsibilities* Assist the...
-
Cyber Network Defense Specialist
4 weeks ago
Arlington, Virginia, United States ARSIEM Corporation Full timeAbout ARSIEM CorporationAt ARSIEM Corporation, we strive to deliver cutting-edge technical solutions to our government clients. Our team of experienced professionals is committed to providing exceptional support and fostering a trusted partnership with our clients.We are seeking a highly skilled Cyber Network Defense Analyst to join our team in Arlington,...
-
Cyber Threat Analyst
1 month ago
Arlington, Virginia, United States Nightwing Full timeAbout the Role:Nightwing is seeking a highly skilled Cyber Threat Analyst to join our team. As a Cyber Threat Analyst, you will be responsible for correlating incident data to identify specific trends in reported incidents, recommending defense in depth principles and practices, and performing computer network defense incident...
-
Cyber Forensic Analyst IV
4 weeks ago
Arlington, Virginia, United States Nightwing Full timeJob Summary:At Nightwing, we are seeking a highly skilled Cyber Forensic Analyst IV to join our team. As a Cyber Forensic Analyst IV, you will be responsible for leading forensic teams at onsite engagements, providing technical assistance on digital evidence matters, and writing in-depth reports. You will also be responsible for supporting forensic analysis,...
-
Cyber Incident Manager
4 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob SummaryArgo Cyber Systems is seeking a highly skilled Cyber Incident Manager to support our critical customer mission. The successful candidate will be responsible for correlating incident data, recommending defense in depth principles, and performing computer network defense incident triage.Key Responsibilities:Correlating incident data to identify...
-
Cyber Network Forensic Analyst III
4 weeks ago
Arlington, Virginia, United States Raytheon Technologies Full timeJob Summary:RTX is seeking a highly skilled Cyber Network Forensic Analyst III to join our team. As a Cyber Network Forensic Analyst III, you will be responsible for assisting the Government lead in coordinating teams in preliminary incident response investigations, determining appropriate courses of actions in response to identified and analyzed anomalous...
-
Cyber Security Analyst
1 month ago
Arlington, Virginia, United States NSS Full timeCyber Security Analyst Job DescriptionWe are seeking a highly skilled Cyber Security Analyst to join our team at NSS. This role provides 24x7 cybersecurity monitoring and analysis services for Department of Defense networks above the SECRET level.The successful candidate will perform real-time cyber threat intelligence analysis, correlate actionable security...
-
Deputy Cyber Incident Response Team Manager
1 month ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob SummaryWe are seeking a highly skilled Deputy Cyber Incident Response Team Manager to join our team at Argo Cyber Systems. As a key member of our Cyber Defense Mission, you will play a critical role in ensuring exceptional service for our managed services customers and driving employee engagement for our CIRT staff members.Key ResponsibilitiesSupport the...
-
Cybersecurity Network Defense Specialist
4 weeks ago
Arlington, Virginia, United States Nine Mind Solutions Full timeCybersecurity Network Defense SpecialistWe are seeking a highly skilled Cybersecurity Network Defense Specialist to support our critical customer mission. The ideal candidate will use information collected from various sources to monitor network activity and analyze it for evidence of suspicious behavior. Key Responsibilities: Characterize and analyze...
-
Cyber Forensic Analyst IV
4 weeks ago
Arlington, Virginia, United States Nightwing Full timeJob Summary:Nightwing is seeking a highly skilled Cyber Forensic Analyst IV to support our critical customer mission. As a key member of our team, you will be responsible for leading forensic teams at onsite engagements, providing technical assistance on digital evidence matters, and writing in-depth reports.Responsibilities:Assisting Federal leads with...
-
Cyber Host Forensic Analyst IV
1 month ago
Arlington, Virginia, United States Raytheon Technologies Full timeJob Summary:Raytheon Technologies is seeking a highly skilled Cyber Host Forensic Analyst IV to support our critical customer mission. As a member of our team, you will assist federal leads with overseeing and leading forensic teams at onsite engagements, providing technical assistance on digital evidence matters, and writing in-depth...
