Cybersecurity Countermeasures Developer

4 weeks ago

St Louis, United States CACI International Inc Full time
Cybersecurity Countermeasures DeveloperJob Category: Information TechnologyTime Type: Full timeMinimum Clearance Required to Start: TS/SCIEmployee Type: RegularPercentage of Travel Required: Up to 10%Type of Travel: Local* * *

CACI IS THE WINNER  of a long-term  prime contract with the National Geospatial-Intelligence Agency (NGA) for Transport & Cybersecurity Services (TCS) contract. The functional capabilities are to provide the information technology (IT) infrastructure services required to deliver timely, relevant, and accurate support of national security. TCS will provide innovative design, engineering, procurement, implementation, operations, sustainment, and disposal of transport and cybersecurity IT services on multiple networks and security domains, at multiple locations worldwide to support the NGA mission.

In this role, we're seeking a Cybersecurity Countermeasures Developer who could potentially be located in either Springfield, VA or Saint Louis, MO .

Reporting to the Lead of Focused Operations, under the Branch Chief of Defensive Cyber Operations, you will be tasked with developing and maintaining defensive countermeasures for the enterprise. Working within a Fusion model will collaborate with other teams within Focused Operations with the distinct task of proactively preventing a successful compromise and eradicating persistent adversaries already in the enterprise. This will be done through various means such as: reviewing future and past intelligence reports, reviewing incident reports, through regular Purple Teaming exercises, and continuously validating Defensive Countermeasures already deployed.

What You’ll Get to Do:

Analyzes trends and patterns of data on NGA networks to identify and predict previously undiscovered events and incidents, and develop or tune rules/signatures/scripts as needed;

Coordinates with other Cybersecurity Operations to develop or tune rules/signatures/scripts;

Coordinates with other Cybersecurity Operations Services to investigate and obtain information about potential sources of compromise on NGA systems, and develop or tune rules/signatures/scripts as needed;


More About the Role:

Correlates and analyzes precursors to incidents, and develops or tunes rules/signatures/scripts as needed;

Improve SIEM alert efficiency through evaluation of valid alerts and false positives, and develop or tune rules/signatures/scripts as needed;

Assists the Cyber Incident Response Team by assessing ongoing incident activity to predict adversary responses and locations of compromise;

Documents all work in the authorized ticketing system with a sufficient level of detail to ensure the Government and other contract services can systematically reconstruct the analysis;

Provide input to the daily CSOC Significant Activity Report, the daily CSOC Operations Update, and the Weekly CSOC Status Report;


You’ll Bring These Qualifications:

Must be a US Citizen with an Active TS/SCI.

8+ years of related advanced cyber security analytics work experience.

Must have a certification that is compliant with DoD 8140.01 and DoD 8570.01-M IAT Level III and CSSP Analyst.

Experience with data mining or building queries in a SIEM.

Strong understanding of signature development and tuning.

Strong understanding of network protocols and analysis with protocol analyzers.

Knowledge of static file signatures, i.e. "magic numbers" and how they apply to developing countermeasures for files in transit and that reside locally on a host.

Good working knowledge of regular expressions.

These Qualifications Would Be Nice to Have:

Comfortable in a hex editor.

Ability to write Python/bash/PowerShell scripts.

Ability to analyze each use case, as it pertains to detection logic, and identify the corresponding capability.

Good understanding of Purple Team Tactics.


What We Can Offer You:

- We’ve been named a Best Place to Work by the Washington Post.

- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

- We offer competitive benefits and learning and development opportunities.

- We are mission-oriented and ever-vigilant in aligning our solutions with the nation’s highest priorities.

- For over 60 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
 

  • Software Developer

    4 weeks ago

    St. Louis, United States CALIBRE Systems, Inc. Full time

    CALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Software Developer (Mid-level) will develop, create, maintain, and write/code new (or modify existing) computer applications, software, or specialized utility programs. The Software Developer’s responsibilities include, but are not limited to,...

  • Software Developer

    1 week ago

    St. Louis, United States CALIBRE Systems, Inc. Full time

    CALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Software Developer (Mid-level) will develop, create, maintain, and write/code new (or modify existing) computer applications, software, or specialized utility programs. The Software Developer’s responsibilities include, but are not limited to,...

  • Cybersecurity Analyst

    1 month ago

    Bay St Louis, United States InterSources Full time

    Required Skills/Experience Provide the minimum required skills and/or experience the contractor must possess to qualify for this position. These requirements will be transferred to the Score Sheet and candidates without these requirements reflected on their resume will NOT be presented to the manager for consideration. 5+ years of Cybersecurity related...

  • Cybersecurity Analyst

    4 weeks ago

    Bay St Louis, United States InterSources Full time

    Required Skills/Experience Provide the minimum required skills and/or experience the contractor must possess to qualify for this position. These requirements will be transferred to the Score Sheet and candidates without these requirements reflected on their resume will NOT be presented to the manager for consideration. 5+ years of Cybersecurity related...

  • Cybersecurity Instructor

    4 weeks ago

    St Louis, United States Claim Academy Full time

    Cybersecurity Instructor (On-site; St. Louis)Location: St. Louis, MissouriPosition Type: Part-Time/Full-Time, ContractDuration: 14 WeeksCompany Overview:Claim Academy is a leading tech bootcamp committed to transforming lives by providing rigorous and immersive training in various tech disciplines. Our mission is to bridge the skills gap in the tech industry...

  • Cybersecurity Program and Response Leader

    1 month ago

    St. Louis Park, United States nVent Full time

    We're looking for people who put their innovation to work to advance our success - and their own. Join an organization that ensures a more secure world through connecting and protecting our customers with inventive electrical solutions. POSITION SUMMARY: The Cybersecurity Program and Response Leader will lead and coordinate cybersecurity initiatives across...

  • Vulnerability Assessment Analyst

    1 month ago

    St. Louis, United States CALIBRE Full time

    CALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Vulnerability Assessment Analyst (Mid-level) that will perform assessments of systems and networks within a Government enclave and identify where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. The...

  • Vulnerability Assessment Analyst

    4 weeks ago

    St. Louis, United States CALIBRE Systems, Inc. Full time

    CALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Vulnerability Assessment Analyst (Mid-level) that will perform assessments of systems and networks within a Government enclave and identify where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. The...

  • Director Cybersecurity Architecture

    4 weeks ago

    St Louis, United States Post Holdings Full time

    Business Unit Description: Feeding the world is what we do how we do it is unique. We are not your textbook consumer packaged goods company. While others are slow to make change happen, we continuously drive both inorganic and organic growth. Our history is evidence of that fact with over 100 years of heritage and growth from brands that transcend...

  • Cybersecurity Engineer

    2 weeks ago

    St Paul, United States LanceSoft Full time

    Job Description Bachelor's Degree in Engineering (Computer, Electrical, Computer Systems, Systems, or Software), Computer Science, or related discipline 1-3 years of cybersecurity engineering, software engineering design and development, or systems administration experience Experience in assessing and remediating cybersecurity vulnerabilities Demonstrated...

  • Cybersecurity Intern/Co-op

    1 month ago

    St Louis, United States ARCO a Family of Construction Companies Full time

    ABOUT YOU: Are you an out of the box thinker? Are you passionate about solving business problems with the latest technology? If the answer is, Yes! then we have an exciting, internship opportunity for you. Who are we? We are ARCO, a Family of Construction Companies. We are looking for a Cybersecurity Intern for our St. Louis office to work with our...

  • Vulnerability Assessment Analyst

    1 month ago

    St. Louis, United States CALIBRE Full time

    CALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Vulnerability Assessment Analyst (Mid-level) that will perform assessments of systems and networks within a Government enclave and identify where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. The...

  • Cybersecurity Center Director and Assistant P

    1 month ago

    Saint Louis, United States Harris-Stowe State University Full time

    Job DescriptionJob DescriptionHarris-Stowe State University is a historically Black institution (HBCU) located in the heart of vibrant mid-town St. Louis, Missouri. Harris-Stowe’s beautiful campus is minutes from the renown Gateway Arch, St. Louis Zoo, St. Louis Art and History Museums, Forest Park and other cultural and educational institutions....

  • CyberSecurity Engineer

    2 weeks ago

    St Paul, United States Actalent Full time

    Description: As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering team members to identify business, technology and product risks and vulnerabilities in the early stages and embed security requirements to address and validate them. A lot of this is done by...

  • Cybersecurity IT Business Operations Manager

    4 weeks ago

    St Paul, United States Horizontal Talent Full time

    Are you experienced in Cybersecurity IT Business Operations and looking for a new opportunity in Maplewood? Horizontal Talent is recruiting a Cybersecurity IT Business Operations Manager for a collaborative team, and the hybrid role comes with an attractive pay rate. The Cybersecurity IT Business Operations Manager will have the opportunity to tap into your...

  • TRANSCOM IGC

    4 weeks ago

    Saint Louis, United States IT Partners,Inc Full time

    Job DescriptionJob DescriptionThe candidate will have experience providing engineering solutions to meet security compliance. The cybersecurity engineer will work across multiple development teams to ensure solutions, architectures and designs incorporate security best practices. The candite will be required to work across the project team, providing...

  • TRANSCOM IGC

    1 month ago

    Saint Louis, United States IT Partners,Inc Full time

    Job DescriptionJob DescriptionThe candidate will have experience providing engineering solutions to meet security compliance. The cybersecurity engineer will work across multiple development teams to ensure solutions, architectures and designs incorporate security best practices. The candite will be required to work across the project team, providing...

  • Java Developer

    2 weeks ago

    St Louis, United States Cogent Infotech Corp Full time

    Job Description Job Description Join Our Team in Boston, MA: Entry level Full Stack Java Developer Cogent Infotech is on the lookout for dynamic entry level full-stack Java Developers to contribute to our prestigious clientele in Boston, MA. This role offers an incredible opportunity to significantly impact our cutting-edge web applications, providing a...

  • Sr. Product Cybersecurity Analyst

    3 weeks ago

    St. Paul, United States Abbott Laboratories Full time

    Working at AbbottAt Abbott, you can do work that matters, grow, and learn, care for yourself and family, be your true self and live a full life. You’ll also have access to:Career development with an international company where you can grow the career you dream of .Free medical coverage for employees* via the Health Investment Plan (HIP) PPOAn excellent...

  • Sr Cybersecurity Engineer

    1 month ago

    Saint Louis, United States InterVision Systems Full time

    Job DescriptionJob DescriptionAre you looking for a challenging role as a Sr. Cybersecurity Engineer – Operations Center?As a leading managed service provider (MSP), InterVision assists IT leaders in solving the most crucial challenges they face by solving for the right technology, deployed on the right premises, and managed through the right model to fit...