Computer Network Defense/Incident Response (Cnd/Ir) Analyst

Computer Network Defense/Incident Response (Cnd/Ir) Analyst
Company:

Saic


Computer Network Defense/Incident Response (Cnd/Ir) Analyst

Details of the offer

Description

The Defense Systems Group of SAIC is seeking a Computer Network Defense / Incident Response Analyst with an active TS/SCI Polygraph to work onsite with our customer at Scott AFB.
The CND Analyst shall identify, collect, and analyze network and host data, and report events or incidents that occur or might occur within a network to mitigate immediate and potential network and host threats.
The individual shall perform computer network defense (CND) incident triage, to include:
Determining urgency, and potential impact;
Identifying the specific vulnerability; and making recommendations that enable expeditious remediation
Perform initial, forensically sound collection of images and inspect to determine mitigation/remediation on enterprise systems;
Perform real-time computer network defense (CND) incident handling (e. g., forensic collection, intrusion correlation/tracking, threat analysis, and direct system remediation) task to support Incident Response Teams, receive and analyze network alerts from various sources within the enterprise and determine possible causes of such alerts, and track and document computer network defense (CND) incidents from initial detection through final resolution
Employ defense-in-depth principles and practices, collect intrusion artifacts (e.g., source code, malware, and Trojans) and use discovered data to enable mitigation of potential computer network defense (CND) incidents within the enterprise.
Assist with analysis of actions taken by malicious actors to determine initial infection vectors, establish a timeline of activity and any data loss associated with incidents.
Provide expert technical support to enterprise-wide CND technicians to document CND incidents, correlate incident data to identify specific vulnerabilities and to make recommendations enabling remediation.

Qualifications

REQUIRED EDUCATION AND EXPERIENCE:

Minimum of ten (10) years of recent work experience in Computer Network Defense and Incident Response with a Bachelor's degree in Computer Science/Cyber Security/Computer Information or Information Systems. Additional years of experience may be considered in lieu of a degree.
IAT Level III certification (CISSP, GCED, CASP CE, CCNP Security, CISA, GCIH)
Experience using various incident response tools (e.g., Acunetix, Adobe, Cobalt Strike, FireEye, Fluke Networks Air Magnet, F-Response, Encase Guidance Software, IDA Pro, McAfee Advance Threat Defense, Network Miner Pro, Palo Alto, Burp Suite Professional, Metasploit Rapid 7, Red Seal, Splunk, VMWare, Domain Tools, Virus Tools, Microsoft Products, Operating Systems (e.g., Windows OS 2008 and 2012; Linux)
Experience with programming tools such as Python, PowerShell and also able to develop Scripts with Scripting languages/tools.
Experience monitoring external data sources (e.g., computer network defense vendor sites, Computer Emergence Response Teams, SANS, Security Focus), update the CND threat condition, and determine which security issues may have an impact on the enterprise.
Experience analyzing log files, firewalls, firewall logs, and intrusion detection systems and IDS Logs to identify possible threats to network security, and to perform command and control functions in response to incidents.
DESIRED EXPERIENCE:
Experience on a Cyber Protection Team, DoD/US CERT or other USG Red Team.

Experience with Big Data Platform, AI, and or Machine Learning.
REQUIRED CLEARANCE :
Candidate must currently possess and be able to maintain TS/SCI with Polygraph
#MARFORCYBER
My SAIC Benefits.


Source: Dice


Area:

Requirements

Wardrobe clerk

Position Summary The Wardrobe Clerk provides friendly service to all employees who pick up and drop off their uniforms. Supervision Exercised Supervised by the...


New Mexico

Published a month ago

Poker dealer

ThePoker Dealerdeals poker, accepts bets and retrieves or conducts payouts based on winning card distribution. Handles player transactions, notifies Poker Shift...


New Mexico

Published a month ago

Supervisor veterans home fiscal administation

The Supervisor of Veterans Homes Fiscal Administrator is the Director of the business/fiscal office and is responsible for overseeing the fiscal planning...


From Health, Department Of - New York

Published a month ago

Product stocker (must be able to lift 60 lbs)

PRODUCT STOCKER burton + BURTON, the world's largest all-occasion wholesaler focusing on balloons, floral supplies, coordinating gifts and home decor, located...


From Burton+Burton - Georgia

Published a month ago