Cyber Incident Detector
Job Description
- Perform forensic analysis of digital information and gathers and handles evidence. Identify network computer intrusion evidence and perpetrators, and coordinates with other government agencies to record and report incidents.
- You must be passionate about technology, and able to learn the ropes of new security solutions rapidly.
- Take the lead in day-to-day monitoring for unusual activities, implement defensive protocols, and report incidents.
- Forensic analysis of digital information, Open-Source Intel (OSINT) review/monitoring, available tools both customer provided and open source, and pivoting/researching on previously reported Indicators of Compromise (IOCs).
- Participate in collaborative sessions with other CNDSPs and Intelligence Community (IC) agencies on malicious intrusions, attacks or suspicious activities, as well as share emerging Cyber Threat Intel data.
- Assist in the development of IOCs for active defensive countermeasures and passive detection signatures.
- Day, Swing, or Mid Shift position available. Willing to work a weekend or holiday shift supporting your assigned shift.
- Must have common knowledge of standard network infrastructure.
- Other items that would be good to know include:
domain masquerading, certificates, and file hashing. - Familiar with monitoring emerging threats through Tools, Techniques, and Procedures (TTPs) and how they relate to the MITRE ATT&CK Framework
- Good written communications skills are necessary to properly document and report the identification and sharing of newly identified IOCs.
- Meticulous eye for detail and an ability to multitask in a fast-paced environment.
- Maintain knowledge of current cybercrime tactics.
- Investigates, analyzes, and responds to cyber incidents within a network environment or enclave.
- Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.
- Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events.
- Evaluates, tests, recommends, coordinates, monitors, and maintains cybersecurity policies, procedures, and systems, including access management for hardware, firmware, and software.
- Ensures that cybersecurity plans, controls, processes, standards, policies, and procedures are aligned with cybersecurity standards.
- Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security.
- Researches and evaluates new concepts and processes to improve performance.
- Analyzes cross-functional problem sets, identifies root causes and resolves issues.
- Develops techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks.
- May coach and provide guidance to less-experienced professionals.
- May serve as a team or task lead.
- High School Diploma or GED
12 years of relevant experience - Associates Degree
10 years of relevant experience - Bachelors Degree
8 years of relevant experience - Masters Degree
6 years of relevant experience - PhD
4 years of relevant experience - Note:
Relevant professional certifications will be considered equivalent to six (6) months of relevant experience
Pay & Benefit Highlights Compensation
- Above market fixed salary or hourly pay.
- Up to $10,000 bonus for each referral.
- Additional bonuses for exceptional performance, assisting with business development and company growth.
- 100% paid premiums for health insurance. Choose from over 80 gold-level medical plans from Aetna, CareFirst, Kaiser and UnitedHealthcare. Choose from PPO, EPO, POS, HMO, and HSA-compatible.
- HSA and FSA options.
- 100% paid premiums for dental insurance.
- 100% paid premiums for vision insurance.
- 100% paid premiums for short-term disability.
- 100% paid premiums for long-term disability.
- 100% paid premiums for accidental death & dismemberment.
- 100% paid premiums for life insurance with a $200,000 max benefit.
- 8% company contribution to 401k with immediate vesting.
- 401k pre-tax and Roth options.
- Up to 20 days of flexible paid time off (PTO).
- 11 days of paid floating holidays.
- Flexible work schedules including flex time and compressed work period.
- Remote work including partial or fully remote (contract and project-dependent).
|
|
 | |
