1+ months

Information Security Specialist, Staff (Grimlock)

Chantilly, VA
Apply Now
Apply on the Company Site
Job Description: Candidate will perform the following duties: 
  • Responsible for maintaining the integrity and security of enterprise-wide cyber systems and networks
  • Supports cyber security initiatives through both predictive and reactive analysis Articulates emerging trends to leadership and staff
  • Coordinates resources during incident response efforts, driving incidents to timely and complete resolution
  • Performs network traffic analysis using raw packet data, net flow, IDS data, and custom sensor output
  • Reviews threat data and develops custom signatures
  • Correlates actionable security events and develops unique correlation techniques
  • Uses attack signatures and tactics, techniques and procedures (TTPs) to aid in Zero-Day detection
  • Uses attack signatures and TTPs associated with Advanced Persistent Threats to identify new threats and attacks
  • Conducts basic malware analysis of attacker tools, identifying indicators of compromise, and reverse engineer attacker encoding protocols
  • Interfaces with external entities, including law enforcement and intelligence community organizations
  • Provides analysis of incidents for customers by: determining the incidents nature and formulating responses  identifying and providing the ability to surge during emergencies correlating event and incident data determining possible effects on the DODIN, customer networks, and other organizations
  • Ability to work independently and within a team as required
  • Monitors Computer Network Defense (CND) security-relevant network components
  • Performs infrastructure monitoring, performance assessment, new requirement analysis and support Additional Duties
  • Prepare and disseminate CND reports, trends, responses, mitigations, analysis, and information
  • Provide support to leadership for CND applicable activities within Protect, Detect, Respond, and Sustain
  • Support a performance-based environment with pre-determined Acceptable Levels of Performance (ALPs)
  • Support the development, documentation, and tracking of metrics relevant to the ALPs
Interface with government counterparts and leadership
Prerequisites: / Qualifications:  Five (5) years experience in the Information Systems (IS) environment w/two (2) years experience  in two or more in CND.  A working knowledge of both Windows and UNIX networks in homogeneous and heterogeneous environments is a requirement.  Exposure to or a working knowledge of Cyber Warfare techniques and Computer Network Defense (CND) technologies is required.  Candidate should be familiar with current DoD and Intelligence Community (IC) directive, Instruction, Policies and Guidance documents.
The candidate should have experience in the following areas:
  • Ability to understand various computer architecture, software applications and operating systems
  • Solid working knowledge of network security architecture
  • Understanding of trusted systems and their applications
  • Ability to apply information systems security engineering, security services and mechanism, threats and vulnerabilities to systems
  • Command Line Scripting skills (PERL, Python, PowerShell scripting) to automate analysis task
  • Knowledge of hacker TTPs Be able to conduct basic malware analysis
  • Demonstrated hands on experience with various static and dynamic malware analysis tools
  • Knowledge of advanced threat actor TTPs
  • Understanding of software exploits Ability to analyze packed and obfuscated code
  • Comprehensive understanding of common Windows APIs and ability to analyze shellcode
  • Good technical problem-solving skills
  • Communications and teamwork skills
  • Knowledge of applicable IC/DoD IA policies and NRO policies, directives and standards

Education:   Bachelors in Computer Science (Information Management, Computer Information systems (CIS) or five (5) years of practical experience in the IS environment w/a minimum of three (3) years direct IA experience.  The CISSP and/or CISM is required.
Required Clearance: U. S. Citizen; minimum TS//SCI and CI Poly

Education:   Bachelors in Computer Science (Information Management, Computer Information systems (CIS) or five (5) years of practical experience in the IS environment w/a minimum of three (3) years direct IA experience.  The CISSP and/or CISM is required.
 
Required Clearance: U. S. Citizen; minimum TS//SCI and CI Poly
Posted: 2018-09-24 Expires: 2018-11-24

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Information Security Specialist, Staff (Grimlock)

AT&T
Chantilly, VA

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast