Cyber Network Defense Analyst

Cyber Network Defense Analyst

Requirements

• Bachelor’s Degree and 2-4 years of SOC analyst experience. Additional experience may be considered in lieu of a degree
• Extensive knowledge of a SOC’s/NOSC’s purpose and role within an organization
• Detailed understanding of common network ports and protocols (e.g. TCP/UDP, HTTP, ICMP, DNS, SMTP, etc)
• Expertise with network topologies and network security device functions (e.g. Firewall, IDS/IPS, Proxy, DNS, etc)
• Expertise with packet analysis tools such as Wireshark
• Certification Requirement: Sec+, CEH, CySA+ or SANS certs
• Must have TS/SCI clearance to start. TS clearances candidates will be considered. Preference to candidates with current/active TS/SCI clearance
• US Citizenship required

Responsibilities

• Manage and conduct hands-on technical detection, analysis, containment, eradication, and remediation as a member of the Incident Response team
• Guide and mentor peers and subordinates to provide cross training
• Ensure accountability and punctuality of security analysts assigned to your shift
• Capture cybersecurity metrics that support executive-level briefings (daily, weekly, monthly)
• Articulate daily challenges to the Government Watch Officer (GWO)
• Analyze web and host logs for indications of compromise
• Remediate and coordinate the remediation of infected or compromised devices
• Ensure shift continuity during call-outs and emergencies
• Compile incident reports, executive summaries, and analysis reports of intrusions and/or security events
• Document and update processes, workflows, and technical guides
• Perform simple firewall rule changes (after training)

Preferred Qualifications

No preferred qualifications provided.