IT Security Analyst

Location: Washington, DC
Date Posted: 05-08-2018
Our client is currently looking for a Mid-Tier Incident Response Team Analyst whose secondary duties are to serve as an Assistant team lead on a Security Operations team supporting our federal government client in Washington, DC. All applicants must be USC


What you will accomplish: 
  • Support/assist the client with real-time monitoring and triage of incident received at the operation center
  • Work collectively with other team members on incident analysis and response, coordinate with external teams on resolution of incidents. 
  • Support efforts on threat hunting, network, host, and malware analysis, sensor tuning and custom signature creation. 
  • Lead the application of cyber intelligence to improve security operations. 
  • Oversee and perform investigation of network and hosts/endpoints for malicious activity, to include analysis of packet captures. 
  • Oversee and assist in efforts to detect, confirm, contain, remediate, and recover from attacks. 
  • Prepare executive summaries and conduct briefings on significant investigations. 
  • Measure and manage individual and team performance.
  • Ensure adequate metrics and documentation of team operations for leadership and other constituents. 
Qualifications
  • Bachelors Degree
  • Ability to obtain a Public Trust clearance. 
  • One or more certifications in information security (such as Security+, GCIA, GCIH, CEH, CISSP, SSCP) 
  • 5 years of cyber security experience to include: effective participation in hunt, computer network defense, real-time analysis and incident response activities. 
  • Ability to reconstruct events from network, endpoint, and log data. 
  • Server administration.
  • Cyber intelligence, disk forensics and memory forensics experience. 
  • Strong understanding of cyber security knowledge to include: adversary TTPs, network technology, network security, host security, Malware, and security tools & sensors. 
  • Network investigation experience, to include netflow and packet/protocol capture and analysis
 
 
or
this job portal is powered by CATS