Today
Top Secret/SCI
Unspecified
Unspecified
IT - Security
Lackland AFB, TX (On-Site/Office)
Cybersecurity Host Based Analysis Specialist/ Information Security Analyst II
Location: Lackland AFB, San Antonio, Texas
PRIMARY DUTY RESPONSIBILITIES:
Security Clearance: Top Secret with SCI.
Education/Certifications: BS or MS degree in IT-related field and DoD 8570/8140 IAM or IAT Level II Certification and one of the following: CSSP-Analyst required.
Relevant Experience:
Location: Lackland AFB, San Antonio, Texas
PRIMARY DUTY RESPONSIBILITIES:
- Perform incident triage to determine scope, urgency, and potential operational impact by identifying the specific vulnerability and making recommendations.
- Create custom signatures or correlation rules to detect future incidents as well as make protection recommendations to enhance resistance to future attack.
- Technical experts and liaisons to external incident response personnel and brief incident details as necessary.
- Ability to provide wide incident handling support such as forensics collections, intrusion correlation tracking, threat analysis, and direct system remediation tasks to appropriate personnel.
- Develop and publish incident response guidance and high-quality incident reports to appropriate audiences.
- Develop SOPs and workflows integrating applicable new technologies.
- Provide training on current and new technologies to government personnel to service support.
- Perform heuristic analysis on event data, high-performance interactive searches, comprehensive drill-down reports and incident handling capabilities.
- Monitor and protect the security of the systems and networks.
- Support Enterprise vulnerability management programs and report events, process and release task orders (TASKORDS) and provide input to vulnerability management policies and procedures as to meet current and future security needs arising from leadership strategic vision/vector and environmental constraints.
Security Clearance: Top Secret with SCI.
Education/Certifications: BS or MS degree in IT-related field and DoD 8570/8140 IAM or IAT Level II Certification and one of the following: CSSP-Analyst required.
Relevant Experience:
- 2 years of experience in collecting and analyzing network intrusion data from a variety of sources to include but not be limited to logs, system images, and packet captures to enable mitigation of network incidents.
group id: 10200317
