Yesterday
Top Secret
Early Career (2+ yrs experience)
IT - Security
Pearl Harbor, HI (On-Site/Office)
We have a permanent position for a cyber intrusion analyst in Ford Island / Perl Harbor HI for a cyber intrusion analyst. You must have an active TS to apply. This role is 100% onsite. Details below. If interested, SEND RESUME and SALARY.
Thanks,
Nancy Colwell
nancy@2020itservices.com
310-918-4641
Contract length: 6 year contract
Job Summary:
Job Description:
• Work closely with Government counterparts to provide guidance within the CND-SP
area.
• Provide CND reports, trends, responses, mitigations, analysis & information
dissemination.
• Provide C2 support, situational awareness support, and provide leadership & support for
all CND applicable activities within Protect, Detect, Respond, and Sustain.
• Work as a technical leader within the CSSP Team, responsible for maintaining the
integrity & security of enterprise-wide systems & networks.
• Provide technical leadership to CND Teams supporting security initiatives through
predictive & reactive analysis, and by articulating emerging trends to leadership & staff.
Primary Responsibilities:
• Perform computer network incident detection, and response activities to detect, correlate,
identify and characterize anomalous activity that may be indicative of threats to the
enterprise.
• Monitor various security tools and applications for possible malicious activities,
investigate any associated alerts or indicators, and develop recommendations for a course
of action, including mitigation strategies as necessary.
• Conduct analysis of low-level (“low and slow”) events to identify unauthorized activity
utilizing exploratory problem-solving or self-learning techniques.
• Conduct near real-time event triage and analysis, which can result in network traffic
validations or a Mission Partner’s incident report.
• Utilize formal monitoring policies and procedures that include the appropriate use of
DoD-approved network monitoring and traffic analysis tools to assist with identifying
suspicious, anomalous, or overtly malicious network traffic on a 24/7/365 basis.
• Review and analyze available logs in a timely manner to detect intruders and notify
Mission Partners of activity through a formal reporting process/pending an incident
report.
• Apply, develop, tune, and distribute or optimize new and existing countermeasures or
guidance to prevent or mitigate potential cyber event impacts when possible.
• Perform network traffic analysis utilizing raw packet data, net flow, IDS, IPS and custom
sensor output, as it pertains to the cyber security of communications networks.
• Understand attack signatures, tactics, techniques, and procedures associated with
advanced threats.
• Requires good technical writing skills as each event, including the associated analysis,
are documented in a ticketing system for review and action.
• Requires excellent communication skills as we are collocated with our customer and
regular face-to-face interaction is necessary throughout the day, as well as significant
coordination and communication between team members.
Required:
• Bachelor’s Degree and 4+ years of related experience; cyber courses/certifications or
DISA customer experience may be substituted in lieu of degree.
• Current DoD 8570 IAT Level II Certification (e.g. Sec+ CE) or higher at time of start.
• Current DoD 8570 CSSP Analyst Certification (e.g. CEH, CySA+), or ability to obtain
one within 180 days of starting.
• Experience working CND duties (e.g., Protect, Defend, Respond, and Sustain).
• Experience working with DoD / Government Leaders at all levels.
• Strong computing system knowledge, particularly networking, including a knowledge of
communication protocols and familiarity with common computing security elements such
as IDS/IPS systems and firewalls.
• Experience evaluating packet captures.
PREFERRED QUALIFICATIONS:
• Command Line Scripting skills (PERL, python, shell scripting) to automate analysis
task.
• Knowledge of hacker tactics, techniques and procedures (TTP).
--
Nancy Colwell
2020 IT Services, Inc.
310-543-1043 Office
310-918-4641 Mobile
http://www.linkedin.com/in/nancycolwell
No one in this world is pure and perfect. If you avoid people for their mistakes you will be alone. So judge less, love and forgive more.
Thanks,
Nancy Colwell
nancy@2020itservices.com
310-918-4641
Contract length: 6 year contract
Job Summary:
Job Description:
• Work closely with Government counterparts to provide guidance within the CND-SP
area.
• Provide CND reports, trends, responses, mitigations, analysis & information
dissemination.
• Provide C2 support, situational awareness support, and provide leadership & support for
all CND applicable activities within Protect, Detect, Respond, and Sustain.
• Work as a technical leader within the CSSP Team, responsible for maintaining the
integrity & security of enterprise-wide systems & networks.
• Provide technical leadership to CND Teams supporting security initiatives through
predictive & reactive analysis, and by articulating emerging trends to leadership & staff.
Primary Responsibilities:
• Perform computer network incident detection, and response activities to detect, correlate,
identify and characterize anomalous activity that may be indicative of threats to the
enterprise.
• Monitor various security tools and applications for possible malicious activities,
investigate any associated alerts or indicators, and develop recommendations for a course
of action, including mitigation strategies as necessary.
• Conduct analysis of low-level (“low and slow”) events to identify unauthorized activity
utilizing exploratory problem-solving or self-learning techniques.
• Conduct near real-time event triage and analysis, which can result in network traffic
validations or a Mission Partner’s incident report.
• Utilize formal monitoring policies and procedures that include the appropriate use of
DoD-approved network monitoring and traffic analysis tools to assist with identifying
suspicious, anomalous, or overtly malicious network traffic on a 24/7/365 basis.
• Review and analyze available logs in a timely manner to detect intruders and notify
Mission Partners of activity through a formal reporting process/pending an incident
report.
• Apply, develop, tune, and distribute or optimize new and existing countermeasures or
guidance to prevent or mitigate potential cyber event impacts when possible.
• Perform network traffic analysis utilizing raw packet data, net flow, IDS, IPS and custom
sensor output, as it pertains to the cyber security of communications networks.
• Understand attack signatures, tactics, techniques, and procedures associated with
advanced threats.
• Requires good technical writing skills as each event, including the associated analysis,
are documented in a ticketing system for review and action.
• Requires excellent communication skills as we are collocated with our customer and
regular face-to-face interaction is necessary throughout the day, as well as significant
coordination and communication between team members.
Required:
• Bachelor’s Degree and 4+ years of related experience; cyber courses/certifications or
DISA customer experience may be substituted in lieu of degree.
• Current DoD 8570 IAT Level II Certification (e.g. Sec+ CE) or higher at time of start.
• Current DoD 8570 CSSP Analyst Certification (e.g. CEH, CySA+), or ability to obtain
one within 180 days of starting.
• Experience working CND duties (e.g., Protect, Defend, Respond, and Sustain).
• Experience working with DoD / Government Leaders at all levels.
• Strong computing system knowledge, particularly networking, including a knowledge of
communication protocols and familiarity with common computing security elements such
as IDS/IPS systems and firewalls.
• Experience evaluating packet captures.
PREFERRED QUALIFICATIONS:
• Command Line Scripting skills (PERL, python, shell scripting) to automate analysis
task.
• Knowledge of hacker tactics, techniques and procedures (TTP).
--
Nancy Colwell
2020 IT Services, Inc.
310-543-1043 Office
310-918-4641 Mobile
http://www.linkedin.com/in/nancycolwell
No one in this world is pure and perfect. If you avoid people for their mistakes you will be alone. So judge less, love and forgive more.
group id: 10337921
