Today
Public Trust
Unspecified
Polygraph
IT - Security
Bethesda, MD (On-Site/Office)
OVERVIEW:
The Cyber Security SME (Lead) responsible for the overall security defense and monitoring of the enterprise environment of critical information technology services across multiple security domains and delivery platforms. This includes, but is not limited to, responding to alerts from HBSS, administering security IPS/IDS tools, addressing triggers and events from SIEM systems, responding to incident response events, and generating reports related to the state of network security and threat activity. This role strengthens the defensive posture and cyber defense operational readiness of the customer's enterprise to protect against external cyber attacks and insider threats which could potentially cause damage to the data, systems, or networks.
REQUIRED QUALIFICATIONS:
DESIRED QUALIFICATIONS:
CLEARANCE:
The Cyber Security SME (Lead) responsible for the overall security defense and monitoring of the enterprise environment of critical information technology services across multiple security domains and delivery platforms. This includes, but is not limited to, responding to alerts from HBSS, administering security IPS/IDS tools, addressing triggers and events from SIEM systems, responding to incident response events, and generating reports related to the state of network security and threat activity. This role strengthens the defensive posture and cyber defense operational readiness of the customer's enterprise to protect against external cyber attacks and insider threats which could potentially cause damage to the data, systems, or networks.
REQUIRED QUALIFICATIONS:
- BA/BS in Computer Science, Cybersecurity, or another related field
- DoD 8570 IAT Level II
- Minimum of 7 years related professional work experience
- Minimum 5 years working in the fields of CND and incident response
- Experience managing IPS/IDS tools
- Experience conducting ACAS scans
- Experience conducting incident response actions from alerts on a SIEM
- Experience using Tableau to render data into summary reports
- Experience providing security posture, threat, and risk reports and briefings to leadership
- Support in the establishment and maintenance of the CMDB to ensure accurate tracking of assets and configurations. Provides support to an organization, system, or enclave's information assurance program.
DESIRED QUALIFICATIONS:
- MS in Computer Science, Cybersecurity, or another related field
- 10+ years related professional work experience
- 7+ years working in the fields of CND, risk management, and continuous management of security tools
- Experience conduvting cyber-attack analysis
- Experience conducting Battle Damage Assessments after a cyber-attack
- Experience detecting and mitigating insider threat
- Provides security certification test and evaluation of assets, vulnerability management and response, security assessment, and customer support.
- Documenting network schemas and cyber operation tool solutions
CLEARANCE:
- TS/SCI with Polygraph minimum
group id: 90943786
