Jobs · Information Technology · Maryland

Cyber Security Fusion Analyst

Leidos · Fort Meade, MD · 1 wk ago
On-siteInformation Technology$108k–$195k/yrFull-time

Primary Responsibilities

  • Leverage an array of network monitoring and detection capabilities (including netflow, custom application protocol logging, signature-based IDS, and full packet capture (PCAP) data) to identify cyber adversary activity.
  • Support the development of Cyber Fusion standard operating procedures (SOPs), and Cyber Fusion Framework and Methodology based on industry best practice and department of defense instruction, guidance, and policy.
  • Identify threats to the enterprise and provide mitigation strategies to improve security, and reduce the attack surface.
  • Perform analysis by leveraging serialized threat reporting, intelligence product sharing, OSINT, and open source vulnerability information to ensure prioritized plans are developed.
  • Analyze and document malicious cyber actors TTPs, providing recommendations and alignment to vulnerabilities and applicability to the enterprise operational environment.
  • Discover adversary campaigns, anomalies and inconsistencies in sensor and system logs, SIEMs, and other data.
  • Identify, investigate and rule out system compromises, with the capacity to provide written analytic summaries and attack life cycle visualizations.
  • Offer recommendations to adjust enterprise or tactical countermeasures to for threats impacting the DODIN.
  • Collect analysis metrics and trending data, identify key trends, and provide situational awareness on these trends.

Required Qualifications

  • Active DoD TS/SCI Clearance and eligible for polygraph
  • Bachelor’s Degree in related discipline and 8 years of related experience. Additional experience may be accepted in lieu of degree
  • Security+ Certification (or other equivalent DoD 8570 Level II certification)
  • In-depth knowledge of network and application protocols, cyber vulnerabilities and exploitation techniques and cyber threat/adversary methodologies
  • Proficiency with datasets, tools and protocols that support analysis (e.g. passive DNS, Virus Total, Recorded Future, TCP/IP, OSI, WHOIS, enumeration, threat indicators, malware analysis results, Wireshark, Splunk, Arcsight etc.)
  • Experience with various open-source and commercial vendor portals, services and platforms that provide insight into how to identify and/or combat threats or vulnerabilities to the enterprise
  • Proficiency working with various types of network data (e.g. netflow, PCAP, custom application logs)

Preferred Qualifications

  • Experience with the DISN and other DOD Networks
  • Skilled in building extended cyber security analytics (Trends, Dashboards, etc.)
  • Demonstrated experience briefing Senior Executive Service (SES) and General Officer/Flag Officer (GO/FO) leadership
  • Experience in intelligence driven defense and/or cyber Kill Chain methodology
  • IAT Level III and IAM Level II+III Certifications

Similar jobs

Cyber Security Analyst

Technica CorporationSterling, VA· 1 mo ago
Information Technology$105k–$131k/yrapply on careers-technicacorp.icims.com

Cyber Security Analyst

Infinite Computer SolutionsOhio, United States· 1 mo ago
Information Technologyapply on sjobs.brassring.com

Cyber Security Analyst

North Dakota Information Technology (NDIT)North Dakota, United States· 6 days ago
apply on ndit.nd.gov

Cyber Security Analyst

HRConnectsNew Jersey, United States· 6 days ago
Information Technologyapply on hrconnects.com

Cyber Security Analyst

Boston Government Services, LLC (BGS)Knoxville Metropolitan Area· 3 wk ago
Information Technologyapply on workforcenow.adp.com