Cyber Security Analyst

$104,000 - $145,600/Yr

TEKsystems - Honolulu, HI

posted about 2 months ago

Full-time - Mid Level
Honolulu, HI
Professional, Scientific, and Technical Services

About the position

TEKSystems is seeking a Cyber Security Incident Response Analyst to support a cleared position in the Department of Defense (DoD). This role requires a Secret security clearance, which will be upgraded to Top Secret. As a Cyber Security Analyst, you will be responsible for identifying, isolating, investigating, informing, and implementing measures to detect and protect data across a wide spectrum of sources and locations. Your primary duties will include validating suspicious events or reports to determine if they constitute an incident, ensuring that incidents are properly entered into the appropriate reporting system, and assessing the severity of each incident. In this position, you will maintain familiarity with CJCSM 6510.01B and compile and maintain internal standard operating procedure (SOP) documentation. You will ensure that all associated documentation and capabilities remain compliant with CJCSM 6510.01B and other applicable policy directives. Your responsibilities will also include providing network intrusion detection and monitoring, correlation analysis, incident response, and support for the Cybersecurity Service Provider (CSSP) and its subscriber sites. You will coordinate with JFHQ-DoDIN and supported entities regarding significant incidents to ensure proper analysis and timely reporting. The role requires you to provide 24x7 support for the CSSP's Incident Response capability during non-core business hours as needed. You will perform network and host-based digital forensics on Microsoft Windows-based systems and other operating systems to enhance response to significant network incidents. A working knowledge of full packet capture (PCAP) analysis and tools such as Wireshark is essential. You will explore patterns in network and system activity via log correlation using Splunk and other supplemental tools, and you should possess an understanding of IDS/IPS solutions, including signature development and implementation. Participation in program reviews, product evaluations, and onsite certification evaluations will also be part of your duties.

Responsibilities

  • Identify, isolate, investigate, inform, and implement measures to detect and protect data.
  • Validate suspicious events or reports to determine if they constitute an incident.
  • Ensure incidents are properly entered into the appropriate reporting system and assess their severity.
  • Maintain familiarity with CJCSM 6510.01B and compile internal standard operating procedure (SOP) documentation.
  • Provide network intrusion detection and monitoring, correlation analysis, and incident response support for the Cybersecurity Service Provider (CSSP).
  • Coordinate with JFHQ-DoDIN and supported entities regarding significant incidents for proper analysis and reporting.
  • Provide 24x7 support for the CSSP's Incident Response capability during non-core business hours as needed.
  • Perform network and host-based digital forensics on Microsoft Windows and other operating systems.
  • Conduct full packet capture (PCAP) analysis and utilize tools like Wireshark.
  • Explore patterns in network and system activity via log correlation using Splunk and other tools.
  • Understand IDS/IPS solutions, including signature development and implementation.
  • Participate in program reviews, product evaluations, and onsite certification evaluations.

Requirements

  • 4+ years of experience in a Cybersecurity Service Provider (CSSP) environment or similar experience.
  • Must possess a valid Top Secret clearance or be eligible for upgrade from Secret.
  • IAT Level II certification is required.

Nice-to-haves

  • Certifications such as CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP, CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP.
  • CSSP certifications like CEH, CFR, CCNA Cyber Ops, CCNA-Security, CySA+, GCIA, GCIH, GICSP, Cloud+, SCYBER, PenTest+, SSCP, CHFI, CFR, CND, CCNA-Security, GCFA, CISA, GSNA, CISM, CISSP, CCISO.

Benefits

  • 401(k)
  • AD&D insurance
  • Commuter assistance
  • Dental insurance
  • Disability insurance
  • Employee assistance program
  • Health insurance
  • Vision insurance
  • Life Insurance (Voluntary Life & AD&D for the employee and dependents)
  • Short and long-term disability
  • Health Spending Account (HSA)
  • Transportation benefits
  • Time Off/Leave (PTO, Vacation or Sick Leave)
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service