Cybersecurity Analyst Intern
$46,800 - $84,600/Yr
Leidos - Scott Air Force Base, IL
posted 24 days ago
Full-time - Intern
Scott Air Force Base, IL
Professional, Scientific, and Technical Services
About the position
The Cybersecurity Analyst intern position at Leidos is part of the Digital Modernization Group, specifically supporting the Global Solutions Management - Operations II (GSM-O II) contract. This role involves providing onsite support at Scott AFB, Illinois, focusing on the Operations, Sustainment, Maintenance, Repair, and Defense of the Defense Information System Network (DISN) within the DOD Information Network (DODIN). The intern will engage in cyber threat intelligence analysis, network traffic analysis, and incident response coordination, contributing to the cybersecurity of communications networks.
Responsibilities
- Review DoD and open-source intelligence for threats.
- Identify Indicators of Compromise (IOCs) and integrate those into sensors and SIEMs.
- Triage alerts to identify malicious actors on customer networks.
- Complete moderate-level cyber analysis of potential events.
- Report incidents to customers and USCYBERCOM.
- Create complex technical reports on analytic findings.
Requirements
- Current enrollment in an Associate's, Bachelor's or Master's program in Cybersecurity or related discipline.
- Excellent written/verbal skills with the ability to interpret and author well-formed documents.
- Demonstrated commitment to training, self-study and maintaining proficiency in the technical Cybersecurity domain.
- Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
- Understanding of Anti-Virus, HIPS, ID/PS, Full Packet Capture, Host-Based Forensics, Network Forensics.
- Familiarity or knowledge of malware analysis concepts and methods.
- Familiarity or knowledge of Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATTACK framework.
- Ability to obtain a Secret clearance is required to start.
- Must be a US Citizen to qualify.
Nice-to-haves
- Security+ Certification
- Academic knowledge of CND domains (Protect, Detect, Respond and Sustain).
- Understanding of Computer Incident Response organization or Security Operations Center.
- Familiarity of an enterprise SIEM platform like Splunk or Elastic.
- Unix/Linux command line experience.
- Scripting and programming experience.
Benefits
- Internship experience in a leading defense and technology company.
- Opportunity to gain hands-on skills in Cybersecurity.
- Potential for full-time employment upon graduation.
