Cybersecurity Analyst Intern

$44,850 - $81,075/Yr

Leidos - Whitehall, OH

posted about 2 months ago

Full-time - Intern
Whitehall, OH
Professional, Scientific, and Technical Services

About the position

The Digital Modernization Group at Leidos is seeking a Cybersecurity Analyst intern to join the Global Solutions Management - Operations II (GSM-O II) contract. This contract is focused on the Operations, Sustainment, Maintenance, Repair, and Defense of the Defense Information System Network (DISN) within the Department of Defense Information Network (DODIN), supporting the Defense Information Systems Agency (DISA). The position is based in Columbus, OH, and requires onsite support. As a part of the GSM-O team, the intern will contribute to the Cybersecurity/Network Assurance team, engaging in various cybersecurity tasks and responsibilities. In this role, the intern will perform cyber threat intelligence analysis, correlate actionable security events, and conduct network traffic analysis using raw packet data, net flow, Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), and custom sensor outputs. The intern will also participate in coordinating resources during incident response efforts, ensuring that the cybersecurity of communications networks is maintained effectively. This position is ideal for highly motivated candidates who are eager to learn and grow within the cybersecurity field, particularly in a defense and national security context. The intern will be expected to leverage their academic knowledge in cybersecurity and may have prior internships or personal projects that provide hands-on experience. The role will involve reviewing Department of Defense (DoD) and open-source intelligence for threats, identifying Indicators of Compromise (IOCs), triaging alerts to detect malicious actors, and reporting incidents to customers and USCYBERCOM. This internship offers a unique opportunity to gain practical experience in a critical area of national security and defense.

Responsibilities

  • Review DoD and open-source intelligence for threats.
  • Identify Indicators of Compromise (IOCs) and integrate those into sensors and SIEMs.
  • Triage alerts to identify malicious actors on customer networks.
  • Complete moderate-level cyber analysis of potential events.
  • Report incidents to customers and USCYBERCOM.

Requirements

  • Current enrollment in an Associate's, Bachelor's, or Master's granting program in Cybersecurity or a relevant discipline is required for consideration.
  • Motivated self-starter with strong written/verbal skills with the ability to create complex technical reports on analytic findings.
  • Demonstrated commitment to training, self-study, and maintaining proficiency in the technical Cybersecurity domain.
  • Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.
  • Understanding of any of the following: Anti-Virus, HIPS, ID/PS, Full Packet Capture, Host-Based Forensics, Network Forensics.
  • Familiarity or knowledge of malware analysis concepts and methods.
  • Familiarity or knowledge of Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATTACK framework.
  • Ability to think critically when analyzing alerts.
  • Ability to obtain a Secret clearance to start (selected candidates will be sponsored for required clearance).
  • Must be a US Citizen to qualify.
  • Must have own transportation to enter work facility (near Columbus Ohio).

Nice-to-haves

  • Security+ and/or CySA+ certifications
  • Academic knowledge of CND domains (Protect, Detect, Respond and Sustain).
  • Understanding of Computer Incident Response organization or Security Operations Center.
  • Familiarity with an enterprise SIEM platform like Splunk or Elastic.
  • Unix/Linux command line experience.
  • Scripting and programming experience.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service