Cybersecurity Network Defense Analyst

$65,000 - $136,500/Yr

CACI International - San Antonio, TX

posted 2 months ago

Full-time - Mid Level
San Antonio, TX
Professional, Scientific, and Technical Services

About the position

CACI has an exciting and immediate opportunity for a Cybersecurity Network Defense Analyst to support the USAF Network Operations Security Center (NOSC). This position works on site and is a shift work position in a work center providing 24x7x365 support at Lackland Air Force Base in San Antonio, Texas. If you want to use your advanced IT skills to support national security then this is the job for you. You'll get to use leading edge technology as you sustain and defend the networks our Air Force warfighters use in the CENTCOM theater. In this role, you will assist other active duty personnel, government civilians, and contractors assigned to the same functional areas. Your responsibilities will include providing technical reports, meeting minutes, program plans, concepts of operations, contingency plans, and related documentation as identified for task deliverables. You will prepare and disseminate operational reports and support real-time monitoring of all assigned IPS/IPS deployed to support the mission. Monitoring network traffic to provide event correlations of operational traffic from multiple locations will be crucial to determining the network security posture. You will utilize standard/provided network tools to evaluate traffic for incident response analysis and coordinate and execute JTF-GNO Information Assurance Vulnerability Alert (IAVA) notices. Maintaining IDS/IPS devices, performing IDS/IPS Real-Time Monitoring Analysis, Network Event Correlation, Advanced Traffic Analysis, Incident Response & Analysis, and Vulnerability Analysis will be part of your daily tasks. Additionally, you will conduct Network Defense Training, support Standardization & Evaluation (Stan/Eval) activities, and prepare Network Defense Technical Reports. You will also be required to provide oral and written briefs, presentations, and professional reports to Government senior leaders and decision makers, and provide on-call support via cell phone after hours, on weekends, and holidays.

Responsibilities

  • Assist other active duty, government civilians, and contractors assigned to the same functional areas.
  • Provide technical reports, meeting minutes, program plans, concepts of operations, contingency plans, and related documentation as identified for task deliverables.
  • Prepare and disseminate operational reports.
  • Support real-time monitoring of all assigned IPS/IPS deployed and supporting the mission.
  • Monitor network traffic to provide event correlations of operational traffic from multiple locations to determine network security posture.
  • Use standard/provided network tools to evaluate traffic for incident response analysis.
  • Coordinate and execute JTF-GNO Information Assurance Vulnerability Alert (IAVA) notices.
  • Maintain IDS/IPS devices.
  • Perform IDS/IPS Real-Time Monitoring Analysis.
  • Perform Network Event Correlation/Advanced Traffic Analysis.
  • Perform Incident Response & Analysis.
  • Perform Vulnerability Analysis.
  • Perform IDS/IPS Sensor installation, configuration, and maintenance.
  • Provide IDS/IPS Database & VPN Technical Support.
  • Conduct Network Defense Training.
  • Support Standardization & Evaluation (Stan/Eval) activities.
  • Perform Operational Process Tracking and Processing.
  • Provide Systems and Exercise Planning support.
  • Prepare Network Defense Technical Reports.
  • Prepare and present oral and written technical communications.

Requirements

  • DoD TS/SCI Security Clearance
  • B.S. in related field, and 5 or more years' relevant IT experience; OR 7 or more years' relevant IT experience.
  • DoD 8570 CSSP-A Baseline Certification (CEH or equivalent)
  • Completion of additional Professional Certifications within 3 months of your start date to remain on the program.
  • MCP (Server) - proof of passing Microsoft Exam 98-365: Windows Server Administration Fundamentals will satisfy this requirement (or min. 3 yrs. Microsoft Server expertise)
  • Network+ CE or CCNA
  • ITIL Foundation
  • Extensive knowledge of network firewalls, computer, and server log analysis.
  • Extensive knowledge of digital evidence collection, handling, and security.
  • Experience with computer incident response and analysis and report dissemination.
  • Extensive knowledge and experience with network packet capture and analysis software such as WireShark (Ethereal) and Snort.
  • Experience with standard DoD network topology and DMZ boundary protection.
  • Experience with system analysis software (i.e. EnCase/EnCase Enterprise or FTK), software coding and debugging, and the virtual machine (VM) environment.
  • Experience with DoD/AF incident reporting processes.
  • Familiarity with NSA Threat Operations Center (NTOC) Attack, Sensing & Warning (AS&W) alerts and processing.
  • Knowledge and experience constructing, executing, and troubleshooting SQL DB queries.
  • Knowledge and experience with the DOD Centaur analysis system.

Nice-to-haves

  • Experience working in DoD, Air Force, and local base environments

Benefits

  • Continuing education credits
  • Health insurance

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service