Crystal Management - Reston, VA
posted 4 months ago
CMIT is seeking a motivated, career and team-oriented cybersecurity data engineer in support of the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) Continuous Diagnostic & Mitigation (CDM) Data Services Program. The CDM Data Services Program is a critical component of CISA's national effort to ensure the defense and resilience of cyberspace. The mission of the CDM Data Services Program is to provide a standardized platform to collect, transform, and integrate cybersecurity data from relevant authoritative data sources into a coherent data set, delivering actionable information into Agency and Federal Dashboards to identify risk areas in support of mitigation as well as to facilitate coordinated agency and national response to cyber-threats. As a Journeyman NOSC Operations Analyst, you will play a key role in ensuring the availability, integrity, and confidentiality of critical government systems and networks through network operations and security monitoring activities. This position involves conducting real-time monitoring of network traffic within the NOSC to identify potential security events or incidents, performing in-depth analysis of logs and alerts, and leading incident response efforts by coordinating with internal teams and external stakeholders. You will also develop and execute containment, eradication, and recovery strategies to mitigate the impact of security incidents, monitor the availability and performance of applications and infrastructure systems, and provide Tier 2 support for complex technical issues. In addition, you will be responsible for conducting advanced analysis of security events, investigating potential advanced persistent threats (APTs), and developing security monitoring use cases to improve detection capabilities. Effective communication with stakeholders, preparing comprehensive incident reports, and contributing to the enhancement of security monitoring processes are also key aspects of this role. This is a remote position where the candidate can work from any location within the United States, provided they are able to work on an eastern time zone schedule.