ISYS Technologies, Inc.

  • Cyber Intel Analyst

    Job Locations US-MD-Rockville
    Job ID
    10206
  • Minimum Clearance Required

    Top Secret

    Responsibilities

    Functional Responsibilities:

                                                                                   

          ISYS Technologies is hiring a Cyber Intel Analyst. The analyst will perform cyber threat and vulnerability intelligence analysis, correlate actionable security events, perform network traffic analysis using various log and data sources, including raw packet data, netflow, IDS, IPS, and custom sensor output as it pertains to the cyber security of communication networks.  The Analyst will also participate in the coordination of resources during incident response events and utilize their knowledge to inform effective, durable countermeasures.

     

     

     

     

    Job Duties:

    • Perform analysis on relevant network defense data from various sources to establish the timeline of events associated with both attempted and successful network intrusions.
    • Maintain a high level of situational awareness, and leverage existing understanding of threats to prioritize analysis
    • Inform countermeasures through identification of new tactics, techniques, and procedures used by threat actors
    • Mentor junior analysts
    • Support the development of analytical procedures and advanced detection and correlation content to meet changing requirements, and continue evolution towards a threat-focused Defensive Cyber Operations (DCO) strategy
    • Support the refinement of SIEM reports to track trends and demonstrate countermeasure effectiveness

     


     

     

     

     

    Qualifications

    Experience Requirements:

     

    • 8570 IAT Level 2 certification (Security+, CCNA-Security, or equivalent) w/ the ability to obtain CND-A certification w/in 180 days of start date
    • CND experience (Protect, Detect, Respond, and Sustain) within a Computer Incident Response organization
    • Demonstrated understanding of the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures
    • Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
    • Demonstrated hands-on experience analyzing high volumes of logs, network data (e.g. Netflow, FPC) and other attack artifacts in support of incident investigations
    • Demonstrated commitment to training, self-study and maintaining proficiency in the technical cyber security domain.
    • Willing to perform shift work
    • Motivated self-starter with strong written and verbal communication skills and the ability to create complex technical reports on analytic findings

     

     

     

     

     

     

     

     

     

    Desired Experience:

     

    • Experience w/ DoD Networks
    • In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform
    • Experience and proficiency with any of the following: Anti-Virus, HIPS, IDS/IPS, FPC, Host-Based Forensics, Network Forensics
    • Unix/Linux command line experience
    • Scripting and programming experience
    • Familiarity or experience in Intelligence Driven Defense and/or the Cyber Kill Chain methodology
    • Advanced certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP and/or SIEM-specific training and certification.
    • Experience and proficiency with any of the following: Anti-Virus, HIPS, IDS/IPS, FPC, Host-Based Forensics, Network Forensics
    • Unix/Linux command line experience
    • Scripting and programming experience
    • Advanced certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP and/or SIEM-specific training and certification

     

     

     

     

     

     

    Clearance:

    • Top Secret with SCI Eligibility

     

     

    Essential Requirements - Physical Demands: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job with or without reasonable accommodation.

    While performing the duties of this job, the employee will regularly sit, walk, stand and climb stairs and steps. May require walking long distance from parking to work station. Occasionally, movement that requires twisting at the neck and/or trunk more than the average person, squatting/ stooping/kneeling, reaching above the head, and forward motion will be required. The employee will continuously be required to repeat the same hand, arm, or finger motion many times. Manual and finger dexterity are essential to this position. Specific vision abilities required by this job include close, distance, depth perception and telling differences among colors. The employee must be able to communicate through speech with clients and public. Hearing requirements include conversation in both quiet and noisy environments. Lifting may require floor to waist, waist to shoulder, or shoulder to overhead movement of up to 20 pounds. This position demands tolerance for various levels of mental stress.

     

    ISYS Technologies is an Engineering and Information Technology Company focused on providing Services to the Federal and State Government. ISYS offers a competitive compensation program and comprehensive benefits package to our employees including Health/Dental/Vision/PTO and more. ISYS Technologies is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or status as a protected veteran.

     

    US Citizenship is required.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed