RockvilleMDRecruiter Since 2001
the smart solution for Rockville jobs

Cyber Security Analyst III - Incident Response SME III

Company: General Dynamics Information Technology
Location: Rockville
Posted on: November 20, 2020

Job Description:

REQ RQ62938 Travel Required Less than 10 Requisition Type Regular We are GDIT. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that's important. GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being trusted to deliver your best every day. We think. We act. We deliver. There is no challenge we can't turn into opportunity. At GDIT, people are our differentiator. In this role, you will be a SME responsible for security response to viruses and other potentially catastrophic incidents in customer environments that could be significant security risks. Supports and mentors other analysts who support the incident response functions for the Security Operations Center.In this position the successful candidate Communicate and coordinate incident response efforts. Analyze reports to understand threat campaign(s) techniques, lateral movements and extract indicators of compromise (IOCs). Act as the SME and technical lead for all incidents. Carefully document the outcome and lessons learned for all incidents. Prepare metrics and reports for executive review during and after resolution of any Cyber Incidents. Coordinate and work closely with legal, HR and law enforcement. Prepare and process security policy violations discovered from incidents. Provides technical support on post event network security logs and trend analysis. Recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analysis of relevant event detail and summary information. Ensure the integrity and protection of networks, systems, and applications through monitoring of security devices. React to customers escalations. Identify, analyze, and document actions taken by malicious actors. Determine sophistication, priority, and threat level of identified malware. Examine media and malware analysis reports and operational reporting from incidents to correlate similar events, tradecraft, and TTPs of malicious activity. Conduct log and system analysis for various system, and network and security devices. Experience working within a wide range of environments to include Linux, UNIX, Windows in addition to a strong understanding of networking, the OSI model, and TCPIP protocols. Familiarity with Federal and DoD security standards such as NIST, DCID, CNSS and DoD 8500. Experience in implementation of ITIL practices and ISO 2700 family of standards. Skills Proven team player with excellent oral and written communications skills. Capable of working on projects independently and possess strong organizational skills. Very strong communications skills and analytical aptitude with the ability to express technical concepts effectively, both verbal and in written form Comprehensive knowledge APT actors their tools, techniques, and procedures (TTPs) Knowledge of TCPIP communications knowledge of how common protocols and applications work at the network level, including DNS, HTTP, and SMB Expert knowledge of the Windows file system, registry functions and memory artifacts andor expert knowledge of UnixLinux file systems and memory artifacts Advanced Microsoft Office skills SharePoint, PowerPoint, Excel, Outlook, and Word The position requires a sense of urgency and ownership. Working knowledge of network infrastructure, cloud computing and security monitoring tools. Ability to learn new technologies and apply that knowledge to daily workflows. Attention to detail, organized and able to work and research independently. Demonstrated adaptability, analytical and problem-solving, and attention to detail. Experience managing cases with enterprise SIEM or Incident Management systems Familiarity with Federal and DoD security standards such as NIST, DCID, CNSS and DoD 8500. Experience in implementation of ITIL practices and ISO 2700 family of standards. Computer networking fundamentals (i.e., basic computer components of a network, types of networks, etc.) and Network traffic analysis methods. Working knowledge of Windows and Linux OS to include experience working in the command line interface. Knowledge of IPSIDS, Experience managing cases with enterprise SIEM systems (e.g. LCE, ArcSight, Splunk) and other network security tools. Experience reviewing and analyzing network packet captures. Knowledge of information security event monitoring and detection and incident response Cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks) Attack methods and techniques (DDoS, brute force, spoofing, etc.). Experience with Vulnerability assessment tools such as NESSUS Experience with Intrusion Detection Systems and Intrusion Protection Prevention (IDS or IPS) - understanding the functionality and deployment configuration and analysis Qualifications and Education BS or equivalent 5 yrs related experience, or MS 3 yrs experience in a technically related field OR equivalent related work experience. Information Security certification required. Security certifications may include, but not be limited to CISSP, CASP, Security, GSEC, CISA, CISM, GSEC and CEH. Experience Certification in project management. Previous experience on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC) (required) Minimum at 2 years of in a multi-tenant SOC or Incident Response company (other related fields may be acceptable at discretion of hiring manager) Strong research background. Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy. (a plus, not required) We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done. GDIT is an Equal OpportunityAffirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

Keywords: General Dynamics Information Technology, Rockville , Cyber Security Analyst III - Incident Response SME III, Other , Rockville, Maryland

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Other Other Jobs


Cloud Hosting Systems Engineer
Description: Business Group Highlights br br br Responsibilities br br Selected candidate will provide Systems Engineering and Technical Assistance SETA with a focus on Cloud Hosting programs supporting (more...)
Company: Perspecta
Location: Chantilly
Posted on: 12/3/2020

CDL-A Team Truck Drivers
Description: LIMITED TIME U.S. Xpress is offering great Dedicated Openings for CDL A Team Drivers NEW 12,000
Company: U.S. Xpress
Location: Leesburg
Posted on: 12/3/2020

Senior Windows Systems Engineer (TS/SCI FS Poly)
Description: Calling all Senior Windows Systems Engineers TSSCI FS Poly This Jobot Job is hosted by Mordy Ornguze Are you a fit Easy Apply now by clicking the Apply Now button and sending us your resume. Salary (more...)
Company: Jobot
Location: Chantilly
Posted on: 12/3/2020


CDL-A Flatbed Owner Operator Truck Driver- Same Day Pay
Description: CDL-A OTR Owner Operator Truck Driver Jobs Grow your CDL-A business with flatbed, step deck amp heavy haul routes At Bennett Motor Express, we know there's nothing more important than family. (more...)
Company: Bennett Motor Express
Location: Leesburg
Posted on: 12/3/2020

GEOINT Transport Integrator
Description: Business Group Highlights br br IntelligenceThe Intelligence group provides high-end systems engineering and integration products and services, data analytics and software development to national (more...)
Company: Perspecta
Location: Chantilly
Posted on: 12/3/2020

Readiness Systems Integrator - Sensor Projects
Description: Business Group Highlights br br IntelligenceThe Intelligence group provides high-end systems engineering and integration products and services, data analytics and software development to national (more...)
Company: Perspecta
Location: Chantilly
Posted on: 12/3/2020

Guest Experience Specialist
Description: Job Number 20064926Job Category Rooms and Guest Services OperationsLocation Courtyard Dulles Airport Chantilly, 3935 Centerview Drive, Chantilly, Virginia, United States VIEW ON MAPBrand Courtyard by (more...)
Company: Marriott
Location: Chantilly
Posted on: 12/3/2020

LTL Regional CDL-A Truck Driver Jobs
Description: Ambassadors Wanted: Get Home Weekly Ashley Distribution Services LTD, voted one of America's best companies to drive for, is now hiring CDL-A truck driving professionals for LTL Regional opportunities. (more...)
Company: Ashley Distribution Services
Location: Leesburg
Posted on: 12/3/2020

CDL-A Experienced Flatbed Truck Driver
Description: FLATBED CDL-A TRUCK DRIVER JOBS Average .65 CPM With Boyd Bros. The best flatbed truck driver jobs are right here at Boyd. Bros- the
Company: Boyd Bros Transportation
Location: Leesburg
Posted on: 12/3/2020

Systems Engineer-TS/SCI REQUIRED
Description: Description Job Description Leidos is seeking candidates for an exciting Identity Access Management IdAM program in the Chantilly, VA market. We are looking for motivated Systems Engineers to provide (more...)
Company: Leidos
Location: Chantilly
Posted on: 12/3/2020

Log In or Create An Account

Get the latest Maryland jobs by following @recnetMD on Twitter!

Rockville RSS job feeds