Cyber Security Analyst Jr

The Cyber Security Analyst Jr supports a Civilian Agency Cyber Security Operations Center (SOC) organization protecting the network security of tens of thousands of users. The work site is located in Leesburg, Virginia.

The Cyber Security Analyst Jr responsibilities include:

• Report security incidents and/or network intrusions to Incident Handlers for dissemination to appropriate DOT points of contacts.
• Maintaining proficiency in the use and production of visualization charts, link analysis diagrams, and database queries.
• Cyber Security Analyst Jr must provide recommendations based on best practice and experience to develop processes that will enhance efficiencies needed to perform the above.
• Analyze and report cyber threats as well as assist in deterring, identifying, monitoring, investigating and analyzing computer network intrusions.
• Assist in producing status reports and briefs to senior leadership; provide analysis for correlated information sources.
• Contribute to content creation, prioritize, rank and escalated incidents.
• Populate and maintain an intrusions database, and provide data analysis support; analyze data from sensors, network security devices and applications using the security information event management systems, log servers, application interfaces and device consoles provided.
• Provide liaison to other agency cyber threat analysis entities such as intra-agency and inter- agency Cyber Threat Working Groups.
• Any other duties as requested by the Contracting Officer Representative and SOC management.
• Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in cyber security operations.
• Provide support in the detection, response, mitigation, and reporting of cyber threats affecting client networks.
• Document of evidence of system security compromise, generate of trend reports, and collect evidence of malicious or anomalous activity.
• Support monitoring of all Information Assurance Devices (IADs) to identify and document all intrusions and attempted intrusions.
• Identify anomalous and malicious activity.

Required Education and Experience:

Education:

• Bachelor's degree
• OR
• Minimum six (6) years of relevant professional experience.

Experience:

• In addition to required education or equivalent experience;
• Must have experience conducting analysis at the packet level.
• Must have three (3) years experience network security analysis, using intrusion detection systems.
• Minimum six (6) years IT experience AND

Preferred Experience:

• Experience with Security Information Management Tools (ArcSight).
• CISSP and/or SANS/GIAC Certification (equivalent to two year experience).
• Experience with intrusion detection sensors.