• Senior Incident Response Analyst

    Job ID
    2018-3441
    Experience (Years)
    7
    Security Clearance
    TS/SCI
    Location
    US-DC-
  • Job Description

    NetCentrics provides the Department of Defense, Department of Homeland Security and other federal agencies with leading IT services including IT Strategy, mission applications, infrastructure and platform services, cloud solutions, service delivery and cybersecurity.

     

    NetCentrics is looking for an experienced Senior Incident Response Analyst to support our team in Washington, D.C. This position is open to candidates who have a Top Secret clearance/SCI and pass CI Poly prior to starting.


    Specific duties include:

    • Provide situational awareness and readiness reporting for the customer program leadership.
    • Support coordination and information collection related to incidents, investigations, Task Orders, and other communications within DOD and DHS.
    • Performs Computer Security Incident Response activities for a large organization, coordinates with other government agencies to record, escalate and report incidents.
    • Monitor and analyze Intrusion Detection Systems (IDS) to identify security issues for remediation.
    • Recognizes potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.
    • Maintain IDS signatures and policies.
    • Be able to modify/add custom IDS policies and signatures to account for lack of monitoring in threat areas as warranted by threat changes, such as zero-day attacks. This includes the use of Sourcefire rules.
    • Identify misuse, malware, or unauthorized activity on monitored networks. Analyze and solve problems related to network, system, forensic and malware analysis.
    • Evaluate firewall change requests and assess organizational risk.
    • Assists with implementation of counter-measures or mitigating controls.
    • Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices.
    • Initiate computer incident handling procedures to isolate and investigate potential network information system compromises.
    • Prepares incident reports of analysis methodology and results.
    • Ensure documentation is updated and maintained.

    Requirements:

    • Travel from DC to Virginia will be required as necessary.
    • Demonstrate expert-level knowledge of DOD and industry accepted policies, standards, best practices, and regulations related to Cyber Security CND
    • Experience with SEIM solutions, Log collection analytics, Host base IDS/IPS (endpoint security), and Email security, Web security
    • Knowledge of industry accepted standards and best practices related to incident response operations.
    • Demonstrate basic analytical and problem solving skills related to network, system, forensic and malware analysis.
    • Basic analysis of PCAP data and packet reconstruction
    • Experience with security technologies including Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls & Log Analysis, Security Event and Incident Management (SEIM), Antivirus, Network Packet Analyzers, Security Systems Manager, malware analysis, forensics tools, and reverse engineering.
    • Demonstrated knowledge in information technologies to include computer hardware and software, operating systems, and networking protocols.
    • Experience with Linux and Windows operating systems.
    • Knowledgeable on computer evidence seizure, computer forensic analysis, development and/or analysis, interpretation, and compliance with federal and agency IT security policies and regulations.
    • Clearance: Must have a Top Secret clearance/SCI and CI Poly 
    • Education/Years of Experience:Must have 7 years of relative experience and BS degree.
    • Certifications: Must be IAT III and CND A compliant (CISSP/CASP, CEH) 
    • Shift Hours: 9am-6pm Mon-Fri with some holiday/weekend as needed
    • As a contingency to employment at NetCentrics, all candidates who are given offers must successfully pass a full background investigation including criminal history, education and employment verifications

     **In order to be considered for this position, you must apply directly through our careers site**

     

    NetCentrics is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed