BaltimoreRecruiter Since 2001
the smart solution for Baltimore jobs

Cyber Defense Analyst Level 2

Company: IntelliGenesis LLC
Location: Savage
Posted on: June 12, 2021

Job Description:

Maximize your potential with IntelliGenesisIntelliGenesis LLC has supported Department of Defense and Intelligence Community customers for over thirteen years by providing next generation capabilities for: Offensive & Defensive Cyber Services, National Security Cyber Training, Data Science & Decision-Making Analytics, Intelligence Analysis, and Intelligence Solutions Engineering.IntelliGenesis offers an extremely competitive and generous benefits package that provides employees with both professional and personal satisfaction and growth while keeping focus on supporting the mission. Additionally, our employees enjoy a company culture that emphasizes the importance of family and work/life balance. Our benefits include: Medical, Dental and Vision Insurance, 25 days of PTO with the option to purchase up to an additional 5 days, 12 paid holidays, up to 10% 401k m atch, Annual Individual Technology Budget, Unlimited Education/Training Reimbursements, and much moreWe are currently seeking a Cyber Defense Analyst Level 2 Job DutiesUses information collected from a variety of sources to monitor network activity and analyze it for evidence of anomalous behavior.Identifies, triages, and reports events that occur in order to protect data, information systems, and infrastructure.Finds trends, patterns, or anomaly correlations utilizing security-relevant data.Recommends proactive security measures. Conducts analysis to isolate indicators of compromise.Notify designated managers, cyber incident responders, and cybersecurity service provider team member of suspected cyber incidents and articulate the event's history, status, and potential impact for further action in accordance with the organization's cyber incident response plan.Required Skills:US Citizens OnlyActive TS/SCI Clearance and Polygraph requiredMinimum of four (4) years of demonstrated experience as CDA in programs and contracts of similar scope, type, and complexity required. A technical bachelor's degree from an accredited college or university may be substituted for two (2) years of CDA experience on projects of similar scope, type, and complexityOne (1) year of demonstrated and practical experience in TCP/IP fundamentalsOne (1) year of demonstrated experience with tcpdump or WiresharkTwo (2) years of demonstrated experience using security information and event management suites (such as Splunk, ArcSight, Kibana, LogRhythm)Two (2) years of demonstrated experience in network analysis and threat analysis software utilizationRequires DoD 8570 compliance with CSSP Analyst baseline certification, Information Assurance Technical (IAT) Level I or Level II certification, and Computing Environment (CE) certificationPrior demonstrated experience in the use of software applications and databases associated with network analysis and target developmentUse cyber defense tools to monitor, detect, analyze, categorize, and perform initial triage of anomalous activity Generate cybersecurity cases (including event's history, status, and potential impact for further action) and route as appropriateLeverage knowledge of commonly used network protocols and detection methods to defend against related abuses Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation) Perform advanced manual analysis to hunt previously unidentified threats Conduct PCAP analysis Identify cyber-attack phases based on knowledge of common attack vectors and network layers, models and protocolsApply techniques for detecting host- and network-based intrusionsWorking knowledge of enterprise-level network intrusion detection/prevention systems and firewall capabilitiesUnderstand the foundations of a hardened windows network and what native services and protocols are subject to abuse (such as RDP, Kerberos, NTLM, WMI, and SMB)Familiarity with fragmentation of network traffic and how to detect and evaluate fragmentation related attacks in raw packet capturesConduct network - traffic, protocol and packet-level - and netflow analysis for anomalous values that may be security-relevant using appropriate tools (such as Wireshark, tshark, tcpdump)Understand snort filters and how they are crafted and tuned to feed IDS alertingUnderstand system and application security threats and vulnerabilities to include buffer overflow, SQL injection, race conditions, covert channel, replay and return-oriented attacks, malicious code and malicious scriptingAnalyze malicious activity to determine weaknesses exploited, exploitation methods, effects on system and informationPerform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attackFamiliar with indications of Command and Control (C2) channels and what strategies attackers use to bypass enterprise defenses from a compromised hostIntelliGenesis, LLC is an EOE M/F/D/V

Keywords: IntelliGenesis LLC, Baltimore , Cyber Defense Analyst Level 2, Other , Savage, Maryland

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest Maryland jobs by following @recnetMD on Twitter!

Baltimore RSS job feeds