Network Security Specialist

May 10, 2019
Oct 29, 2019
Full Time
AboutWeb, LLC is looking for several Network Security Specialists to support our Federal Client in the Northern Virginia area.

Responsibilities Include:
  • Technical analysis of network activity; the analyst monitors and evaluates network event data, signature-based IDS events and full packet capture (PCAP) data
  • Triage IDS alerts; collect related data from various network analysis systems, review available open and closed source information on related threats & vulnerabilities, prepare initial summary reports
  • Analyze network flow data for anomalies and to correlate reporting with enterprise-wide network activity
  • Document key event details and analytic findings in an incident management system
  • Provide oversight and assessment of incident response and triage actions across a large enterprise
  • Identify & extract network indicators from incident reporting and published technical advisories/bulletins
  • Perform incident correlation & escalation
  • Recommend new IDS signatures and detection strategies
  • Produce final reports and review incident reports from other analysts
  • Assess cyber indicators/observables and collaborate in the development of IDS signatures and detection mechanisms
  • Provide technical assessments of cyber threats and vulnerabilities
  • Fuse open-source threat & vulnerability information with data collected from sensors across the enterprise
  • Develop, maintain and update standard operating procedures
  • Provide routine status updates for ongoing projects, trouble tickets, incidents, and other related tasks
  • Research and evaluate emerging capabilities
  • Ensure that all alerts are monitored, interpreted, analyzed, and investigated
  • Utilize external reporting tools for threat intelligence
  • Monitor all security-relevant logs and alerts for signs of compromise, attack, or system misuse and policy violations
  • Innovate new methods to use existing tools and data sources, and identify and obtain new data sources, to detect cyber intrusions
  • Provide programmatic oversight to support operational procedures, policy, emergency response, international information share, administrative oversight, and Government-industry organizational requirements and effective readiness posture
  • Manage project tasks, expenditures, documentation and maintenance of procedures, and position staffing including surge and specialized roles
  • Coordinate on-going mission support for Watch Operations in accordance with customer guidelines. Work with Government management to ensure an effective and efficient cyber incident management system for a Federal government customer
  • Provide oversight of the project and deliverables in direct support of the customer's operational information systems, including analysis, integration, and training

Requirements that candidates will be evaluated against:
  • Bachelor's Degree in Cyber Security, Information Technology or a related discipline
  • 15-20 Years of IT and Networking related experience with a Bachelor's Degree
  • Active Top Secret Security Clearance
  • Experience in planning and/or directing projects/operations in a 24x7 SOC
  • Experience providing metrics and reports from a SIEM
  • Demonstrated proficient knowledge of industry standards and best practices within Intrusion Detection
  • Experience with researching and fielding new and innovative technology
  • Experience managing IT systems
  • Excellent written and oral communication skills
  • Must be a team player, proactive, and possess excellent problem solving and organizational skills

Preferred Qualifications or Skills:
  • DODD 8570 Level II certification (SANS certifications, CISSP)
  • Experience leading and managing within SOC/NOC operations
  • Familiarity with Kill Chain for incident response
  • Familiarity with malware analysis
  • Familiarity with forensics
  • Familiarity with incident response products and best practices
  • Experience with database (e.g. MS Access, SQL) and/or portal administration (e.g. SharePoint)
  • Customer service experience
  • Ability to produce results in a fast-paced environment with the ability to meet iterative deadlines

Similar jobs