Job Title Cyber Security Analyst MUST HAVE SPLUNK EXP. Location Washington, DC Type of Employment Full Time Salary DOE + full benefits Clearance Type Active Top Secret Job Overview The Cyber Security Analyst, analyzes and defines security requirements for a variety of computer and telecommunications issues. Designs, develops, engineers, and implements solutions to requirements. Gathers and organizes technical information about an organization's mission goals and needs, existing security products, and ongoing programs. Performs risk analyses including risk assessment. Develops, analyzes, and implements security architecture(s) as appropriate. Job Responsibilities Participate in meetings and working groups with program partners to gather data and execute preparation of validation assessment activities, as required Perform in-depth security assessment scans and activities on various information systems to identify risks and remediation s of strategies of security issues Review systems to identify potential security weaknesses, recommend improvements to amend vulnerabilities, implement changes and document upgrades Provide support to the following ITIA policies and procedures vulnerability management NIST Certification and Accreditation processes IT security principles, concepts, practices, products and services implementing, mitigating improving, and disseminating IT security tools and procedures. Handle log reviews, in some capacity Required SkillsQualifications 5 years + of Information Technology focused on IT Security Nationally recognized IT Security Certification (CISSP, CEH, Security+) is a plus 2-3 years Hands on, demonstrable technical experience in Splunk and Splunk Enterprise Security application Demonstrable knowledge of Splunk Processing Language (SPL), Splunk Indexer, Splunk Forwarder, Splunk Notable Events, Demonstrable knowledge of building Splunk search queries Solid understanding of secure enclave, DMZ, VLANs, and network segregationsegmentation concepts Hands on technical experience with and knowledge of Windows and Linux operating system GUI and command line Solid understanding of server hardening and secure build concepts Previous experience as a Security Operation Center analyst highly desirable Experience with Cisco ASA and Juniper Firewalls and IDSIPS systems Technical Understanding of Firewall rulesAccess Control Lists (ACL) A bachelor s degree from an accredited college and six years of related work experience Knowledge of IPSIDS deployments such as signature or anomaly basedinline or promiscuous modes o Vulnerability Management Tools. o Experience with Nessus scanner o Endpoint protection technologies and techniques o Access control methodologies (MAC, DAC. RBAC) o Identity and access management (IAM) solutions o Microsoft Active Directory (security concepts) o NIST RMF o Security Content Automation Protocol (SCAP) o Penetration testing of applications and infrastructure o Social engineering o Forensics including the investigation and analysis of how and why a breach or other compromise occurred o Troubleshooting technical knowledge to recognize the root cause of a problem o DLP (Data Loss Prevention), AV (Anti-Virus) and anti-malware an understanding of the tools used to protect the organization o Web application firewalls and intrusion prevention o TCPIP, computer networking, routing and switching an understanding of the fundamentals the language, protocol and functioning of the internet Prior experience serving the Federal Government Excellent interpersonal and communication skills Self-starter, detail oriented, results driven, ability to understand complex network designs Ability to multi-task in a fast-paced environment Team player who is flexible and delivery-oriented