Peregrine Technical Solutions is a subsidiary of Goldbelt, Inc., an 8(a) Alaska Native Corporation that provides expertise in Information Assurance, Computer Forensics and Cyber Warfare. Peregrine is in search of a Computer Network Defense Analyst to work onsite in Quantico, VA. Tasks include IDS/firewall placement and configuration support and network security monitoring: Responsible for traffic analysis, vulnerability scanning, Incident Response, wireless scanning, Host Based Security System (HBSS), Information Assurance Vulnerability Management program, Network Access control, insider threat support, web content filtering, data at rest and various cyber security application/tools installed on servers and workstations, may include maintenance and upkeep of the server or workstation. Job Duties: Analyze impact of firewall configurations. Review logs to include but not limited to servers, firewalls, web proxy, and infrastructure devices. Identify violations of internet access by reviewing web content filtering logs in accordance with DCSA policy, DoD policy, and CND SOPs. Identify and report incidents that involve email to include but not limited to phishing, malware, and spillage. Develop and maintain SOPs for security monitoring. Provide daily reports on key indicators of network security as provided by DCSA net defender SOP. Generate reports showing specific types of incidents. Make recommendations for systemic, policy or procedural changes in order to mitigate specific risks. Support security incident reporting on all network computer security incidents and spillages. Analyze Endpoint Security Solutions (ESS) log data to determine potential threats. Analyze ESS log data to determine rogue systems. Analyze ESS logs to determine infected systems. Analyze ESS logs to identify systems that had unauthorized USBs connected to them. Analyze ESS logs to determine unauthorized system changes. Develop and maintain SOP for ESS Continuous Monitoring. Daily, review or user activity discovered by CND network monitoring tools. Develop lists of indicators and triggers of insider threat Activity. Develop SOPs guides outlining the thresholds for referrals to DSS insider threat Working Group. Make recommendations for systemic, policy or procedural changes in order to mitigate vulnerabilities found. Job Responsibilities: Must meet DoD 8570.01-M IAT Level II and CNDSP Analyst requirements. Associates Degree in Information Technology, Information Systems Management, Cyber Security, or equivalent experience. At least 3 years hands-on technical cybersecurity experience and knowledge of Computer Network Defense concepts, DISA Security Technical Information Implementation Guides, DoD A&A Process, NIST SP 800-53, NIST SP 800-61, CJCSM 6510.01 B, United States Cyber Command guidelines, and other applicable DoD Cyber Security and Computer Network Defense policies. Should possess an active TS clearance or have a Secret clearance with eligibility for an Interim TS