Cyber/Indications and Warnings Analyst

Employer
SSATI (Sensible Solutions and Technology)
Location
Annapolis, MD
Posted
Feb 15, 2021
Closes
Feb 24, 2021
Ref
1750512946
Function
Analyst
Hours
Full Time
Cyber/Indications and Warnings Analyst, Clearance Required - TS/SCI w/Polygraph Please note, this position requires all candidates to currently possess an active Top-Secret SCI Clearance with a Polygraph. This position is not an opportunity to be sponsored or nominated for a government security clearance. The Challenge: We encode mission critical software for our partners who analyze more than 25 petabytes of data a day. We ingest millions of signals confidentially utilizing our sensible solutions that identify and respond to attacks before they are even executed. We incorporate automated tools and cutting-edge technology that saves lives and protects property of everyday people. With our technology we are looking to refine our software to more securely protect, analyze, and increase the number of petabytes we work with. How We Meet the Challenge: A combination of utilizing the right people and giving them the tools, resources, support, and freedom to develop effective signal processing algorithms, excellent software, and use strong intuition on what works for a scalable system. Minimum Qualifications: A current Top-Secret/SCI government security clearance with polygraph is required. A Bachelor's Degree in Information Assurance or related field. At least 3 years of experience with an Indications and Warnings monitoring tool. Experience with one or more of the following: StealthWatch, TripWire, Zenoss, and ArcSight . Experience tuning audit data to reduce number of false positives and false negatives. Experience in responding to detected security incidents. Must possess excellent troubleshooting skills. Must have a solid understanding of network intrusion detection methods and techniques. Bonus Points: Network Security Operations Center (SOC) experience preferred. Experience creating Dashboards and Analytics within SEIM (Security Information and Event Management) Tool. Experience creating workflows for Incident Response within a SEIM (Security Information and Event Management) Tool. Experience with the following: StealthWatch, TripWire, Zenoss, and ArcSight. CISSP Certification. GIAC Certified Incident Handler Certification. As a Cyber/Indications and Warnings Analyst, You Will: Analyze collected data and derive facts, inferences, and projections to determine if the systems being monitored are operating normally or being attacked by an adversary. Analyze this collected data to detect an Insider Threat. T Develop new dashboards and analytics to refine existing reports and create new reports. Work with System Engineers and System Administrators to better define the audit data being collected to eliminate false positives and false negatives from the data. Work Site: Greater Ft. Meade, MD area. To Learn More About Our Team and Solutions, Check Out the Following: At Sensible Solutions and Technologies, Inc. (SSATI), we don't just accept difference"we celebrate it, we support it, and we thrive on it for the benefit of our employees, our services, and our community. SSATI is honored to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.