Davidson Technologies, Inc. is an Equal Opportunity Employer (M/F/D/V).

Start Over with Job Search
Already have a profile?  Login Now

2017-1373-RP: Cyber Info Assurance Analyst (16296) Eng. III - Huntsville, AL
LocationAL, Huntsville
ScheduleFull Time
Company1) Davidson Technologies, Inc.
Job Responsibilities

This position requires a Network Defense Engineer to conduct Network Intrusion Detection (NID) surveillance and Incident Response on Subscriber networks and maintain Situational Awareness (SA) of MDA-wide network security monitoring. Analyze security event audit log information from network security devices (e.g., network and host-based security systems, firewalls, routers, switches, etc.) and mission critical servers for anomalies and known attack patterns. Will support development/dissemination of Computer Network Defense (CND) Alert and Notification messages to warn Subscribers and provide guidance or countermeasures to defend against the threat. The candidate will also review data originating from or reflecting status of, ongoing intrusions or cyber security incidents and document the findings of apparent activities involved and any intrusive or damaging activity involving compromised hosts. Review/assess the cyber threat environment (including computer security threat assessments) for MDA Subscriber network applicability, and disseminate guidance to improve network defensive posture. Respond to cybersecurity incidents by reporting all pertinent information in local incident reporting database, and Department of Defense incident management system.  Support digital forensic investigations, as directed by MDA CERT leadership, by collecting and safeguarding potential evidence, preserving chain of custody, analyzing content of compromised systems and media, documenting relevant findings, and providing to reports and digital and physical evidence and supporting data to MDA CERT investigation lead. The candidate must have excellent technical report writing skills to accomplish required forensic and incident reports.  The candidate will support the development, establishment, review and update of CND Detect and Respond procedures, Standard Operating Procedures, Internal Operating Processes, manuals, and other MDA Computer Emergency Response Team (CERT) documentation.

3 years progressive cyberspace defense experience • 8 years of experience total in related IT field, i.e., servers, routers, firewalls.• Must have DoD 8570.01-M IAT Level III with Continuing Education (CE)• Must be able to obtain and maintain a DoD 8570.01-M CNDSP Analyst or Incident Responder certification within 6 months.• Candidate must have an adjudicated DoD Secret security clearance to start (not an interim); must have or be able to obtain a DoD Top Secret clearance.• Experience with security analysis and solutions in a WAN/LAN environment• Proven aptitude in oral and written communications.• Experience with must MS Office applications.• Must be willing to work shifts in 24x7 operational environment, which may include extended hours at no notice, evenings, nights, holidays, and weekends. • Must be willing to travel; travel is infrequent and often less than two weeks if needed• Must be willing to provide training to other engineers if needed.

?Bachelor’s degree in Information Technology or related discipline.  •Additional experience may substitute for degree.•Experience CERT/CND, network, and system security policies and procedures. •Experience with correlating security events across a WAN using SIEM tools, ArcSight preferred. •Experience with other CND tools/applications, such as Network Security Manager, Bluecoat, Barracuda. •Current DoD Top Secret clearance.  GCIA or GCIH certified preferred.