Cyber Security Incident Responder

Blue Water Staffing

Cyber Security Incident Responder

Pensacola, FL
Paid
  • Responsibilities

    Cyber Security Incident Responder who can support a customer in the detection, response, mitigation, and reporting of cyber threats affecting client networks.

    RESPONSIBILITIES WILL INCLUDE:

    • Provide support in the detection, response, mitigation, and reporting of cyber threats affecting client networks

    • Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in cyber security operations

    • Produce reports and briefs to provide an accurate depiction of the current threat landscape and associated risk. Accomplish this through the use of customer, community, and open source reporting

    • Provide analysis for correlated information sources

    • Facilitate the customer's posturing itself to aggressively investigate cyber activity targeting customer information and its information infrastructure

    • Assist the customer training department in the education of staff on the cyber threat

    • Liaison with other government cyber threat analysis entities, such as intra-agency and inter-agency Cyber Threat Working Groups

    • Maintaining proficiency in the use and production of visualization charts, link analysis diagrams, and database queries

    • Analyze and report cyber threats as well as assist in deterring, identifying, monitoring, investigating and analyzing computer network intrusions

    • Additional duties may include providing intrusion support to high technology investigations in the form of computer evidence seizure, computer forensic analysis, data recovery, and network assessments

    • Meet and maintain customer required Information Assurance training compliance

    • Ability to support 24x7 operations (shift work)

    REQUIRED SKILLS:

    • Current Top Secret clearance with SSBI in the last five years. Must be able to obtain a TS/SCI clearance.

    • Hands-on experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks and one or more of the following:

    • Experience in computer intrusion analysis and incident response

    • Intrusion detection

    • Computer network surveillance/monitoring

    • Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures

    • Experience in computer evidence seizure, computer forensic analysis, and data recovery;

    • Computer network forensics

    • System log analysis

    • Experience with current cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks

    • Demonstrated ability to document processes

    • The ability to respond to crises objectively

    • Proficiency with MS Office Applications

    • Must be able to work collaboratively across agencies and physical locations

    DESIRED SKILLS:

    • Experience supporting DHS, Federal Civil, Intelligence and/or DoD Customers

    • Computer Forensics experience

    • Malware reverse engineering experience

    • Experience with Risk and Opportunity management

    • Scripting experience (python, perl etc…)

    • Experience with process development and deployment

    • Excellent writing skills

    • Prior experience with data visualization products such as Analyst Notebook is desired.

    • Prior experience with Splunk

    • Prior experience working in one of the following

    • highly desired:

    • Security Operations Center (SOC/NOSC)

    • Computer Emergency Response Team (CERT/CIRT)

    • DOD/FED Cyber Intel organization

    • DCIO/MCIO, with Cyber Counterintelligence focus

    DESIRED CERTIFICATIONS:

    • Technical CND Incident Reporter Certification(CEH, GCIH, GCIA, GNFA)

    • DoDI 8570.01-M 8570.01-M IAT Level I Compliant Certification (Network + CE, A+ CE, CCNA + Security, SSCP)

    REQUIRED EDUCATION (INCLUDING MAJOR):

    • 6 years of experience with a Bachelor of Science Degree with major in Cyber Engineering, Computer Science/Electrical Engineering, Engineering, Science or related field OR a Masters with 4 years of experience. Professional experience may be considered in lieu of a degree.