Senior End Point / Threat Detection

Fort George G. Meade, MD

Posted: 07/18/2019 Job Number: JN -072019-10967
SENIOR END POINT / THREAT DETECTION ANALYST

Location: Fort Meade, MD
Industry: Department of Defense
Employment Type: Direct Hire

Job Duties:
Our Client is looking for an experienced Endpoint Compliance analyst to support Joint Force Headquarters - Department of Defense Information Network (JFHQ-DODIN) in the analysis, implementation and maintenance of DOD endpoint program, policies and standards.
They specialize in software development, satellite/terrestrial communications, cyber security, and network engineering/design and provide support worldwide to DOD, Federal Civilian, and Health IT customers.
  • Configure, maintain, and utilize JFHQ-DODIN and CC/S/A/FA capabilities to detect, monitor, track, and analyze malicious activity targeting the DoD
  • Consume, review, correlate, and report on high priority DoD, Intelligence, and USG operational reporting of threat and vulnerabilities to correlate similar incidents/events, malicious tradecraft, TTPs of malicious activity, and indicators utilized to impact or target the DODIN
  • Develop consolidated notification and updates to the JFHQ-DODIN JDOC on threat and vulnerability activity
  • Develop, obtain government approval, and release situational awareness reports/products; operational directives/order and coordination messages; and quarterly threat analysis reports and metrics
  • Review, analyze, and maintain the content of a DoD indicator database to aid in the detection and mitigation of threat activity
  • Update DoD shared situational awareness mechanisms including JFHQ-DODIN websites, Wikipedia style solutions, and collaboration / chat mechanisms
  • Develop and present cyber threat briefings, presentations, and papers to JFHQ-DODIN leadership to ensure situational awareness and status are conveyed related to the assigned project areas
  • Operate as the DoD community leader for the discovery of threat activity and associated indicators
  • Determine sophistication, priority, and threat level of identified malware and intrusion related TTPs
  • Develop metrics and trending/analysis reports of malicious activity used to compromise the DODIN
  • Develop, staff, and release analysis findings in technical analysis reports to DoD Community
  • Manage a DoD prioritization process to identify priority threats and vulnerabilities that are impacting the DODIN
  • Develop signatures for use within DoD threat detection capabilities to detect potentially malicious activity on the DODIN
  • Coordinate with JFHQ-DODIN partner organizations to distribute, receive, and conduct analysis on vulnerability and threat information that impacts the DODIN
Qualifications:
  • Active DoD TS/SCI clearance
  • Proficient in developing briefing materials, administrative, and logistics support
  • Must have advanced communication and presentation skills (verbal and written) enabling precise conveyance of information across all CC/S/A/FA with command and proper enunciation of the English language
  • The candidate must have strong interpersonal, organizational and critical thinking/problem solving skills
  • Must be flexible, dependable and be able to multi-task with priorities
  • Proficiency in use of Microsoft Office Suite
  • BA/BS degree from an accredited college; preferred degree in Information Technology or Information Security area
  • 7+ years experience with IA Experience with and/or a working knowledge of the following:
    • Networking infrastructure: routers, switches, and web security gateway
    • TCP/IP Protocols and Services
    • Identification and Access Management
    • Firewalls, Access Control Lists
    • Intrusion Detection/Prevention Systems (IDS/IPS) Configuration Management
    • Demilitarized Zone (DMZ)
    • SIEM and JIMS Reports
    • Data backup/Data Loss Prevention (DLP)
  • Host Base Security Systems (HBSS)
  • Enterprise Mission Assurance Support Service (eMASS)
  • Experience at USCYBERCOM or Cyber Service Centers or equivalent.
  • Demonstrated understanding of cyber advanced persistent threats, actors, infrastructure, and TTP's.
  • Demonstrate understanding of defensive cyber operations to include cyber incident response, and Intrusion Detection Systems (IDS).
  • Experience with network analysis and coursework preferred.
  • MA or MS degree preferred.
  • DoD 8570 IAT Level III
  • Certification in any of the following areas: A+, Network+, Security+, CISSP

An Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities


SRG Government Services (SRG) is a leading provider of information technology, training, engineering, accounting and intelligence analytical services for agencies in the intelligence, defense, homeland security, cyber security, and federal civilian markets. SRG utilizes an innovative approach to identify and qualify talent that is unique to the federal contracting industry, featuring a cutting-edge platform that allows us to rapidly and precisely match professionals to client requirements. We have a proprietary database of over one million candidates and maintain continuous contact with our qualified talent.


EOE/ADA
#clearance
Apply Online

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.