Do you want to grow your career and be part of a team solving critical challenges that affect the world? Then Leidos is the place for you!
Department of Homeland Security (DHS), Security Operations Center (SOC) Support Services is a US Government program responsible to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the DHS Enterprise. The DHS SOC has primary responsibility for monitoring and responding to security events and incidents detected at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP) and is responsible for directing and coordinating detection and response activities performed by each Component SOC. Direction and coordination are achieved through a new shared DHS incident tracking system and other means of coordination and communication.
The DHS CBP SOC Program has a critical need for a Senior Tier 2 Incident Response Analyst.
Tier 2 Incident Response Analyst should have expertise in one of the following specialized areas: - Email security - Digital media forensic - Monitoring and detection - Incident Response - Vulnerability assessment and pen test - Cyber intelligence analysis Supports detection, containment, and eradication of APT activities targeting customer networks. Process community reporting, conduct link analysis, and collaborate with other Government cyber fusion teams. Publish intelligence products to inform network defenders about APT activities, new detection methods, among other topics of interest. This position location is in the Alexandria,VA
Duties may include the following:
- Penetration Testing and vulnerability assessments.
- Use a variety of Cyber Tools to monitor system and application logs, intrusion detection alerts for indication of unauthorized activity and perform analysis on infected systems.
- Monitor for fraud waste and abuse including content inappropriate to the workplace
- Review security incident response policies and identify the need for changes based on new security technologies or threats.
Protect yourself and your family, with the benefits of working for a world-class employer. When you join Leidos, you join a Fortune 500 company and one of Ethisphere Institute's "World's Most Ethical Companies"
EDUCATION & EXPERIENCE:
Bachelors' degree in Computer Science, Engineering, Information Technology, Cyber Security, or related field and 8 to 12 years of professional experience in incident detection and response, malware analysis, or cyber forensics or a Masters Degree with 6 to 10 years of experience. Four years of related experience may be considered in lieu of a BS degree, with strong preference toward recent applicable cyber experience and/or certifications.
In addition, minimum of five (5) years of specialized experience in one or more of the following areas:
- Email security
- Digital media forensic
- Monitoring and detection
- Vulnerability assessment and pen test
- Cyber intelligence analysis
Must have at least one of the following certifications: SANS GIAC: GCED, GCIA, GCFA, GPEN, GWAPT, GCFE, GREM, GXPN, GMON or GCIH ISC2 CCFP, CCSP, CISSP CERT CSIH EC Council: CHFI, LPT, ECSA, Offensive Security: OSCP, OSCE, OSWP and OSEE EnCase: EnCE Dod 8570: IAT L3, CNDSP Analyst or IR Carnegie Mellon: CCSIH"
Extensive experience analyzing and synthesizing information with other relevant data sources, providing guidance and mentorship to others in cyber threat analysis and operations, evaluating, interpreting, and integrating all sources of information, and fusing computer network attack analyses with counterintelligence and law enforcement investigations.
Experience in cyber government, and/or federal law enforcement. Experience with Cyber Kill Chain. Experience in cyber government, and/or federal law enforcement.