Job Details
Leidos
Cyber Security Analyst Associate
Description
Job Description:
Leidos has a current job opportunity for a Cyber Intrusion Analyst who will be a member of the Network Assurance (NA) Team (DISA GSM-O program) in Pearl Harbor, Hawaii.
JOB DESCRIPTION:
Provide CND reports, trends, responses, mitigations, analysis & information dissemination. Provide C2 support, situational awareness support for all CND applicable activities within Protect, Detect, Respond, and Sustain.
PRIMARY RESPONSIBILITIES:
Support the integrity and security of enterprise-wide cyber systems and networks.
Coordinate resources during enterprise incident response efforts.
Employ forensic tools and techniques for attack reconstruction.
Perform network traffic analysis as it pertains to the Cybersecurity of communications networks.
Review threat data and develop custom signatures for Open Source IDS or other custom detection capabilities. Correlate actionable security events from various sources.
Understand attack signatures, tactics, techniques and procedures associated with advanced threats.
May conduct malware analysis of attacker tools and reverse engineer attacker encoding protocols.
Monitor the implementation of IAVAs & de-conflict component & information specific IAVA guidance.
Perform network traffic analysis utilizing raw packet data, net flow, IDS, IPS and custom sensor output, as it pertains to the cyber security of communications networks.
Provide limited analysis of incidents for the customers by: determining the incidents ‘nature and formulating responses; Identifying & providing the ability to surge during emergencies; correlating event & incident data; determining possible effects on the DISN, customer networks & other organizations.
Review threat data from various sources & aid in the development of custom signatures for Open Source & COTs IDS.
Monitor customer networks and provide user administration & logistics support.
Install, configure & monitor CND security-relevant network components.
BASIC QUALIFICATIONS:
Bachelor’s Degree and less than 2+ years of related experience; cyber courses/certifications or DISA customer experience may be substituted in lieu of degree.
Must have DoD-8570 IAT Level 2 baseline certification (Security+ CE or equivalent) prior to start.
Must possess a CSSP-Analyst certification within 180 days of your start date.
Experience working CND duties (e.g., Protect, Defend, Respond, and Sustain).
Must have an active DoD Top Secret security clearance to start on the program.
PREFERRED QUALIFICATIONS:
UNIX Administrative skills.
Command Line Scripting skills (PERL, python, shell scripting) to automate analysis task.
Knowledge of hacker tactics, techniques and procedures (TTP).
Conduct malware analysis.
Demonstrated hands on experience with various static and dynamic malware analysis tools
Knowledge of advanced threat actor tactics, techniques and procedures (TTP)
Understanding of software exploits.
Analyze packed and obfuscated code.
Comprehensive understanding of common Windows APIs and ability.
GSMO