Cyber Operations Countermeasures Engineer ( R-00088840 )
Leidos has a current job opportunity for a Cyber Operations Countermeasures Engineer on the DISA GSM-O II program supporting the DISA Joint Operations Center (DJOC) embedded with DISA Headquarters, Fort Meade, MD. The candidate will support the DISA GSM-O II TN13 Defensive Cyber Operations (DCO) Branch. This position will provide leadership for defensive cyber operations activities and will be expected to actively engage with a variety of customers and mission partners, anticipating their needs, and delivering flawlessly.
GSM-O II provides network operations and cyber defense support to the Defense Information Systems Agency (DISA) in support of the Department of Defense (DoD) and Combatant Commands (CoCOMs).
Direct and track enterprise countermeasure actions and assess the effectiveness of countermeasures on an ongoing basis.
Analyze high volumes of logs, network data (e.g. Netflow, PCAP), and other attack artifacts in support of incident investigations.
Understand the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
Collaborate with team members and Subject Matter Experts (SMEs) to create and validate countermeasures in accordance with (IAW) the DoDIN boundary defense posture.
Maintain situational awareness of cyber activity by reviewing DoD, Intelligence Community and open source reporting for new vulnerabilities, malware or other threats that have the potential to impact the DoDIN.
Support mission-critical Continuity of Operations (COOP).
Bachelor’s degree from an accredited college in a related discipline and 8+ years of professional experience; additional related years of experience is accepted in lieu of a degree.
Must have a DoD-8570 IAT Level 2 baseline certification (Security+ CE or equivalent) to start and able to obtain CSSP-A certification within 180 days of start date.
Proficient understanding of Cyber Network Defense (CND) in regards to protect, detect, respond and sustain within a Computer Incident Response organization.
Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
Must have an active Top Secret/SCI clearance.
Experience with DISA and DoD Networks.
Experience with malware analysis concepts and methods.
Advanced Certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP.
Experience in intelligence driven defense and/or cyber Kill Chain methodology.
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.