Job Details

Leidos

http://www.Leidos.com

Defensive Cyber Operations (DCO) Countermeasures Engineer

Occupation: Operations

Specialty: Security Operations

Visa sponsorship provided: No

Location: Scott Air Force Base, Illinois, United States

Description

Job Description:

Are you ready to join an impactful company? Leidos is a Fortune 500® technology, engineering, and science solutions and services leader working to solve the world’s toughest challenges in the defense, intelligence, civil, and health markets.

The Leidos Defense Group has a current job opportunity for a Defensive Cyber Operations (DCO) Countermeasures Engineer at Scott AFB, IL.

POSITION SUMMARY:

This position will support the DISA GSM-O II Task Number 9 (TN9) DCO Support Program. GSM-O II provides network operations and cyber defense support to the Defense Information Systems Agency (DISA) in support of the DoD and CoCOMs. The selected candidate will provide support for defensive cyber operations activities and will be expected to actively engage with a variety of customers and mission partners.

PRIMARY RESPONSIBILITIES:

Author and deploy novel countermeasures to eliminate threats and illuminate their activities.
Assess the effectiveness of countermeasures on an ongoing basis and revector actions as needed.
Collaborate with team members and Subject Matter Experts (SMEs) to create and validate countermeasures in accordance with (IAW) the DoDIN boundary defense posture.
Maintain situational awareness of cyber activity by reviewing DoD, Intelligence Community and open source reporting for new vulnerabilities, malware or other threats that have the potential to impact the DoDIN.
Support mission-critical Continuity of Operations (COOP).
Follow up on all taskers and due outs.

BASIC QUALIFICATIONS:

Bachelor's degree in a related discipline with 4+ years of applicable combined education and experience; additional related years of experience is accepted in lieu of a degree.
Hold DoD-8570 IAT Level 2 baseline certification (Sec+ CE or equivalent) to start and must obtain CSSP-A certification within 180 days of start date.
Proficiency in Splunk
Custom signature development experience.
Proficient understanding of the Cybersecurity Framework in regards to identify, protect, detect, respond and recover within the Cyber Security Service Provider construct.
Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
Understand the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
Must have an active DoD Top Secret/SCI clearance.

PREFERRED SKILLS:

Experience with DISA and DoD Networks.
Experience with CSM-J and CSM-X service offerings.
Experience with Git, Sigma, Yara, Snort, and Suricata.
Experience with Detection-as-Code.
Experience with malware analysis concepts and methods.
Skilled in developing extended cyber security analytics.
Advanced Certifications such as SANS GIAC GCIA/GMON, CISSP or CASP.
Experience in intelligence driven defense and/or cyber Kill Chain methodology.
Foster and encourage a collaborative environment to champion a cybersecurity culture.

Pay Range:

Pay Range $74,750.00 - $115,000.00 - $155,250.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.