This position requires shift work including nights/weekends
Responsibilities include:
Provide support in the real-time detection, response, mitigation, and reporting of cyber threats affecting client networks utilizing an enterprise SEIM.
Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in cyber defense operations.
Identification, detection, and analysis of potential computer network intrusions supporting the customers mission.
Liaison with other government cyber threat analysis entities, such as intra-agency and inter-agency Cyber Threat Working Groups
Meet and maintain customer required Information Assurance training compliance
MANDATORY SKILLS: 8+ years of directly relevant experience (SOC/CIRT Analyst, Forensics Analyst, Penetration Tester, or Threat Hunt Analyst)
Current experience with AWS security solutions and cloud security investigations
Current incident response experience using Splunk
Previous experience with penetration testing (red/blue/purple teams)
Previous security investigation experience (OS Forensics, Network Forensics, Web Application Forensics, Cloud Forensics, etc.)
Experience as a Linux/Windows/Network administrator
Must be able to work collaboratively across agencies and physical locations
Excellent oral and verbal communication
Required Education:
A bachelors degree in cybersecurity, security operations, computer science, a related specialized area; or High School Diploma and 18 years of directly relevant experience
Must be a U.S. Citizen
Must have active/current Top-Secret clearance with the ability to obtain a TS/SCI.
Must be able to receive DHS suitability prior to starting employment.
OPTIONAL SKILLS: Computer network surveillance/monitoring
Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architecture
Experience in computer evidence seizure, computer forensic analysis, and data recovery
Computer network forensics
System log analysis
Current experience with cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks
Hands-on experience in the detection, response, mitigation, and/or reporting of cyber threats and 2 or more of the following:
Computer network surveillance/monitoring.
Knowledge and understanding of (TCP/IP) protocols, network devices, multiple operating systems, and secure architectures.
System/Application/Security log analysis.
Network traffic analysis.
Current experience with AWS security solutions and cloud security investigations
Hands-on experience as a SOC Detection Analyst, Threat Hunter, Forensic Examiner, or Incident Responder
Proven exceptional technical writing skills directly related to cybersecurity incident response.
Desired Certifications:
DoD 8570.1-M Compliance at IAT Level I (e.g., Certified Information Systems Security Professional (CISSP)) certification required.
Cisco Certified Network Professional (CCNP), Cisco Certified Security Professional (CCSP) or similar certification required.
Information Systems Security Engineering Professional (ISSEP) or Information System Security Architect Professional (ISSAP) certification preferred.
SourceFire Certified Professional (SFCP) certification desiredSkill Level 1 Certification (SANS GCIH or equivalent certification)
Skill level 2 certification (SANS GCFA, GCFR, or equivalent certifications)
Splunk Enterprise Security Certified Administrator or higher
AWS Certified Practitioner or higher
About Avid Technology Professionals
Avid Technology Professionals, LLC (ATP) is a premiere provider of software and systems engineering, and acquisition program management services for the community. ATP is actively seeking to pursue contract opportunities with other departments and agencies in the federal government, in state governments, and in the commercial sectors. Delivered by seasoned experts in the IT field, ATP solutions adeptly address the IT concerns manifesting in both the federal and commercial sectors.
Employee Benefits
The ATP Employee Benefits package includes:
- A Supportive and Equitable Working Environment that is both Stimulating and Challenging
- Competitive Hourly Salary
- Unique Employee Success Sharing Program that allows ATP employees to Share in Company's Successes
- Automatic Approved Overtime (as long as contract permits)
- Retirement Pay (401K); 100% company paid, immediately vested with Profit-Sharing Component
- Company Medical Coverage Plans - HMO, Open Access, PPO plans
- Company Dental Plan - widely accepted, comprehensive, and flexible
- Progressive Overtime Policy
- Flexible Spending Account benefit
- Lucrative Referral Bonus Policy
- Holiday Scheduling that Coincides with Government Holidays
- Robust Professional Expenses & Training Program
- Computer Allowance
- Internet Allowance
- Short and Long Term Disability
- Life Insurance