Computer Network Defense Analyst

Confidential Company  •  Quantico, VA

8 - 10 years experience  •  Business Services

Salary depends on experience
Posted on 09/22/17
Confidential Company
Quantico, VA
8 - 10 years experience
Business Services
Salary depends on experience
Posted on 09/22/17


Kforce has a client seeking a Computer Network Defense Analyst in Quantico, Virginia (VA). Overview: The Computer Network Defense Analyst shall perform computer network defense (CND) incident triage, to include determining urgency, and potential impact. They will be identifying the specific vulnerability and making recommendations that enable expeditious remediation, and making recommendations that enable expeditious remediation, perform initial, forensically sound collection of images and inspect to determine mitigation / remediation on enterprise systems. The Analyst will perform real-time Computer Network Defense (CND), incident handling (e. g., forensic collection, intrusion correlation / tracking, threat analysis, and direct system remediation), task to support Incident Response Teams and receive and analyze network alerts from various sources within the enterprises. The candidate should be able to employ defense-in-depth principles and practices, collect intrusion artifacts (e.g., source code, malware, and Trojans) and use discovered data to enable mitigation of potential Computer Network Defense (CND) incidents within the enterprise. They will assist with analysis of actions taken by malicious actors to determine initial infection vectors, establish a timeline of activity and any data loss associated with incidents.


  • Bachelor's degree in Computer Science required
  • 10 years of recent work experience in incident response
  • Must have an IAM Level III certification (GSLC, CISM, or CISSP) or the ability to obtain within 6 months of employment
  • Experience forensically interrogating and analyzing Microsoft Windows operating systems (Windows 7 / 10 / 2008R2 / 2012R2)
  • Experience performing computer programming tasks with Microsoft PowerShell programming from a Digital Forensic / Incident Response perspective
  • Experience performing computer programming tasks with Python Programming
  • Must be able to provide expert technical support to enterprise-wide CND technicians to document CND incidents, correlate incident data to identify specific vulnerabilities and to make recommendations enabling remediation
  • Must have experience monitoring external data sources (e.g., computer network defense vendor sites, Computer Emergence Response Teams, Security Focus), update the CND threat condition, and determine which security issues may have an impact on the enterprise
  • Must have experience analyzing log files, firewalls, firewall logs, and intrusion detection systems and IDS Logs to identify possible threats to network security, and to perform command and control functions in response to incidents
  • Must be experienced in the use of various incident response tools (e.g., Acunetix, Adobe, Cobalt Strike, FireEye, Fluke Networks Air Magnet, F-Response, Encase Guidance Software, IDA Pro, McAfee Advance Threat Defense, Network Miner Pro, Palo Alto, Burp Suite Professional, Metasploit Rapid 7, Red Seal, Splunk, VMWare, domain tools, and virus tools

JobID: 1661420-AQG

Not the right job?
Join Ladders to find it.
With a free Ladders account, you can find the best jobs for you and be found by over 20,0000 recruiters.