Cyber Defense Analyst 3

The Swift Group

$49K — $290K *
Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • 8 years of experience as a Cyber Defense Analyst in similar programs and contracts.
  • Bachelor's degree in a technical field can substitute for 2 years of CDA experience.
  • 2 years of experience in TCP/IP fundamentals.
  • 2 years of practical experience with tcpdump or Wireshark.
  • 3 years of experience using Security Information and Event Management suites.
  • 3 years of experience in network analysis and threat analysis software.
  • CSSP Analyst baseline certification (e.g., CEH, CySA+, CFR).
  • IAT Level I or II certification required.
  • CE certification for supported systems necessary.
  • Active TS/SCI with Polygraph security clearance required.

Responsibilities

  • Monitor and analyze anomalous activity using cyber defense tools.
  • Generate and route cybersecurity cases with history and potential impact.
  • Hunt for previously unidentified threats through advanced manual analysis.
  • Identify cyber-attack phases by understanding attack vectors and network layers.
  • Detect host- and network-based intrusions using specific techniques.
  • Analyze malicious activities to uncover exploitation methods and system impacts.
  • Perform event correlation for situational awareness and attack effectiveness.
  • Conduct after-action reviews of team analysis and processes.
  • Lead and mentor team members as a technical expert.

Benefits

  • Comprehensive healthcare coverage.
  • Wellness benefits to support employee health.
  • Retirement plan options.
  • Educational assistance and development opportunities.
  • Generous time-off policies.
Full Job Description
We are looking for a Cyber Defense Analyst 3 to join a growing team in Annapolis Junction, MD.

Responsibilities:

  • Use cyber defense tools to monitor, detect, analyze, categorize, and perform initial triage of anomalous activity.
  • Generate cybersecurity cases (including event's history, status, and potential impact for further action) and route as appropriate.
  • Perform advanced manual analysis to hunt previously unidentified threats.
  • Identify cyber-attack phases based on knowledge of common attack vectors and network layers, models and protocols.
  • Apply techniques for detecting host- and network-based intrusions.
  • Analyze malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information.
  • Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack.
  • Possess deep knowledge of active directory abuse used by attackers for lateral movement and persistence.
  • Perform after-action reviews of team products to ensure completion of analysis.
  • Lead and mentor team members as a technical expert.


Requirements:

  • Eight (8) years of demonstrated experience as a CDA in programs and contracts of similar scope, type, and complexity.
  • A technical bachelor's degree from an accredited college or university may be substituted for two (2) years of CDA experience.
  • Two (2) years of demonstrated and practical experience in TCP/IP fundamentals.
  • Two (2) years of demonstrated experience with tcpdump or Wireshark.
  • Three (3) years of demonstrated experience using security information and event management suites (such as Splunk, ArcSight, Kibana, LogRhythm).
  • Three (3) years of demonstrated experience in network analysis and threat analysis software utilization.
  • CSSP Analyst baseline certification (e.g., CEH, CySA+, CFR, etc.)
  • IAT Level I or II certification
  • Computing Environment (CE) certification for supported systems
  • Global Information Assurances Certificate (GIAC) OR Global Certified Incident Handler (GCIH)
  • US citizenship and an active TS/SCI with Polygraph security clearance required


Pay Range: $49,996.80 - $290,004.00

Pay ranges are a general guideline and not intended as a guaranteed and/or implied final compensation or salary for this job opening. Determination of official compensation or salary relies on several different factors including, but not limited to: level of position, complexity of job responsibilities, geographic location, work experience, education, certifications, Federal Government contract labor categories, and contract wage rates.

At The Swift Group and Subsidiaries, you will receive comprehensive benefits including but not limited to: healthcare, wellness, financial, retirement, education, and time off benefits.

Similar Jobs

More Jobs at The Swift Group

  • Software Engineer
    $49K — $290K *
    Chantilly, VA 20152 (Loudoun County)
    Information Technology
    In-Person
  • Cyber Defense Analyst 3
    $49K — $290K *
    Annapolis Junction, MD 20701 (Howard County)
    Information Technology
    In-Person
  • Platform Engineer
    $49K — $290K *
    Columbia, MD 21044 (Howard County)
    Information Technology
    In-Person
  • IT Program Manager
    $49K — $290K *
    Herndon, VA 20171 (Fairfax County)
    Information Technology
    In-Person
  • Software Engineer
    $49K — $290K *
    Herndon, VA 20171 (Fairfax County)
    Information Technology
    In-Person

More Information Technology Jobs

Find similar Cyber Defense Analyst 3 jobs: