The successful candidate will provide support for DoD customers as part of a Cybersecurity Service Provider (CSSP).
Responsibilities- Monitor detects and mark off hours as completed within a SIEM
- File incident and event reports based on actionable detects
- The ability to identify true positive from false positive detects
- Facilitate and support communication between the CSSP teams, external organizations, and CSSP leadership
- Work well within a team environment and a fast-pasted workflow
- Communicate issues to leadership and deliver status updates, both as directed, and on regular, daily, and weekly reporting cycles
- Interact with organizations related to the CSSP such as ARCYBER, JFHQ-DODIN, USCYBERCOM, HPC/DREN NetOps, DCIS, and various sub-organizations including Cyber Protection Teams (CPTs), other CSSPs, representatives of LE/CI, and network operations centers (NOCs)
- Provide excellent customer service to CSSP subscribers and an ability to solve problems
Required Qualifications:- Linux fundamentals, including the ability to navigate, manipulate, extract and perform basic tasks as needed
- Experience using and or a strong understanding of how IDS tools are used - SNORT, SPLUNK, SURRICATA, BRO or IDS equivalent
- Experience reviewing packet capture data and being able to distinguish innocuous traffic from malicious
- Active DoD Secret Clearance with the ability to obtain TS clearance
Basic Qualifications:- Bachelor's degree in a related field or equivalent work experience
- Five years of IT work experience, one year minimum work experience in a cyber security concentration
- DOD 8570 Certification (Security+ AND CEH, CYSA GCIA,or GCIH etc.)
- Ability to demonstrate strong knowledge of computer security concepts
- Understanding of networking and network infrastructure
- Understanding of cloud technologies
Preferred Skills/Experience:- Experience working on the ops floor
- Experience monitoring IDS detects
- Experience working with Kibana, AWS/Azure and other cloud providers
- DoD multi-agency collaborative experience
- Basic familiarity with DoD cyber tools, directives, and configurations
Professional Skills:- Mature, self-motivated, adaptable, and effective team player.
- Excellent written and oral communication skills.
- People skills and the ability to communicate effectively with various clients, subscribers and collaborate with a team of peers