DTRA - Cyber Intel Analyst Staff

US-VA-Fort Belvoir
Job ID
2017-1755
# of Openings
2
Clearance Requirement
TS
Education Requirement
Bachelor's Degree
Certifications
CEH, CISA or GSNA
Experience Level
Senior
8570 Compliant
IAT 2

Overview

SMS is a fast growing, veteran-owned business that's has supported Federal Government's IT initiatives for over four decades.  We work side-by-side with our Federal clients as a trusted, long-term partner to offer innovative advice and leadership to solve their most pressing and complex problems. We orchestrate people, strategies, technologies and best-of-breed business processes. The SMS advantage in management and technology consulting includes deep domain expertise in complex networking design and unifying communities of interest. 

 

We have strong capabilities in design & build, planning, governance, quality management, security, analytics, virtualization, operations and business process improvement. For 40 years, SMS has brought customer satisfaction to Federal clients and formed lasting alliances with leading technology companies and talented small businesses to deliver joint, leading-edge, cost-effective services and products. 

Submit your resume today!

Responsibilities

  • Expert at creating custom rules and signatures using CSSP toolsets
  • Individuals collect and analyze event information and performs threat or target analysis duties
  • Provides operations for persistent monitoring on a 24/7 basis of all designated networks, enclaves, and systems
  • Interprets, analyzes, and reports all events and anomalies in accordance with Computer Network directives, including initiating, responding, and reporting discovered events
  • Manages and executes first-level responses and addresses reported or detected incidents
  • Reports to and coordinates with external organizations and authorities
  • Coordinates and distributes directives, vulnerability, and threat advisories to identified consumers
  • Provides daily summary reports of network events and activities and delivers metric reports
  • Investigate and identify the appropriate mechanisms for preventing and blocking (future) computer use violations
  • Provide updates and analysis to support closure of security policy violations and cyber security events/incidents

Qualifications

Required Skills

  • Ability to write snort based and custom IP/IDS/YARA signatures
  • Ability to create/modify and interpret network and host based intrusion detection signatures and polices
  • Ability to investigate network and host based intrusion detection events
  • Competent understanding of functionality and capabilities of computer network defense technologies, to include: Router ACLs, Firewalls, IDS/IPS, Antivirus, Web Content Filtering
  • Familiarity with and ability to investigate Intrusion Detection System alerts

Desired Skills

  • Experience using SIEM and Network Security Platform technologies
  • Familiarity with open source, custom or proprietary CND Tools
  • Identify artifacts from host/file analysis to be used for protective measures on an enterprise network
  • Knowledge of CND policies, regulations and compliance documents specific to the DOD.
  • Strong experience and proficient knowledge of tools used for network security (DLP, NIPS, HIPS, AV, Firewalls, etc)
  • Proficient in signature development (IPS, IDS, yara, A/V, etc.)
  • Experience with open source tools
  • Solid understanding of *nix and Windows operating system functionality
  • Scripting and coding experience (bash, PowerShell, python, etc.)
  • Superb analytical, documentation, and communication skills a must
  • Experience developing and proposing technical solutions for complex problems
  • Experience with in-depth evaluation of disparate data sources (trends and reporting)
  • Experience in system testing and use case development in support of highly technical customized applications

Experience

5+ years of CND experience

 

Certificaions

Must be DoD 8570 Compliant for IAT Level II

 

Clearance 

Ability to obtain SCI

 

 

SMS is an Equal Opportunity Employer. 

 

SMS is a veteran-owned network integrator established in 1976.  With an employee retention rate averaging over 5 years, our ability to hire quality people and retain them in a rapidly evolving IT market proves why we are a world-class information technology company. At SMS, we place a high value on quality of service, customer satisfaction, and best-of-breed policies and practices. As a result, SMS is proud to be ISO 9001:2008 Registered and a CMMI Level 3 certified company, ensuring that we continue to meet and exceed the expectations of our customers, partners and employees.  

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed