Senior Fusion Analyst

SRA International Arlington, VA

Overview:

Conducts cyber incident and event monitoring. Disseminates and reports cyber-related activity data.

Responsibilities:

Experience Requirements:

* Demonstrate experience in IC reporting of cyber threats;

* Demonstrate expert-level knowledge of network traffic and communications, including known ports and services.

* Demonstrate a knowledge of the Windows operating system, knowledge in various Linux distributions and the Unix framework;

* Demonstrates knowledge of the following security related technologies: IPS, IDS, SIEM, firewalls, DNS, encryption, HIDS, NIDS, proxies, Network Packet Analyzers, malware analysis, forensic tools, and enterprise level appliances.

* Demonstrate an understanding of various open source and commercial analysis tools used for incident analysis, both network and host based

* Demonstrate expert-level knowledge and supervision of employees of various labor categories and skills in efforts similar in size and scope as this acquisition;

* Demonstrate understanding of DOD accreditation policies, processes, and practices.

* Demonstrate expert-level knowledge in planning, directing, and managing Computer Incident Response Team (CIRT) operations in an organization similar in size to this acquisition;

* Expert proficiency in conducting research and analysis, compiling relevant all source intelligence to incorporate in products briefings;

* Demonstrate the capability to deliver presentations to senior leaders and in a conference setting;

* Demonstrate expert ability to analyze and identify relationships and trends between incidents in the short term and patterns across incidents in the long term and report trend analysis in quarterly and yearly trend analysis reports;

* Demonstrate the expert ability to write detailed technical reports that can be consumed by multiple types of consumers;

* Demonstrate the capability to mentor junior analysts to incorporate intelligence into incident reporting to show relationships to known actors and significance of activity related to known world events;

* Demonstrate expert ability to extract actionable information and indicators from intelligence reporting and articulate to network defenders to update network security posture

Qualifications:

Education Requirement:

* Bachelors of Science in Computer Science or Information Systems (6+ years experience in Incident Response in lieu of a degree)

Years of Experience:

* 2 years of Incident Response experience within DoD or IC environment

Certification Requirements:

* CEH, Sec+, CND-IR, GCIA or GCIH certification

* DoD 8570 IAT Level III CND Analyst certification or ability to become compliant within six months

Notice:

CSRA is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Options:

Similar jobs you might like

Financial Analyst
2U Lanham, MD
Cyber Watch Analyst
Vencore Chantilly, VA