Job ID: 194770
Location: ARLINGTON, VA, United States
Date Posted: Mar 6, 2020
Subcategory: Cyber Sec Analyst
Shift: Day Job
Minimum Clearance Required: Top Secret
Clearance Level Must Be Able to Obtain: Top Secret
Potential for Remote Work: No
Join SAIC’s cyber security team and work on this effort that encompasses technical, engineering, management, operation, logistical and administrative support for cyber security operations. The ideal candidate will have broad and deep experience in cyber security with demonstrated successes in supporting a large scale IT infrastructure encompassing overseas and domestic facilities.
The Computer Incident Response Team (CIRT) uses the Network Monitoring and Incident Response System (IDS) Sensor Network to perform near real-time detection, collection, analysis, correlation and reporting of system security events that pose a threat to the Department’s networks. The mission of the CIRT is to work closely with internal and external entities to:
Tier-2: Advanced Analysis and Incident Handling
The Technical Lead, CIRT Tier 2 leads and oversees Tier 2 contractor activities for the CIRT program; provides technical and operational oversight. Schedules, coordinates, guides, monitors, tracks and reports on Tier 2 activities and performance. Conducts advance analysis and recommends remediation steps for computer security events and incidents. Ensures established Tier 2 processes and procedures are followed, including during surge support and in interaction with customers. Recommends improvements to increase operational efficiency. Liaises and coordinates with operational managers and other entities within the Department and with outside agencies.
Support CIRT operations and provide Tier 2 intrusion detection analysis and response. Specific activities include but are not limited to the following:
Education: A Bachelor’s Degree in Computer Science, Information Systems, Engineering, Telecommunications, or other related scientific or technical discipline. Four (4) additional years of general experience (as defined below) may be substituted for the degree.
General Experience: Eight (8) years of experience in network center management and operation with increasing responsibilities.
Specialized Experience: Five (5) years of current experience in 24x7x365 network security monitoring operations of similar size and scope as the CIRT.
Three (3) years of experience in LANs, WANs, VPNs, network protocols, firewalls, routers, and performing malware analysis. Demonstrated experience in network security systems and products.
Certification Required: CISSP
Technology Required: Remedy Service Management; Netwitness; Net Detector; ISS Site Protector; RealSecure; McAfee IntruShield; SPLUNK log aggregator; Symantec Security Event Manager, and a variety of tools to perform malware analysis.
Location: Beltsville MD or Rosslyn VA
Shift Work: CIRT operates 24x7x365 and is staffed with Tier 1 and Tier 2 analysts with six (6) eight-hour shifts.
Must be US Citizen with active Top Secret clearance
SAIC is a premier technology integrator solving our nation's most complex modernization and readiness challenges. Our robust portfolio of offerings across the defense, space, civilian, and intelligence markets includes high-end solutions in engineering, IT, and mission solutions. Using our expertise in existing and emerging technologies, we integrate the best components from our own portfolio and our partner ecosystem to deliver innovative, effective, and efficient solutions. We are 23,000 strong; driven by mission, united by purpose, and inspired by opportunities. Headquartered in Reston, Virginia, SAIC has pro forma annual revenues of nearly $6.5 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom. For SAIC benefits information, see Working at SAIC. EOE AA M/F/Vet/Disability