Job ID: 194770
Location: ARLINGTON, VA, United States
Date Posted: Aug 23, 2019
Subcategory: Cyber Sec Analyst
Shift: Day Job
Minimum Clearance Required: Top Secret
Clearance Level Must Be Able to Obtain: Top Secret
Potential for Teleworking: No
Join SAIC’s cyber security team and work on this effort that encompasses technical, engineering, management, operation, logistical and administrative support for cyber security operations. The ideal candidate will have broad and deep experience in cyber security with demonstrated successes in supporting a large scale IT infrastructure encompassing overseas and domestic facilities.
The Computer Incident Response Team (CIRT) uses the Network Monitoring and Incident Response System (IDS) Sensor Network to perform near real-time detection, collection, analysis, correlation and reporting of system security events that pose a threat to the Department’s networks. The mission of the CIRT is to work closely with internal and external entities to:
Tier-2: Advanced Analysis and Incident Handling
The Technical Lead, CIRT Tier 2 leads and oversees Tier 2 contractor activities for the CIRT program; provides technical and operational oversight. Schedules, coordinates, guides, monitors, tracks and reports on Tier 2 activities and performance. Conducts advance analysis and recommends remediation steps for computer security events and incidents. Ensures established Tier 2 processes and procedures are followed, including during surge support and in interaction with customers. Recommends improvements to increase operational efficiency. Liaises and coordinates with operational managers and other entities within the Department and with outside agencies.
Support CIRT operations and provide Tier 2 intrusion detection analysis and response. Specific activities include but are not limited to the following:
Education: A Bachelor’s Degree in Computer Science, Information Systems, Engineering, Telecommunications, or other related scientific or technical discipline. Four (4) additional years of general experience (as defined below) may be substituted for the degree.
General Experience: Eight (8) years of experience in network center management and operation with increasing responsibilities.
Specialized Experience: Five (5) years of current experience in 24x7x365 network security monitoring operations of similar size and scope as the CIRT.
Three (3) years of experience in LANs, WANs, VPNs, network protocols, firewalls, routers, and performing malware analysis. Demonstrated experience in network security systems and products.
Certification Required: CISSP
Technology Required: Remedy Service Management; Netwitness; Net Detector; ISS Site Protector; RealSecure; McAfee IntruShield; SPLUNK log aggregator; Symantec Security Event Manager, and a variety of tools to perform malware analysis.
Location: Beltsville MD or Rosslyn VA
Shift Work: CIRT operates 24x7x365 and is staffed with Tier 1 and Tier 2 analysts with six (6) eight-hour shifts.
Must be US Citizen with active Top Secret clearance
SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $6.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see Working at SAIC. EOE AA M/F/Vet/Disability