Join our Talent Network >

Sr. Cyber Security Analyst

Job ID: 1927466
Location: RESTON, VA, United States
Date Posted: Nov 14, 2019
Category: Cyber
Subcategory: Cyber Sec Analyst
Schedule: Full-time
Shift: Day Job
Travel: No
Minimum Clearance Required: None
Clearance Level Must Be Able to Obtain: None
Potential for Teleworking: No

Share: mail

Job Description

Description


The SAIC Cyber Security Analyst is responsible for shift lead duties related to the real-time 24/7 monitoring, analysis, and resolution of identified security events. Will support daily security operations center activities utilizing a SIEM and monitor events from multiple sources including but not limited to firewall logs, system logs (Unix and Windows), network and host based intrusion detection systems, applications, databases, and other security information monitoring tools.


  • Perform threat and vulnerability assessment and provide subject matter expertise on appropriate threat mitigation.

  • Identify intrusion activity by leveraging alert data from multiple sensors and systems and determine priority for response.

  • Leverage threat intelligence e.g. DSIE, NCFTA while actively monitoring critical infrastructure components.

  • Assess the impact of potentially malicious traffic on company network and infrastructure.

  • Perform in-depth analysis of anomalies in support of network monitoring and incident response operations.

  • Perform live incident response (reactive and proactive incident management) by identifying and remediating malicious applications and infrastructure components.

  • Collaborate with other Information Security and IT team members to develop and implement innovative strategies for monitoring and preventing attacks.

  • Develop appropriate metrics (key risk and performance indicators) to measure the monitoring program and related process.

  • Develop/Monitor basic IDS/IPS rules to identify and/or prevent malicious activity.

  • Develop and test new correlation content and use cases using SIEM filters, rules, data monitors, active lists, and session lists

  • Conduct research of emerging security threats.

  • Propose additional components and techniques that could be used to proactively detect and prevent malicious activity.

  • Provide other services as a key member of the Cyber Security Operations Team:

    • Security review and administration of changes to networks, servers and end point devices in collaboration with network operations.

    • Security sensor policies for IDS/IPS, Firewalls, web security gateway, logging.

    • Continuous Control Monitoring including Baseline Security - Configuration monitoring. - Investigations and Forensics

  • Provide escalated response and support to intrusion or security breach investigations

  • Documentation of all incidents and tickets in the appropriate systems before the end of each shift

  • Participate in knowledge sharing with other analysts and writing technical articles for Internal Knowledge Bases

  • Present with confidence, findings of an investigation

  • Designs, tests, and implements secure operating systems, networks, security monitoring, tuning and management of IT security systems and applications, incident response, digital forensics, loss prevention, and eDiscovery actions.

  • Conducts risk and vulnerability assessment at the network, system and application level.

  • Conducts threat modeling exercises.

  • Develops and implements security controls and formulates operational risk mitigations along with assisting in security awareness programs.

  • Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access.

  • Researches, evaluates and recommends new security tools, techniques, and technologies and introduces them to the enterprise in alignment with IT security strategy.

  • Utilizes tools and processes/procedures in order to scan, identify, contain, mitigate and remediate vulnerabilities, and intrusions. 

  • Assists in the implementation of the required policy and makes recommendations on process tailoring.

  • Performs analyses to validate established security requirements and to recommend additional security requirements and safeguards.

  • Supports security tests and evaluations required by any government accrediting authority through pre-test preparations, participation in the tests, analysis of the results, and preparation of required reports.

  • Periodically conducts a review of each system's audits and monitors corrective actions until all actions are closed.  May support cyber metrics development, maintenance and reporting.

  • May provide briefings to senior staff.

  • Performing documentation review and improvement

  • Attending meetings as needed

  • Communicate and escalate issues and incidents as required by process or management

  • Additional responsibilities will include the ability to perform shift lead duties and train, mentor, and provide oversight to Junior Security Analysts.


Qualifications

TYPICAL EDUCATION AND EXPERIENCE: Bachelors and two (2) years or more experience; Masters and 0 years related experience.

Desired Qualifications

 


Overview

SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $6.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see Working at SAIC. EOE AA M/F/Vet/Disability

Share: mail

Similar Jobs

Information Systems Security Manager

RESTON, VA, United States
Cyber

Sr. Cyber Security Analyst

WASHINGTON, DC, United States
Cyber

Computer Network Security Analyst

CHANTILLY, VA, United States
Cyber

Computer Network Security Analyst

RESTON, VA, United States
Cyber

COMSEC Auditor (VG01309)

SPRINGFIELD, VA, United States
Cyber

Staff Officer (Crystal City)

ARLINGTON, VA, United States
Cyber

Cyber SME - AEGIS Weapon System

WASHINGTON, DC, United States
Cyber

Planning, Policy and Business Analysis (Cyber Security)

SPRINGFIELD, VA, United States
Cyber

Electronic Warfare (EW) Operations Planner

FORT BELVOIR, VA, United States
Cyber

Information System Security Officer (ISSO)

WASHINGTON, DC, United States
Cyber

Senior PKI Engineer - CMS

SPRINGFIELD, VA, United States
Cyber

Senior PKI Engineer (VG01155)

SPRINGFIELD, VA, United States
Cyber

Cyber Sec Vulnerability Analyst Sr

VIENNA, VA, United States
Cyber

Cyber Security Baseline Analyst Sr

VIENNA, VA, United States
Cyber

Information Systems Security Officer

MCLEAN, VA, United States
Cyber

Cyber Remediation Analyst

VIENNA, VA, United States
Cyber

Information System Security Engineer

CHANTILLY, VA, United States
Cyber

Security Firewall Administrator/Shift Lead (VG01184)

SPRINGFIELD, VA, United States
Cyber

Cybersecurity T&E Engineer

DC, United States
Cyber

Information System Security Officer

SPRINGFIELD, VA, United States
Cyber

Provide your information to receive jobs that fit you by keywords, location, and more,
and then receive great opportunities based on your skills and experience.

Join our Talent Network >