Join our Talent Network >

Incident Response (IR) / Security Analyst

This job posting is no longer active.

Job ID: 2014419
Location: HAMPTON, VA, United States
Date Posted: Sep 28, 2020
Category: Cyber
Subcategory: Cyber Sec Analyst
Schedule: Full-time
Shift: Day Job
Travel: No
Minimum Clearance Required: None
Clearance Level Must Be Able to Obtain: Top Secret
Potential for Remote Work: No

Share: mail

Job Description

Description

The position is for an Incident Response (IR) / Security Analyst to provide dedicated IR support as part of the IT Security team at NASA Langley Research Center on the LITES II contract.

 

The IR function is a first responder to information security incidents and involves analysis, mitigation, remediation and documentation of incident reports.  The IR team also provides effective communication and recommendations for preventative measures. The Incident Response candidate must have experience in the security aspects of multiple platforms, operating systems, software, and/or network protocols.

 

Duties include:

  • Detect, triage and lead response to information security events/incidents to include security vulnerabilities, intrusions, phishing, malware, network anomalies, and/or computer forensic investigations
    • Meet customer metrics regarding timely response and mitigation
    • Determine cause / attack vectors, extent of exposure, and overall risk to environment
    • Harvest, preserve, and forensically analyze electronic data from hardware and software
    • Produce concise and detailed final incident report that will be presented to technical peers and non-technical audiences
  • Create and maintain required documentation to include standards and processes that support the IR function
  • Recommend effective process changes to enhance defense and response procedures
  • Find, analyze, interpret, and extract attack-related payload from network packet captures and host images using forensic tools

 

Limited on-call work after hours is required during special situations.

Qualifications

Required Qualifications:

  • Bachelor's degree in Computer Science or related field and 2 years of experience in an information security-specific profession; relevant experience may be substituted for education

  • Ability to anticipate and respond to changing priorities, and operate effectively in a dynamic demand-based environment, requiring flexibility and responsiveness.
  • Experience with multiple operating systems including:   Windows, Linux, and Mac OS
  • Thorough understanding of network protocols
  • Knowledge of effective use of Intrusion Detection Systems (IDS)
  • Understanding of incident phases and attack vectors
  • Ability to obtain and keep a Top Secret clearance

 

Desired Qualifications:

  • System security-related certifications (CySA+, CASP+, etc.)



Overview

SAIC is a premier technology integrator solving our nation's most complex modernization and readiness challenges. Our robust portfolio of offerings across the defense, space, civilian, and intelligence markets includes high-end solutions in engineering, IT, and mission solutions. Using our expertise in existing and emerging technologies, we integrate the best components from our own portfolio and our partner ecosystem to deliver innovative, effective, and efficient solutions. We are 25,500 strong; driven by mission, united by purpose, and inspired by opportunities. Headquartered in Reston, Virginia, SAIC has pro forma annual revenues of nearly $7.1 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom. For SAIC benefits information, see Working at SAIC. EOE AA M/F/Vet/Disability

Share: mail