Intrusion Detection Analyst needed for a contract-to-hire opportunity with SOC’s client to work in Scott Air Force Base, Illinois.

Active Secret Clearance is required!

The position will be a W-2 employee of Federal Services and will not involve an independent contractor relationship with the company.

Responsibilities

• Review audit data, e-mail spam, and network traffic data for irregularities or other indications of real or potential security violations
• Correlate and analyze security data and events from alert and traffic flow systems
• Identify potential distributed, long-term, coordinated, low-visibility network-based attacks
• Identify potential advanced persistent and coordinated threats across multiple platforms
• Perform tuning and optimization tasks to include sensor rule review and log aggregation/visibility
• Develop/enhance existing intrusion detection analytics/dashboards/signatures to remain commensurate with evolving cyber threat
• Investigate all security related events and incidents involving information systems
• Report identified security incidents through the Joint Incident Management System (JIMS) or other
• Review and share significant activity via SIGACT reports and Attack Sense and Warning (AS&W) tippers
• Perform incident response based on security events identified
• Generate and share Suspicious Network Activity Reports (SNARS)
• Track acknowledgements of SNARS and AS&W tippers from the CSSP Subscriber community
• Develop and deploy countermeasures in response to cybersecurity incidents
• Analyze and identify root cause(s) and lessons learned from security incidents
• Document a formal after actions report (AAR)
• Provide recommendations related to tactical response actions, such as updating signatures and heuristics
• Maintain an inventory of log data sources and resident locations
• Maintain a daily activity log containing continuous event management updates and shift-turnover details of events/incidents

Qualifications

• BS degree with 3 + years of prior relevant experience, a Masters with less than 2 years, or 6+ years of experience in lieu of degree
• Secret clearance
• DoD 8570 Compliant to include IAT-II and CSSP-A certifications

Employment Pre-requisites

The following requirements must be met to be eligible for this position: successful completion of a background investigation, drug urinalysis, and verified compliance with Executive Order 14042, Ensuring Adequate COVID Safety Protocols for Federal Contractors.

SOC, a Day & Zimmermann company, is an Equal Opportunity Employer, EOE AA M/F/Vet/Disability.

#DZFED