Posted by: Solutions By Design on Sep 20, 2019
Location:
Stennis Space Center , MS
Job Description:
SBD is seeking a Security Application Device Operation and Maintenance (SADOM) Specialist to join our team supporting a SOC for our federal customer.
Responsibilities will include: Contribute to daily operational update meetings for SOC staff and unscheduled situational update briefings for clientleaders as needed. Analyze reports to understand threat campaign techniques andlateral movements and extract indicators of compromise (IOCs). Reference applicable departmental and operating administration policies in work products. Recommend sound remediation and recovery strategies and suggest defensive policy enhancements and information technology procedures. Provide forensic and network analysis. Perform threat detection and trend analysis. Understand and convey of the lifecycle of the network threats, attack vectors, and network vulnerability exploitation. Requirements: 5+ years of experience with Cyber Intelligence Analysis Experience with information security devices, including firewalls and intrusion detection and prevention systems, and applications, including security information management tools, such as NetForensics and Splunk Experience with the capabilities and techniques of hacker and hacktivist groups, criminal syndicates, and advanced persistent threats conducting computer network exploitation and attacks against the US government resources and critical infrastructure Experience with signatures, tactics, techniques, and procedures associated with preparation for and execution and implementation of such attacks Developer/Scripting experience with Python, Bash, PowerShell, Rest API, Splunk Good communication and interpersonal skills Background in Vulnerability Management and/or Certification and Accreditation and/or Incident Response Experience and with common security tools including: ACAS/Tenable Security Center/Nessus, Splunk, and McAfee ePO, nmap, FireEye, IDS/IPS, etc. Experience working in aMicrosoft AD environment Firm understanding of TCP/IP Experience with Open Source intelligence techniques Experience with working in a network security incident response team, including a Security Operations Center (SOC), Computer Emergency Response Team (CERT), Computer Incident Response Team (CIRT), Computer Incident Response Center (CIRC), or Cyber Security Incident Response Center (CSIRC) Must be a US Citizen able to obtain an agency-specific EOD clearance (required before starting) as well as the ability to obtain a DoD Top Secret Clearance. Must have at least one (1) of the following certifications: Security+, CASP, GSEC, GSLC, CISSP, CEH, CISM or CISA
Solutions By Design II, LLC (SBD) is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at SBD will be based on merit, qualifications, and abilities. SBD does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age, IWDs, Veteran Status or any other characteristic protected by law (referred to as "protected status").
HR. Website URL:
http://sbd2.catsone.com/careers