Job Title: Security Application Device Operation and Maintenance (SADOM) Specialist
Posted by: Solutions By Design on Sep 20, 2019
Location:
Stennis Space Center , MSJob Description:
SBD is seeking a Security Application Device Operation and Maintenance (SADOM) Specialist to join our team supporting a SOC for our federal customer.
Responsibilities will include: Contribute to daily operational update meetings for SOC staff and unscheduled situational update briefings for clientleaders as needed. Analyze reports to understand threat campaign techniques andlateral movements and extract indicators of compromise (IOCs). Reference applicable departmental and operating administration policies in work products. Recommend sound remediation and recovery strategies and suggest defensive policy enhancements and information technology procedures. Provide forensic and network analysis. Perform threat detection and trend analysis. Understand and convey of the lifecycle of the network threats, attack vectors, and network vulnerability exploitation. Requirements: 5+ years of experience with Cyber Intelligence Analysis Experience with information security devices, including firewalls and intrusion detection and prevention systems, and applications, including security information management tools, such as NetForensics and Splunk Experience with the capabilities and techniques of hacker and hacktivist groups, criminal syndicates, and advanced persistent threats conducting computer network exploitation and attacks against the US government resources and critical infrastructure Experience with signatures, tactics, techniques, and procedures associated with preparation for and execution and implementation of such attacks Developer/Scripting experience with Python, Bash, PowerShell, Rest API, Splunk Good communication and interpersonal skills Background in Vulnerability Management and/or Certification and Accreditation and/or Incident Response Experience and with common security tools including: ACAS/Tenable Security Center/Nessus, Splunk, and McAfee ePO, nmap, FireEye, IDS/IPS, etc. Experience working in aMicrosoft AD environment Firm understanding of TCP/IP Experience with Open Source intelligence techniques Experience with working in a network security incident response team, including a Security Operations Center (SOC), Computer Emergency Response Team (CERT), Computer Incident Response Team (CIRT), Computer Incident Response Center (CIRC), or Cyber Security Incident Response Center (CSIRC) Must be a US Citizen able to obtain an agency-specific EOD clearance (required before starting) as well as the ability to obtain a DoD Top Secret Clearance. Must have at least one (1) of the following certifications: Security+, CASP, GSEC, GSLC, CISSP, CEH, CISM or CISA
Solutions By Design II, LLC (SBD) is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at SBD will be based on merit, qualifications, and abilities. SBD does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age, IWDs, Veteran Status or any other characteristic protected by law (referred to as "protected status").
Responsibilities will include: Contribute to daily operational update meetings for SOC staff and unscheduled situational update briefings for clientleaders as needed. Analyze reports to understand threat campaign techniques andlateral movements and extract indicators of compromise (IOCs). Reference applicable departmental and operating administration policies in work products. Recommend sound remediation and recovery strategies and suggest defensive policy enhancements and information technology procedures. Provide forensic and network analysis. Perform threat detection and trend analysis. Understand and convey of the lifecycle of the network threats, attack vectors, and network vulnerability exploitation. Requirements: 5+ years of experience with Cyber Intelligence Analysis Experience with information security devices, including firewalls and intrusion detection and prevention systems, and applications, including security information management tools, such as NetForensics and Splunk Experience with the capabilities and techniques of hacker and hacktivist groups, criminal syndicates, and advanced persistent threats conducting computer network exploitation and attacks against the US government resources and critical infrastructure Experience with signatures, tactics, techniques, and procedures associated with preparation for and execution and implementation of such attacks Developer/Scripting experience with Python, Bash, PowerShell, Rest API, Splunk Good communication and interpersonal skills Background in Vulnerability Management and/or Certification and Accreditation and/or Incident Response Experience and with common security tools including: ACAS/Tenable Security Center/Nessus, Splunk, and McAfee ePO, nmap, FireEye, IDS/IPS, etc. Experience working in aMicrosoft AD environment Firm understanding of TCP/IP Experience with Open Source intelligence techniques Experience with working in a network security incident response team, including a Security Operations Center (SOC), Computer Emergency Response Team (CERT), Computer Incident Response Team (CIRT), Computer Incident Response Center (CIRC), or Cyber Security Incident Response Center (CSIRC) Must be a US Citizen able to obtain an agency-specific EOD clearance (required before starting) as well as the ability to obtain a DoD Top Secret Clearance. Must have at least one (1) of the following certifications: Security+, CASP, GSEC, GSLC, CISSP, CEH, CISM or CISA
Solutions By Design II, LLC (SBD) is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at SBD will be based on merit, qualifications, and abilities. SBD does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age, IWDs, Veteran Status or any other characteristic protected by law (referred to as "protected status").
Pay Rate:
Unspecified
HR. Website URL:
http://sbd2.catsone.com/careers
Sign Up to Apply to this position
(if you already have a CGO account, just press the button below)
About Solutions By Design II, LLC
SBD specializes in IT system modernization and support as an application transformation and agile process leader. We leverage open source technologies and cloud-based solutions to reduce operating costs and advance the value proposition of automated solutions. We also have a robust cybersecurity capability optimizing security operation centers through the use of workflow automation, technical expertise, and the use of leading edge security tools. Bottom line, we deliver technically innovative, reliable, and cost-effective solutions, services, and products to our federal customers.
Please visit this employer's Public Profile to see more jobs offered by Solutions By Design II, LLC