We are committed to an inclusive and diverse workplace that values and supports the contributions of each individual. This commitment along with our common Vision and Values of Integrity, Respect, and Responsibility, allows us to leverage differences, encourage innovation and expand our success in the global marketplace. Vectrus is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status or status as an individual with a disability. EOE/Minority/Female/Disabled/Veteran.
The CNDSP Analyst will be responsible for incident handling, triage of events, network analysis and threat detection, trend analysis, vulnerability information dissemination. Coordinate Network Defense Operations and monitor and report incident status, threat possibilities and trending. Have knowledge of Army computer network defense with a strong understanding of the lifecycle of network threats, typical attack vectors, and network and system vulnerability exploitation. This position is for 24/7 shift coverage.
MAJOR JOB ACTIVITIES:
MATERIAL & EQUIPMENT DIRECTLY USED:
Desktop/Laptop computers, IA and CND software security applications: See Below.
(Zone based firewall)
(Web security, Endpoint Security)
(Network access control)
(Compliance scanning tool)
(Full Packet Capture)
(Network Tap technology)
(Reverse web proxy/Web application firewall)
Majority of work will be performed in an internal, climate controlled environment. Requires good communication skills. In order to communicate Computer Network Defense (CND) and Information Assurance issues with the customer and other co-workers.
Person should be capable of lifting 40 lbs without assistance, and should not have difficulties standing for long periods of time, or possibly walking distances of up to ¼ mile, or possibly slightly further.
4 – 7 years IT Security and CND experience or Computer Science Bachelors Degree;
3 or more years IT Security and CND experience in the Army/DOD or Computer Science Bachelors Degree;
This position requires DoDI 8570.01-M CNDSP Incident Responder (GCIH, CSIH, CEH, GCFA certification and corresponding Computing Environment certification.
•Required Top Secret Clearance based on a SSBI and able to meet the requirements of DCID 6/4
•Demonstrate expert-level knowledge in planning, directing, and managing projects/operations in an organization similar in size to this acquisition;
•Demonstrate expert-level knowledge of Army, DOD and industry accepted policies, standards, best practices, and regulations related to Cyber Security CND;
•Demonstrate experience with researching and fielding new and innovative technology
•Experience with SEIM solutions, Log collection analytics, Host base IDS/IPS (endpoint security), and Email security, Web security
•Understanding of how backdoors are used to gain access to systems and how to defend systems
•Understanding and knowledge of how attackers use tunneling and covert channels to cover their tracks on a network, and the strategies involved in defending against them.
•Clear understanding of how attackers hide files and directories on Windows and Linux hosts and how they attempt to cover their tracks.
•Comprehensive understanding of different kinds of Denial of Service (DoS) attacks and how to defend against them.
•Knowledge of how format string attacks work and how to defend against them.
•Extensive packet analysis skills
•Experience conducting network, system and malware analysis and reporting findings, assisting with vulnerability mitigation strategy and execution.
•8570 Compliant CNDSP Incident Responder (i.e CEH) with an approved Computing Environment Certification; and an OS certification
•Excellent written and verbal communication skills with good organizational and project management skills with the ability to lead a team.
: United States
Clearance Level required at Start Date: Secret
: Yes, 5 % of the Time