Network Forensics Cybersecurity Analyst

Network Forensics Cybersecurity Analyst

09 Sep 2024
Virginia, Arlington, 22201 Arlington USA

Network Forensics Cybersecurity Analyst

The DHS’s Hunt and Incident Response Team (HIRT) secures the nation’s infrastructure. HIRT provides DHS’s front-line response for cyber incidents and proactive hunting for malicious cyber activity. BCMC provides support for on and offsite incident response to Government agencies and critical infrastructure owners who experience cyber-attacks. BCMC provides HIRT advanced technical assistance, proactive hunting, rapid onsite incident response, and immediate investigation, using host and network-based cybersecurity analysis capabilities. Personnel perform investigations to characterize the level of severity of breaches and develop mitigation/remediation plans. BCMC is seeking Network Forensics Cybersecurity Analysts to support this critical customer mission.Responsibilities:

Assists the Government lead in coordinating teams in preliminary incident response investigations

Assists the Government lead with interfacing with the customer while on site

Determines appropriate courses of actions in response to identified and analyses anomalous network activity

Assesses network topology and device configurations identifying critical security concerns and providing security best practice recommendations

Assists with the writing and publishing of Computer Network Defense guidance and reports on incident findings to appropriate constituencies

Collects network intrusion artifacts (e.g., PCAP, domains, URI’s, certificates, etc.) and uses discovered data to enable mitigation of potential Computer Network Defense incidents

Analyzes identified malicious network activity to determine weaknesses exploited, exploitation methods, effects on system and information

Collects network device integrity data and analyze for signs of tampering or compromise

Assists with real-time CND incident handling (i.e., forensic collections, intrusion correlation and tracking, threat analysis, and advising on system remediation) tasks to support onsite engagements

Required Skills:

U.S. Citizenship

Must have an active TS/SCI clearance

Must be able to obtain DHS Suitability

2+ years of directly relevant experience in network investigations

In depth knowledge of CND policies, procedures and regulations

In depth knowledge of TCP/IP protocols

In depth knowledge of standard protocols – ICMP, HTTP/S, DNS, SSH, SMTP, SMB, NFS, etc.

In depth knowledge and experience of Wifi networking

In depth knowledge and experience of network topologies - DMZ’s, WAN’s, etc.

Substantial knowledge of Splunk (or other SIEM’s)

Understanding of MITRE Adversary Tactics, Techniques and Common Knowledge (ATT&CK)

Knowledge of Computer Network Defense policies, procedures, and regulations

Knowledge of defense-in-depth principles and general attack stages with respect to network security architecture

Ability to characterize and analyze network traffic to identify anomalous activity and potential threats to network resources

Ability to identify and analyze anomalies in network traffic using metadata

Experience with reconstructing a malicious attack or activity based on network traffic

Experience examining network topologies to understand data flows through the network

Must be able to work collaboratively across physical locations

Desired Skills:

Substantial knowledge of network device integrity concepts and methodologies

Proficiency with network analysis software (e.g. Wireshark)

Proficiency with carving and extracting information from PCAP data

Proficiency with non-traditional network traffic (e.g. Command and Control)

Proficiency with preserving evidence integrity according to standard operating procedures or national standards

Proficiency with designing cyber security systems and environments in a Linux and/or Windows environment

Proficiency with virtualized environments

Required Education:BS Computer Science, Cyber Security, Computer Engineering, or related degree; or HS Diploma & 4-6 years of network investigations experience.Desired Certifications:

DoD 8140.01 IAT Level II, IASAE II, CSSP Analyst

DoD 8140.01 GCIA, GCIH, CSSP Analyst/CSSP Incident Responder

DoD 8140.01 CEH, CSSP Analyst

SANS GIAC GNFA preferred

Our Company Overview:

Business Computers Management Consulting Group, LLC (BCMC) is a small business specializing in Information Technology (IT), Cybersecurity, Information Assurance (IA), SOA, Big Data Management, Program Management, and more for Federal, State, and Local agencies. We possess highly skilled engineers, providing innovative solutions backed by strong past performances. We are ISO 9001:2015, ISO 27001:2013, 20000:2018, and CMMI L3 certified and registered promising highest quality and services to all of our clients.

Benefits

Extremely competitive salary

95% employer paid for employee medical, dental, & vision coverages100% employer paid for employee life, STD & LTD disability coverages401k with company match and profit sharingFlexible Spending Account (FSA) for dependent & health care11standard holidays & 3 weeks of annual leave ESS-3196Network Based Systems Analyst - II - NBA02Powered by JazzHR

Related jobs

  • Description

  • 110000-120000 per year Salary plus benefits | Arlington, VA, USA | Salary | Full Time

  • Summary About the Position: This position is with the National Guard Bureau, Chief of Staff, Facility Services, Arlington, VA. About the Surrounding Area: Situated in Northern Virginia on the south bank of the Potomac River directly across from Washington D.C. Arlington is headquarters to many departments and agencies of the federal government, including the Department of Defense and is the location of many national memorials and museums. Responsibilities Formulate and monitor the execution of appropriations via budget forecasts and plans to fund program and projects. Originate new techniques, establish innovative criteria, and/or develop new information to evaluate the progress and cost effectiveness of program plans, goals, and objectives. Develop proposals concerning alternative methods, sources, and timing of financing for substantive programs. Evaluate the effects and interrelationships between program goals and accomplishments and budgetary resources and policies. Requirements Conditions of Employment Qualifications Who May Apply: Only applicants who meet one of the employment authority categories below are eligible to apply for this job. You will be asked to identify which category or categories you meet, and to provide documents which prove you meet the category or categories you selected. See Proof of Eligibility for an extensive list of document requirements for all employment authorities. 30 Percent or More Disabled Veterans Current Department of Army Civilian Employees Domestic Defense Industrial Base/Major Range and Test Facilities Base Civilian Personnel Workforce Interagency Career Transition Assistance Plan Land Management Workforce Flexibility Act Military Spouses, under Executive Order (E.O.) 13473 Priority Placement Program, DoD Military Reserve (MR) and National Guard (NG) Technician Eligible Priority Placement Program, DoD Military Spouse Preference (MSP) Eligible Priority Placement Program, DoD MR and NG Preference Eligible Tech Receiving Disability Retirement Priority Placement Program, DoD Retained Grade Preference Eligible Veterans Employment Opportunity Act (VEOA) of 1998 In order to qualify, you must meet the experience requirements described below. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student; social). You will receive credit for all qualifying experience, including volunteer experience. Your resume must clearly describe your relevant experience; if qualifying based on education, your transcripts will be required as part of your application. Additional information about transcripts is in this document. One year of specialized experience which includes Determine the cost-benefits of alternative budget actions; justify budgetary expenditures; evaluate status of funds using systems such as General Fund Enterprise Business System (GFEBS). This definition of specialized experience is typical of work performed at the next lower grade/level position in the federal service (GS-12). You will be evaluated on the basis of your level of competency in the following areas: Budget Execution Budget Formulation, Justification & Presentation Financial Management Analysis Fundamentals & Operations of Budget Time in Grade Requirement: Applicants who have held a General Schedule (GS) position within the last 52 weeks must have 52 weeks of Federal service at the next lower grade or equivalent (GS-12). Education Some federal jobs allow you to substitute your education for the required experience in order to qualify. For this job, you must meet the qualification requirement using experience aloneno substitution of education for experience is permitted. Additional Information Male applicants born after December 31, 1959, must complete a Pre-Employment Certification Statement for Selective Service Registration. You will be required to provide proof of U.S. Citizenship. One year trial/probationary period may be required. Direct deposit of pay is required. Selection is subject to restrictions resulting from Department of Defense referral system for displaced employees. If you have retired from federal service and you are interested in employment as a reemployed annuitant, see the information in the Reemployed Annuitant information sheet. This is a(n) Comptroller Career Field position. Multiple positions may be filled from this announcement. Salary includes applicable locality pay or Local Market Supplement. Physical work location included in this announcement is non-negotiable for this position. This position is eligible for situational telework, including emergency and OPM prescribed \"unscheduled telework\" and regular/recurring telework, IAW current ARNG telework policy after date of hire THIS IS A FINANCIAL MANAGEMENT Level 2 Certified position designated as such in accordance with the National Defense Authorization Act (NDAA) 2012, Public Law 112-81, Subtitle F-Financial Management, section 1051, amending 10 United States Code, section 1599d. Incumbent of this position is required to comply with all Department of Defense and Department of the Army requirements of this certification program. This certification requirement is a condition of employment for this position. Failure to obtain this certification within the required time may subject the incumbent to adverse action.

  • Description

  • Senior Business Analyst TOP SECRET CLEARANCE REQUIRED

  • Sinclair, Inc. is looking for an Associate Producer, Network Podcasts to help in the development, production, and growth of new and ongoing podcasts, with a focus on sports content.

  • Job Title: Program Analyst

Job Details

Jocancy Online Job Portal by jobSearchi.