- 15-Oct-2013 to 14-Dec-2013 (EST)
- Chicago, IL, USA
- Full Time
Job Title: Expert Cyber Security Analyst (Tier IV Support)
The Expert Cyber Security Analyst supporting the Veteran Affairs Network & Security Operations Center (VA-NSOC). VA-NSOC provides a service to the VA that ensures that VA's response to computer security-related incidents is both timely and efficient. Its goals are to recognize unauthorized activities, assess the damage that results from those activities, prevent widespread system contamination, and provide cost-effective recovery services. This capability minimizes both the likelihood and impact of the risk and reduces the cost of recovery through early detection and response. Computer security incidents may include computer viruses, unauthorized user activity, and denial-of-service attacks that compromise the integrity and availability of VA systems.
The Expert Cyber Security Analyst (Tier IV) supports VA NSOC's Chicago, IL facility. The Expert Cyber Security Analyst is responsible for responding, identifying, and resolving short-term issues. Must be able to develop and implement long-term proactive support to the VA's Network Specialist, WAN managers and Information Security Officers.
• Responsibilities also include, but are not limited to network and security device monitoring, network and security device administration and management, security event correlation, audit log management, access control, NIPS/HIPS installation and support, and incident response, ticket management, creating queries and/or scripts for Cyber Security Analysts, providing tuning recommendations, i.e, IPS, HIPS, U.S. CERT analysis, signature development, ticket management analysis, facilitate weekly security meetings, development SOPs, participate in product reviews, configuration management process, change control board, intrusion analysis as well as be a security coach/trainer . Additional duties include assisting the Site Manager with the day-to-day operations, submitting reports to VA NSOC management, writing position papers, conducting security assessments, counseling and maintaining a knowledgebase along with monitoring configuration changes as well as other assignment duties.
• Requires BS/BA or equivalent experience from an accredited college Minimum of 10+ years as an innovative technical professional, customer service oriented, and highly knowledgeable engineer in the field of Network and Security Engineering with experience in a Network Security Operations Center (NSOC) environment.
IT experience including support of VPN technology, intrusion detection, prevention, incident response/recovery, and antivirus support; strong understanding of Windows and IP networking. In addition, we prefer candidates with 10+ years of hands-on computer forensics experience using Splunk and Sourcefire. Certifications with the following a plus; Global Information Assurance Certification (GIAC), security essentials certification (GSEC), and or the incident handler (GCIH) certifications; the International Information Systems Security Certification Consortium's (ISC2), Certified Information Systems Security Professional (CISSP) certification; or Cisco's Certified Network Associate Certification (CCNA). Project Management Professional (PMP)
Clearance Required - Public Trust - High/BI
THIS POSITION HAS BEEN CLOSED! PLEASE CHOOSE ONE OF THE OPTIONS BELOW:
- Search Current Openings
Sign Up For Job Alerts!