Cybersecurity Network Defense Analyst

Job#: 1364590

Job Description:

Cybersecurity Network Defense Analyst

Client Industry: Government/Professional Services and Information Technology 
Job Type: 6 month contract to hire 
Location: Remote to Start/After ~6 weeks, required to sit fully onsite in San Antonio, TX 
Schedule: Night shift (6:00pm-6:00am)
Panama schedule: 2 days on, 2 days off, 3 days on, 2 days off, 2 days on, 3 days off. Works weekends and holidays.
Example:

Interview Process: 1 round, 1 hour 
Clearance/Certifications Required: 

• Active DoD Top Secret Clearance with SCI Eligibility 

1. In order to have your application submitted, receive a request to interview, and receive an offer, you must have the  certification below. 
   • CEH (Certified Ethical Hacker)
2. In order to receive a finalized start date, you must have at least one certification below. If you do not have at least one of the required certifications below, a contingent offer will be given to complete/receive one of the certifications within 30-45 days from your offer to remain on the program. *Financial assistance available*
   • CompTIA Network+
   • CCNA
3. In order to sit onsite after the initial 6 weeks of employment (remote), you must have/receive the certification below: *Financial assistance available* 
   • ITIL 4 certification

• Assist other active duty, government civilians, and contractors assigned to the same functional areas. 
• Provide technical reports, meeting minutes, program plans, concepts of operations, contingency plans, and related documentation as identified for task deliverables.
• Prepare and disseminate operational reports.   
• Support real-time monitoring of all assigned IPS/IPS deployed and supporting the mission.
• Monitor network traffic to provide event correlations of operational traffic from multiple locations to determine network security posture.
• Use standard/provided network tools to evaluate traffic for incident response analysis.
• Coordinate and execute JTF-GNO Information Assurance Vulnerability Alert (IAVA) notices.
• Maintain IDS/IPS devices.
• Perform IDS/IPS Real-Time Monitoring Analysis.
• Perform Network Event Correlation/Advanced Traffic Analysis.
• Perform Incident Response & Analysis.
• Perform Vulnerability Analysis.
• Perform IDS/IPS Sensor installation, configuration, and maintenance. 
• Provide IDS/IPS Database & VPN Technical Support.
• Conduct Network Defense Training.
• Support Standardization & Evaluation (Stan/Eval) activities.
• Perform Operational Process Tracking and Processing.
• Provide Systems and Exercise Planning support
• Prepare Network Defense Technical Reports. 
• Prepare and present oral and written technical communications.

• Provide oral and written briefs, presentations, and professional reports to Government senior leaders and decision makers.
• Provide on-call support via cell phone after hours, on weekends and holidays.

• Active DoD Top Secret Security Clearance with SCI eligibility 
• B.S. in related field, AND 5 or more years’ relevant IT experience; OR 7 or more years’ relevant IT experience.
• MCP (Server) - proof of passing Microsoft Exam 98-365: Windows Server Administration Fundamentals will satisfy this requirement (or min. 3 yrs. Microsoft Server expertise)
• Required certifications from the list above 
• 5 years minimum of Traffic and Log Analysis experience

• Possess the following skill sets: 
  • Extensive knowledge of network firewalls, computer, and server log analysis.
  • Extensive knowledge of digital evidence collection, handling, and security.
  • Experience with computer incident response and analysis and report dissemination.
  • Extensive knowledge and experience with network packet capture and analysis software such as WireShark (Ethereal) and Snort.
  • Experience with standard DoD network topology and DMZ boundary protection.
  • Experience with system analysis software (i.e. EnCase/EnCase Enterprise or FTK), software coding and debugging, and the virtual machine (VM) environment.
  • Experience with DoD/AF incident reporting processes.
  • Familiarity with NSA Threat Operations Center (NTOC) Attack, Sensing & Warning (AS&W) alerts and processing.
  • Knowledge and experience constructing, executing, and troubleshooting SQL DB queries.
  • Knowledge and experience with the DOD Centaur analysis system.
  • Possess experience with DoD/AF incident reporting processes; knowledge of threat visualization applications; extensive knowledge of digital evidence collection, handling, and security; experience with computer incident response and analysis, and report dissemination; extensive knowledge of DoD and AF network operations regulations; knowledge and experience processing Information Assurance Vulnerability Alert (IAVA) notices.

• Experience working in DoD, Air Force, and local base environments

EEO Employer

Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178.