Lead Network-based Cyber Analyst with Security Clearance
Posted on: December 8, 2018
Job Description: Leidos is looking for a Cyber Scientist to provide subject matter expertise, research and development skills, and technical leadership on a mission-critical program whose purpose is rapid response to cyber incidents and proactive monitoring for malicious cyber activity. This person will perform research, identify emerging capabilities, design effective new workflows/tools, and collaborate across the program working with Government, private sector, and international constituents and partners. The Cyber Scientist is responsible to lead the system engineering and technical assistance activities of the team, including subcontractors, to provide engineering and scientific rigor in order to enhance capabilities for cyber defense operations, cyber hunt, monitoring, and incident response to protect and defend critical infrastructure. Responsibilities include:--- Conduct research, and provide direction based on research, for the development of prototypes and/or enhanced operational cybersecurity procedures--- Serve as technical expert and liaison to leadership, NCCIC, the IC, and law enforcement personnel explaining cybersecurity incidents, threats, trends, policy, or research, as required--- Conduct gap analysis and provide technical recommendations of HIRT's operational capabilities, compared to the latest known adversary tools and TTPs--- Identify new technologies that support the HIRT mission--- Review multiple data sources, including world events, intelligence, media, and law enforcement reporting, to identify all cybersecurity incidents, threats, and vulnerabilities that could become the basis of attacks--- Write and publish cybersecurity concepts, trends, and guidance to appropriate stakeholders--- Support the development of performance metrics--- Lead the Systems Engineering and Technical Assistance (SETA) for Cybersecurity: -Provide support assessments of projected cyber risk; make predictions about threats to federal networks and critical infrastructure sectors, and conduct case studies -Provide assistance to ensure realistic technical considerations are incorporated into initiative planning and execution -Develop tools that help define, observe, and assess actions that support DHS strategy -Develop and present capability and technology roadmaps -Provide technical assistance in the development of Business Impact Analyses (BIA), Business Continuity Plans (BCPs), and Disaster Recovery Plans (DRPs) Provide engineering and technical support services such as: studies, systems analyses, testing and evaluation, supplementing operational technical assistance as required--- 10% travel required; occasional international travel may be required DHSCyber MINIMUM REQUIRED QUALIFICATIONS: --- Demonstrated experience as a Cybersecurity Researcher, Cybersecurity/Cyberspace Policy Analyst, Data Scientist, Information Assurance Architect or related functional area--- Ability to formulate hypotheses, design experiments, and test theories regarding cybersecurity techniques, tactics, and procedures; network and transport level technologies; computing technologies; storage technologies; application-level technologies; potential vulnerabilities; and potential exploit vectors--- Ability to perform Numerical, Systems and Affordability/Failure Analysis--- Excellent writing skills and ability to communicate effectively, including public speaking, and briefing senior government and commercial executives--- Ability to work across multiple task orders (T&M and FFP) and projects in parallel--- Skill in recognizing and categorizing types of vulnerabilities and associated attacks--- MS in Computer Science, Cybersecurity, Computer Engineering, or related discipline and 15 years of relevant experience--- Active Top Secret clearance with SSBI; Ability to obtain a TS/SCI clearance--- Active CISSP ISSAP or CISSP ISSEP certificationADDITIONAL DESIRED QUALIFICATIONS: --- Knowledge of the NCCIC National Cyber Incident Scoring System --- Knowledge of general attack stages (e.g., foot printing and scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks, etc.)--- Knowledge of different operational threat environments (e.g., first generation [script kiddies], second generation [non-nation state sponsored], and third generation [nation state sponsored])--- Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, PL/SQL and injections, race conditions, covert channel, replay, return-oriented attacks, and malicious code)--- Knowledge of Cyber Operations including Incident Response, Hunt, Industrial Control System (ICS) and Supervisory Control and Data Acquisition (SCADA)--- Expertise for the identification, development and prioritization of Offensive Cyberspace Operations (OCO) and Defensive Cyberspace Operations (DCO) requirements.--- Operational experience with Technical Assurance (TA) Oversight, and TA Evaluation of OCO Capabilities--- Experience with DoD or equivalent Mission Assurance--- PhD in Computer Science, Cybersecurity, Computer Engineering, or related discipline --- Certified Cyber Forensics Professional (CCFP)--- Other Active Cyber Certification(s), such as GIAC Penetration Tester (GPEN), GIAC Exploit Researcher and Advanced Penetration Tester (GXPN), GIAC Certified Forensic Examiner (GCFE), GIAC Certified Forensic Analyst (GCFA), GIAC Reverse Engineering Malware (GREM), EnCase Certified Examiner (EnCE), GIAC Network Forensic Analyst (GNFA), GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Incident Handler (GCIH), etc Dept of Homeland Security
Keywords: Leidos, Arlington , Lead Network-based Cyber Analyst with Security Clearance, Professions , Arlington, Texas
Didn't find what you're looking for? Search again!