Enterprise Information Services, Inc.

  • D&CI Technical Lead

    Job Location US-VA-Quantico
    ID
    2018-3717
    # of Openings
    1
    Targeted Job Start Date
    4/1/2019
  • Overview

    This position will provide cyber discovery and counter-infiltration (hunt) services that detect, illuminate, and respond to threats on computer networks or Information Technology (IT) systems. Hunt analysts determine the appropriate network and host-based sensor strategy and monitoring, establish baselines and assess changes to baselines, define indicators of compromise, determine technical intelligence requests for information, apply computer forensic methodologies to explain system or traffic anomalies, recommend incident response actions, and analyze malware and compromised systems.

    Responsibilities

    • Utilize Splunk, ArcSight, WireShark, Intrusion Detection System (IDS), and other toolsets or open source tools to identify and investigate anomalies.
    • Maintain constant monitoring of intrusion detection systems
    • Create technically detailed reports based on intrusions and events
    • Provide assistance in computer incident investigations
    • Coordinate with other teams to remediate detected incidents
    • Analyze and evaluate anomalous network and system activity
    • Recommend modifications to security tools to detect, prevent, and mitigate intrusions
    • Recommend mitigation activities and provide after action reports to remediate vulnerabilities and reduce the chance of further exploitation

    Qualifications

    Education

    • BS degree from an accredited institution, or 8 years of experience in lieu of degree

    Experience

    • At least five years of demonstrated experience with CND tools, tactics, and techniques in a computer network defense environment
    • At least five years of experience managing personnel in an information assurance environment.
    • Experience handling national state level intrusions

    Clearance

    • TS/SCI required

    Certifications

    • Possess CNDSP Analyst certification
    • Possess IAT Level III certification; One of the following certifications required - CASP CE, CCNP Security, CISA, CISSP, GCED, GCIH.

    Possess at least two of the following certifications (or equivalent.) Certifications must be current. If cert is not listed we will make individual determination or seek customer approval:

    • Certified Cyber Forensics Professional (CCFP)
    • Certified Computer Examiner (CCE)
    • Certified Reverse Engineering Analyst (CREA)
    • Systems Security Certified Practitioner (SSCP)
    • GIAC Certified Intrusion Analyst (GCIA)
    • EC Certified Incident Handler (ECIH) / GCIH (GIAC Certified incident handler)
    • Certified Ethical Hacker (CEH)
    • Licensed Penetration Tester (LPT) / GIAC certified Pen tester, Certified Penetration Tester (CPT)
    • GIAC Certified Enterprise Defender (GCED)
    • GIAC Systems and Network Auditor (GSNA)

    EIS is an Equal Opportunity Employer/M/F/V/Disabled.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed