Cyber Countermeasures Engineer

Apex Systems, LLC is immediately seeking a Cyber Countermeasures Engineer who is a self-starter, highly organized, is comfortable speaking with high ranking military personnel, and has a strong drive for quality. This position will support one of our highly regarded clients in the government arena, and offer a strong upside for growth.If interested in this, or any other opportunities in the Government Space, please send your resume and contact information to Tessa Moulds, Government Services Recruiter, via tmoulds@apexsystems.comClient: Enterprise Government Integrator Location: Fort Meade, MD Compensation: Competitive based on years of relevant experience Clearance: Able to maintain an active TS/SCI Clearance with the DODJob Description Provides network operations and cyber defense support to DISA in support of the DoD and CoCOMs

• Direct and track enterprise countermeasure actions and assess the effectiveness of countermeasures on an ongoing basis.
• Analyze high volumes of logs, network data (e.g. Netflow, PCAP), and other attack artifacts in support of incident investigations.
• Understand the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs)
• Collaborate with team members and Subject Matter Experts (SMEs) to create and validate countermeasures in accordance with (IAW) the DoDIN boundary defense posture.
• Maintain situational awareness of cyber activity by reviewing DoD, Intelligence Community and open source reporting for new vulnerabilities, malware or other threats that have the potential to impact the DoDIN.

• Active TS/SCI security clearance
• Bachelor's degree and 8+ years of overall related experience; or Master's Degree 4+ years; OR 4 years of additional experience is accepted in lieu of a degree.
• Must have a DoD-8570 IAT Level 2 baseline certification (Security+ CE or equivalent) to start
  • Must be willing to obtain a CSSP-A (Cyber Security Service Provider) certification within 180 days of start date.
• Proficient understanding of Cyber Network Defense (CND) in regards to protect, detect, respond and sustain within a Computer Incident Response organization
• Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
• Experience with Network Monitoring tools such as Splunk, ArcSight, Nessus, & Wireshark
• Must have experience creating, modifying, and editing boundary defense rules & signatures within public & proprietary network defense tools
• Must have experience analyzing logs for fine tuning of rules & signatures

• Experience with DISA and DoD Networks.
• Experience with malware analysis concepts and methods.
• Advanced Certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP.
• Experience in intelligence driven defense and/or cyber Kill Chain methodology