Cyber Countermeasures Engineer
Vacancy expired!
Apex Systems, LLC is immediately seeking a Cyber Countermeasures Engineer who is a self-starter, highly organized, is comfortable speaking with high ranking military personnel, and has a strong drive for quality. This position will support one of our highly regarded clients in the government arena, and offer a strong upside for growth.If interested in this, or any other opportunities in the Government Space, please send your resume and contact information to Tessa Moulds, Government Services Recruiter, via tmoulds@apexsystems.comClient: Enterprise Government Integrator Location: Fort Meade, MD Compensation: Competitive based on years of relevant experience Clearance: Able to maintain an active TS/SCI Clearance with the DODJob Description Provides network operations and cyber defense support to DISA in support of the DoD and CoCOMs
- Direct and track enterprise countermeasure actions and assess the effectiveness of countermeasures on an ongoing basis.
- Analyze high volumes of logs, network data (e.g. Netflow, PCAP), and other attack artifacts in support of incident investigations.
- Understand the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs)
- Collaborate with team members and Subject Matter Experts (SMEs) to create and validate countermeasures in accordance with (IAW) the DoDIN boundary defense posture.
- Maintain situational awareness of cyber activity by reviewing DoD, Intelligence Community and open source reporting for new vulnerabilities, malware or other threats that have the potential to impact the DoDIN.
- Active TS/SCI security clearance
- Bachelor's degree and 8+ years of overall related experience; or Master's Degree 4+ years; OR 4 years of additional experience is accepted in lieu of a degree.
- Must have a DoD-8570 IAT Level 2 baseline certification (Security+ CE or equivalent) to start
- Must be willing to obtain a CSSP-A (Cyber Security Service Provider) certification within 180 days of start date.
- Proficient understanding of Cyber Network Defense (CND) in regards to protect, detect, respond and sustain within a Computer Incident Response organization
- Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
- Experience with Network Monitoring tools such as Splunk, ArcSight, Nessus, & Wireshark
- Must have experience creating, modifying, and editing boundary defense rules & signatures within public & proprietary network defense tools
- Must have experience analyzing logs for fine tuning of rules & signatures
- Experience with DISA and DoD Networks.
- Experience with malware analysis concepts and methods.
- Advanced Certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP.
- Experience in intelligence driven defense and/or cyber Kill Chain methodology
Vacancy expired!