Cyber Fusion & Threats Analyst

Apex Systems, LLC is immediately seeking a Cyber Fusion Analyst who is a self-starter, highly organized, is comfortable speaking with high ranking military personnel, and has a strong drive for quality. This position will support one of our highly regarded clients in the government arena, and offer a strong upside for growth. The qualified applicant will support the DODIN, recommending DOD-wide Computer Network Defense (CND) operational support and/or direction to all DOD components.Client: Enterprise Government Integrator Location: Fort Meade, MD Compensation: Competitive based on years of relevant experience Clearance: Able to maintain an active TS/SCI Clearance with the DODJob Description

• Provide requirements for a CND Common Operational Picture (COP) a distributed capability that provides local, intermediate, and DoD-wide visual situational awareness of CND actions and their impact; collaboration; and decision support. The CND COP is a view on the Network Operations Common Operational Picture (NETOPS COP).
• Centrally coordinate and/or recommend CND operations that impact more than one DoD Component.
• Provide Defense-wide situational awareness and attack sensing and warning through fusion, analysis and coordinated information flows.
• De-conflict Vulnerability Analysis and Assessments (VAA) and Red Teaming with CND operations, and recommend changes to in progress or planned VAAs that may negatively impact CND operations.
• Provide the Intelligence Community (IC) with priority intelligence requirements (PIR) and indications and warning requirements for potential attacks against DoD information systems and computer networks
• Ensure that all Computer Network Defense Service (CNDS) providers have continuous information exchange and work together in synchrony, i.e., simultaneously execute a single prescribed Course of Action (COA) and that at any given time, a new COA can override the existing one. Coordination among CNDS providers is primarily effected through the CNDS Certification Authorities (CNDS/CAs) on behalf and under the direction of the USCYBERCOM.
• Recommend Information Operations Conditions (INFOCON) changes in response to unauthorized activity (e.g., computer network attacks, computer network exploitation, system misuse), and to mitigate potential damage to DoD information systems and computer networks.
• Synthesize, summarize, consolidate and share potentially malicious activities on the DoDIN with DISA and mission partner organizations by creating incident reports, wiki updates, collaboration/chat tippers and notifications, DoD incident handling database queries, metrics, and trend reports

• Active TS/SCI security clearance
• Bachelor's degree in a relevant technical discipline and 8+ years of overall related experience, or Master's Degree 4+ years; OR 4 years of additional experience is accepted in lieu of a degree.
• Must have DOD 8570 IAT Level 2 certification (Security+ CE, or higher) to start
• Must be willing to obtain a CSSP-A cert w/n 180 days of start date (CEH, CFR, CCNA Cyber Ops, etc)
• Must have a Technical understanding in the following areas:
  • network communication using TCP/IP protocols
  • basic system administration
  • basic understanding of malware (malware communication, installation, malware types, and ransomware)
  • intermediate knowledge of computer network defense operations (proxy, firewall, IDS/IPS, router/switch, open source information collection)
• Must have strong hands-on experience with SEIM Tools such as (ArcSight, Nessus, Splunk, Wireshark, PCAP)
• Experience in an Operations Center providing Senior Leaders specified reports based on information received from supporting units.
• Have working knowledge of threat and vulnerability analysis, routing protocols, routing, intrusion detection systems, intrusion protection systems, Domain Name Service, or network traffic analysis

• Previous experience working with CNDS providers or working in a CNDSP (Computer Network Defense Service)
• Experience applying Kill Chain analysis, Cyber Intelligence Preparation of the Environment (CIPE) modeling, or Diamond modeling of cyber threat activity
• Hold one or more of the below certifications:
  • SANS: GIAC Certified Intrusion Analyst (GCIA) or GIAC Certified Incident Handler (GCIH)
  • (ISC) Certified Information Systems Security Professional (CISSP)
  • CompTIA Advanced Security Practitioner (CASP)
  • CompTIA Security+, Network+
  • EC-Council Certified Ethical Hacker (CEH)