Computer Network Defense Analyst in Indianapolis, IN at Booz Allen Hamilton Inc.

Date Posted: 6/28/2018

Job Snapshot

Job Description

Job Number: R0025942

Computer Network Defense Analyst

Key Role:
Serve as a Cybersecurity service provider analyst for an infrastructure program supporting a DoD client. Assist with monitoring, analyzing, detecting, and responding to Cyber events and incidents under supervision. Assist with supporting dynamic Cyber defense and delivering operational effects, including intrusion detection and prevention and situational awareness. Create, tune, and compile metrics of all security devices and documentation of processes and procedures. Identify security issues and risks and then develop mitigation plans. Work in a 24/7 security operations center (SOC) environment at an Indianapolis client facility, including maintaining direct contact with client management to provide analysis and trending of security log data from various security devices.
 

Basic Qualifications:
-3+ years of experience with incident handling, forensics, sensor alert tracking, or Cybersecurity case management
-1+ years of experience in a SOC
-Experience with Cybersecurity tools, including ArcSight, ACAS, or equivalent SIEM tools
-Experience with Cybersecurity forensics tools and methodologies
-Experience with network ports and protocols
-Experience with log review and analysis
-Secret clearance
-HS diploma or GED
-GCIH, CEH, or equivalent certification, including DoD 8570 IA Baseline or CND Incident Responder
 

Additional Qualifications:
-Knowledge of industry, government and DoD best practices, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors
-Knowledge of DoD system solutions to mitigate risk in any activity that potentially impacts the security of existing IT and information management
-Ability to work a 12am-12pm or 12pm-12am shift, including some weekends
-Ability to provide monitoring and risk analysis of zero-day and other vulnerabilities
-Ability to correlate disparate datasets to identify abnormal behavior
-Ability to triage SIEM events and determine escalation of indicators
-Ability to apply NIST, federal, and DoD guidelines, policies, directives, and memos as they relate to Cybersecurity
-Possession of excellent analytical, collaboration, and detail skills
-CCNA or Network+ Certification
-Computing Environment Certification, including McAfee, Blue Coat, RedHat, or Cisco
 

Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.