Cyber Defense Operations Analyst, Mid in Fort Belvoir, VA at Booz Allen Hamilton

Date Posted: 3/6/2018

Job Snapshot

Job Description

Job Number: R0024781

Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.

Cyber Defense Operations Analyst, Mid

Key Role:

Apply knowledge of tactical to strategic level intelligence analysis of Cyber threats, vectors, and actors in support of Cyber defense and computer network operations. Advise on the uses of forensics, network vulnerability, and malware analysis to conduct both technical analysis of Cyber threats and events and all-source analysis of Cyber threats and their vectors and capabilities. Use both open source data and classified reporting to analyze and document the political, economic, social, and behavioral aspects of malicious Cyber activity. Provide situational awareness of local, regional, and international Cyber threats, including attribution analysis of Cyber organizations, programs, capabilities, motivations, and intent to conduct Cyberspace operations.

Basic Qualifications:

-3+ years of experience with network security

-2+ years of experience as an information security analyst or engineer

-Knowledge of log management and Security Information and Event Manager (SIEM) tools usage and architecture

-Knowledge of using event escalation and reporting procedures and supporting network investigations

-Knowledge of TCP/IP communications and how common protocols and applications work at the network level and network monitoring, analysis, troubleshooting, and configuration control technologies

-Ability to explain current information security threats, including DDoS, botnets, malware, Advanced Persistent Threats (APT), buffer overflows, SQL injection, and phishing

-Ability to develop use cases for detecting malicious and suspicious activity

-Ability to perform work from 1400-2200 (2PM-10PM), Monday-Friday

-TS/SCI clearance

-Security+ and CEH Certifications or DoD 8570 CSA+ Certification

Additional Qualifications:

-Experience with working in a 24/7 Security Operations Center (SOC) preferred

-Experience with scripting, including Perl, Python, and PowerShell

-Experience with deploying, configuring, or using log management and SIEM tools, including Splunk, LogRythym, McAfee ESM, IBM QRadar, and ArcSight Logger and ESM

-Experience with incident response, incident handling, or triage analysis
-Possession of excellent analytical, critical thinking, logic, and solution–orientation skills

-Possession of excellent oral and written communication skills

-BA or BS degree in Engineering, CS, Information Security, or Information Systems preferred

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions.  Booz Allen is committed to delivering results that endure.

We are proud of our diverse environment, EOE, M/F/Disability/Vet.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.