Cyber Incident Damage Assessment Triage Team Lead in Linthicum Heights, MD at Booz Allen Hamilton Inc.

Date Posted: 6/29/2018

Job Snapshot

Job Description

Job Number: R0031642

Cyber Incident Damage Assessment Triage Team Lead

Key Role:

Serve as a Cyber Incident Damage Assessment Triage Team Lead. Support the Air Force's Cyber Damage Assessment Management Office (AF DAMO) Service Lead under the Air Force directorate of chief information security officer, Cybersecurity Division (SAF and CIO A6ZC) at the DoD Cyber Crime Center (DC3) to produce damage assessment reports. Analyze large datasets using keyword search tools to identify Air Force program, technology, and weapon system information compromised during a potential intrusion into defense contractor’s unclassified networks. Comprehend loading and indexing digital media, bookmarking, and general use of data discovery tools. Author incident, damage assessment, and related reports, and lead teams of visiting subject matter Experts (SMEs) in analysis of files of interest to obtain damage assessment findings. Provide the AF DAMO team with insight and assessments of how the compromised information may impact the Air Force at an operations, program and acquisition level based on SME inputs. Prepare policy documents, information papers, executive summaries, including developing recommendations for process improvement, and quality assurance of products, including conducting presentations and briefings for the senior leadership.

Basic Qualifications:
-5+ years of experience with conducting research and analysis and writing reports as a primary author for Cyber Incident Damage Assessments

-3+ years of experience with providing briefings, training presentations, or communicating with individual groups within the Air Force

-2+ years of experience with using data discovery tools, including constructing search strings and queries for Cyber Assessments
-2+ years of experience with leading a small team Cyber Incidents
-Experience with Air Force programs, weapon systems, and technologies

-Knowledge of Cyber attack vectors and Cyber threat actors as recognized by DoD

-BA or BS degree or or 10 years of experience working in IT in lieu of a degree

Additional Qualifications:

-Experience with supporting an Air Force program office

-Experience working in an Air Force acquisition role 
-Experience with DoD processes, Army, Navy and Joint Command Programs, and weapon system development programs
-Experience with using and searching SIPRNet and JWICS
-Experience with managing small networks
-Experience with using FTK

-Experience with leading a small team

-Ability to be self-motivated

-Possession of excellent oral and written communication skills

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.


Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.