Sign Up Sign Up Log In Sign Up

Principal Cyber Incident Analyst Responder

Individuals collect and analyze event information and perform threat or target analysis duties. Provides operations for persistent monitoring on a 24/7 basis of all designated networks, enclaves, and systems. Interprets, analyzes, and reports all events and anomalies in accordance with Computer Network directives, including initiating, responding, and reporting discovered events. Manages and executes first-level responses and addresses reported or detected incidents. Reports to and coordinates with external organizations and authorities. Coordinates and distributes directives, vulnerability, and threat advisories to identified consumers. Provides daily summary reports of network events and activities and delivers metric reports.


Senior Analysts (SA) will supervise the technical execution of Incident Management functions as well as directly resond to severe network incidents. SA staff will use various techniques to discover and resolve evidence of malicious activity or open vulnerabilities on the MArine Corps Enterprise Network (MCEN). Technical execution will align with CJCSM 6510.01B "Information Assurance (IA) and Computer Network Defense (CND) volume 1 (Incident Handling Program)," dated 10 July 2012 or later. The Senior Analyst will analyze network anomalies identified from various sources, from IPS/IDS alerts to external and internal reporting. If these anomalies are deemed to be malicious activity, the SA will coordinate host and network wide mitigation strategies to remove malware and sever its communication channels. The Senior Analyst will also serve as an escalation point for junior analysts working similar activity.

Basic Qualifications:
- BS in Computer Science, Information Systems, or related degree with 5 years experience or 9 years experience in lieu of degree.
- Two (2) years computer Network Defense (CND) experience. Four (4) additional years of CND experience will be accepted in lieu of a degree.
- Advanced understanding of the OSI model and TCP/IP stack as well as it's well known ports and services.
- Knowledge of CND policies, regulations and compliance documents specific to the DoD.
- Familiarity with CJCSM 6510.01B
- Understanding of functionality and capabilities of computer network defense technologies, to include: Router ACLs, Firewalls, IDS/IPS, Anti-virus, Web content Filtering.
- Must have a DoD Secret Clearance
- Network Traffic and Packet Analysis
-System and file analysis
- 8570 compliant for IAT III CND Analyst or ability to become compliant within 180 days of hire: One of the following: CISA, GSNA or C|EH AND one (1) of the following: CISA, GSE, SCNA, GCIH, CASP or CISSP.


Northrop Grumman Corporation is a leading global security company providing innovative systems, products, and solutions in unmanned systems, cyber security, C4ISR, and logistics and moderninzation to government and commercial customers worldwide.

Preferred Qualifications:
- 8570 Compliant for IAT III CND Analyst
- One (1) of the following: CISA, GSNA or C|EH AND one (1) of the following: CISA, GSE, SCNA, GCIH, CASP or CISSP.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.

Company Name:
Security Clearance:
Secret
Location:
Quantico, Virginia
Country:
Salary:
Not Specified
Job Number:




Send me email alerts for similar jobs

JOIN US