Contact Us 877.823.3669

Tier 2 Shift Lead in Arlington, VA at SNI Technology

Date Posted: 2/12/2020

Job Snapshot

Job Description


Clearance:

  • Top Secret with the ability to obtain SCI


Job Duties:
***Will work Sun-Tues every or Thurs-Saturday 12 hour shifts either night or day***

  • Utilize state of the art technologies such as Endpoint Detection & Response tools, log analysis (Splunk) and possibly network forensics (full packet capture solution) to perform hunt and investigative activity to examine endpoint and network-based data
  • Conduct log analysis and triage in support of incident response
  • Recognize attacker and APT activity, tactics, and procedures as indicators of compromise (IOCs) that can be used to improve monitoring, analysis and incident response
  • Develop and build security content, scripts, tools, or methods to enhance the incident investigation processes
  • Lead Incident Response activities and mentor junior SOC staff
  • Work with key stakeholders to implement remediation plans in response to incidents
  • Effectively investigative and identify root cause findings then communicate findings to stakeholders including technical staff, and leadership


Experience Requirements:
Must have one of the following J3 Certifications:
GCIA - Intrusion Analyst, GREM - Reverse Engineering Malware, GPPA - Perimeter Protection Analyst, GISF - Security Fundamentals, GXPN - Exploit Researcher and Advanced Penetration Tester, GWEB - Web Application Defender, GNFA - Network Forensic Analyst, GMON - Continuous Monitoring Certification, OSCP (Certified Professional), OSCE (Certified Expert), OSWP (Wireless Professional), OSEE (Exploitation Expert), SEI (Software Engineering Institute), CCSP - Certified Cloud Security Professional, CISSP - Certified Information Systems Security, CCNA Security, CCNP Security, CEH - Certified Ethical Hacker, LPT - Licensed Penetration Tester, ECSA - EC-Council Certified Security Analyst, ENSA - EC-Council Network Security Administrator, CNDA - Certified Network Defense Architect, ECSS - EC-Council Certified Security Specialist, ECSP - EC-Council Certified Secure Programmer, ECES - EC-Council Certified Encryption Specialist, Cyber Analyst Course

  • Bachelors degree in Computer Science, Engineering, Information Technology, Cyber Security, or related field
  • Minimum of 7 years of professional experience in incident detection, response and remediation
  • Minimum of five (5) but (7) preferred years of specialized experience in one or more of the following areas:
    • Email security
    • Digital media forensic
    • Monitoring and detection
    • Incident Response
    • Vulnerability assessment and pen test
    • Cyber intelligence analysis
  • Must have at least the SANS or CCNA certification.
  • Extensive experience analyzing and synthesizing information with other relevant data sources, providing guidance and mentor-ship to others in cyber threat analysis and operations, evaluating, interpreting, and integrating all sources of information, and fusing computer network attack analyses with counterintelligence and law enforcement investigations



Desired Requirements:

  • Team Lead experience in a security related environment
  • Ability to coordinate and communicate well with team leads and government personnel
  • Provide weekly status reports and requested documentation
  • Experience in cyber government, and/or federal law enforcement
  • Experience with Cyber Kill Chain