By Light Professional IT Services
Cyber Network Defense Analyst
By Light Professional IT Services, Arlington, Virginia, United States, 22201
Responsibilities:
Perform proof of concept testing for new DISA J6 Pentagon Voice products Evaluate new technologies and tools that will impact organization network and security Analyze proprietary and third-party software to identify and address security concerns Assess the organizations security architecture and scan code to identify vulnerabilities Perform defensive coding and remediation techniques Perform STIGs and scans to the DISA J6 Pentagon Voice network Provide security training and guidance for team members Review existing applications and software to identify security improvements Install, configure, and use new security tools implemented by DISA J6 Pentagon Voice network Develop and refine app and product security best practices Maintain documentation of application security controls Conduct penetration testing and provide maintenance, patching, retesting support Serve as a subject matter expert on common attack vectors and application security for developer teams and organization leadership Collaborate with all support staff members to better understand mandated application changes, updates, along with assigned routine maintenance(s) before deploying into the production environment. Working with DISA J6 IA Security team on an on-going basis to ensure Commercial-Off-The-Shelf (COTS) products comply with DISA security standards. Collaborating with technical troubleshooting staff from a multitude of technical/management disciplines to provide timely solutions and explanations to complex system related problems which impact DISA J-6 Pentagon Voice services whether in person, telephonically, or through electronic means. Able to produce and present After Action Report (AAR) Ability to troubleshoot utilizing tcpdump/packet capture/wireshark/ SIP tracing Developing and applying advanced methods, theories and research techniques in the investigation and solution of highly complex system requirements and system diagnostics of DISA J6 Pentagon Voice services Reviewing and assisting in authoring procedural literature to tasks and current practices to support DISA J6 Pentagon Voice Provide technical consultation on current and proposed systems to DISA J6 Pentagon Voice Government Leads Must be flexible to work after-hour support for maintenance, upgrades, emergency outage support to the system Required Experience/Qualifications:
Bachelors degree and/or 5+ years of related experience. 3+ years of experience in an IT role, preferably in an Engineering team Extensive experience managing enterprise-level network firewall and VPN technologies. Application firewall experience is a plus. Experience with Linux and Windows DoD 8570.01-M IAT Level II/8140 Computing Environment (CE) Certification as determined by the Program Manager is required prior to support on contract IAT II 8570/8140 Baseline Certification Security+ or equivalent Any combination of education or experience equivalent to a bachelors degree in information systems or related field Excellent troubleshooting and analytical skills. Excellent communication skills. Experience assessing vulnerabilities in business software and systems Experience establishing software development policies Experience with application design, risk assessment, and penetration testing Experience performing security assessments of VoIP Systems Container DevOps experience Proficient in at least one programming language such as Java, Perl, C++, or Python Deep knowledge of common security vulnerabilities Knowledge of architectural network diagrams Knowledge of secure development lifecycle principles Strong problem-solving and analytical skills Special Requirements/Security Clearance:
Must possess a Secret clearance
Perform proof of concept testing for new DISA J6 Pentagon Voice products Evaluate new technologies and tools that will impact organization network and security Analyze proprietary and third-party software to identify and address security concerns Assess the organizations security architecture and scan code to identify vulnerabilities Perform defensive coding and remediation techniques Perform STIGs and scans to the DISA J6 Pentagon Voice network Provide security training and guidance for team members Review existing applications and software to identify security improvements Install, configure, and use new security tools implemented by DISA J6 Pentagon Voice network Develop and refine app and product security best practices Maintain documentation of application security controls Conduct penetration testing and provide maintenance, patching, retesting support Serve as a subject matter expert on common attack vectors and application security for developer teams and organization leadership Collaborate with all support staff members to better understand mandated application changes, updates, along with assigned routine maintenance(s) before deploying into the production environment. Working with DISA J6 IA Security team on an on-going basis to ensure Commercial-Off-The-Shelf (COTS) products comply with DISA security standards. Collaborating with technical troubleshooting staff from a multitude of technical/management disciplines to provide timely solutions and explanations to complex system related problems which impact DISA J-6 Pentagon Voice services whether in person, telephonically, or through electronic means. Able to produce and present After Action Report (AAR) Ability to troubleshoot utilizing tcpdump/packet capture/wireshark/ SIP tracing Developing and applying advanced methods, theories and research techniques in the investigation and solution of highly complex system requirements and system diagnostics of DISA J6 Pentagon Voice services Reviewing and assisting in authoring procedural literature to tasks and current practices to support DISA J6 Pentagon Voice Provide technical consultation on current and proposed systems to DISA J6 Pentagon Voice Government Leads Must be flexible to work after-hour support for maintenance, upgrades, emergency outage support to the system Required Experience/Qualifications:
Bachelors degree and/or 5+ years of related experience. 3+ years of experience in an IT role, preferably in an Engineering team Extensive experience managing enterprise-level network firewall and VPN technologies. Application firewall experience is a plus. Experience with Linux and Windows DoD 8570.01-M IAT Level II/8140 Computing Environment (CE) Certification as determined by the Program Manager is required prior to support on contract IAT II 8570/8140 Baseline Certification Security+ or equivalent Any combination of education or experience equivalent to a bachelors degree in information systems or related field Excellent troubleshooting and analytical skills. Excellent communication skills. Experience assessing vulnerabilities in business software and systems Experience establishing software development policies Experience with application design, risk assessment, and penetration testing Experience performing security assessments of VoIP Systems Container DevOps experience Proficient in at least one programming language such as Java, Perl, C++, or Python Deep knowledge of common security vulnerabilities Knowledge of architectural network diagrams Knowledge of secure development lifecycle principles Strong problem-solving and analytical skills Special Requirements/Security Clearance:
Must possess a Secret clearance