Advanced Technologies and Laboratories International
Cyber Defense Incident Responder
Advanced Technologies and Laboratories International, Oak Ridge, Tennessee, United States, 37830
Cyber Defense Incident Responder Location US-TN-Oak Ridge Job ID 2024-10866 Overview Advanced Technologies and Laboratories (ATL), a Planned Systems International (PSI) company, is hiring a Cyber Defense Incident Responder for a position at the Department of Energy (DOE) Y12 plant which is a DOE and National Nuclear Security Administration (NNSA) site in support of the Information Solutions & Services (ISS) and Cybersecurity Program (CSP). This job description reflects the critical role you'll play in maintaining the network infrastructure at Y12. If you're ready to contribute to national security and work in a dynamic environment, we encourage you to apply Essential Functions and Job Responsibilities The Cyber Defense Incident Responder plays a crucial role in protecting the nation's energy infrastructure from cyber threats and is responsible for investigating, analyzing, and responding to cyber incidents within the network environment or enclave. This role requires a deep understanding of cyber defense tools and techniques to mitigate threats effectively. Compensation will be based on education and experience, with a greater emphasis on experience. Your responsibilities will include: Investigate, analyze, and respond to cyber incidents within the DOE's network environment. Coordinate and provide expert technical support to enterprise-wide cyber defense technicians to resolve cyber defense incidents. Correlate incident data to identify specific vulnerabilities and make recommendations for expeditious remediation. Perform analysis of log files from various sources (e.g., individual host logs, network traffic logs, firewall logs, IDS logs) to identify potential threats to network security. Conduct cyber defense incident triage, including determining scope, urgency, and potential impact, identifying specific vulnerabilities, and making remediation recommendations. Perform real-time cyber defense incident handling tasks (e.g., forensic collections, intrusion correlation and tracking, threat analysis, direct system remediation) to support deployable Incident Response Teams (IRTs). Receive and analyze network alerts from various sources within the enterprise and determine possible causes. Track and document cyber defense incidents from initial detection through final resolution. Coordinate with intelligence analysts to correlate threat assessment data. Perform cyber defense trend analysis and reporting. Coordinate incident response functions and collaborate with intelligence analysts to correlate threat assessment data. Minimum Requirements Must have a DOE "Q" clearance. Must have one of the following combinations of education and experience in a technical field (Compensation will be based on education and experience, with technical field experience weighted more heavily than minimum education.): PhD and limited experience or master's degree and 2 to 5 years of related experience or bachelor's degree and 5 to 10 years of related experience or associate's degree and 10 to 15 years of related experience. PhD and 2 to 5 years of related experience or master's degree and 5 to 10 years of related experience or bachelor's degree and 10 to 15 years of related experience or associate's degree and 15 to 20 years of related experience. Recognized as an expert in their field. PhD and 5 or more years of related experience or master's degree and 10 or more years of related experience or bachelor's degree and 15 or more years of related experience or associate's degree and 20 or more years of related experience. Recognized as an expert in their field. This level should be limited to a small population. Company Benefits PSI offers full-time, benefits eligible employees a competitive total compensation package that includes paid leave, and options for employer sponsored group medical, dental, vision, short-term and long-term disability, life insurance, AD&D coverage, legal services, identity theft, and accident insurance. Flexible spending account and health saving account options offer pre-tax savings for qualified medical, dental, and vision expenses. The company sponsored 401(k) retirement plan has an employer contribution match that is immediately vested. We invest in the professional growth of our employees through professional courses, certifications, and tuition reimbursement programs. EEO Commitment It is company policy to promote equal employment opportunities. All personnel decisions, including, but not limited to, recruiting, hiring, training, promotion, compensation, benefits, and termination, are made without regard to race, color, religion, age, sex, sexual orientation, pregnancy, gender identity, genetic information, national origin, citizenship status, veteran status, protected veteran status, disability, or any other characteristic protected by applicable federal, state, or local law. Reasonable accommodations for applicants and employees with disabilities will be provided. If a reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact Human Resources by emailing HRDepartmentplan-sys.com, or by dialing 703-575-8400.