ManTech
Cyber Security Analyst, Sr. Principal
ManTech, Springfield, Virginia, us, 22161
Currently, ManTech is looking for a highly skilled and experienced Cyber Security Analyst, Senior Principal to join our team. As a Cyber Security Analyst, you will be responsible for directly managing security incidents (e.g., coordinate documentation, work efforts, resource utilization within the organization) from inception to final after action reporting that supports our organization's business objectives.Responsibilities include but are not limited to:
Interacts with senior external personnel on significant technical matters often requiring coordination between organizations.Directly manages security incidents (e.g., coordinate documentation, work efforts, resource utilization within the organization) from inception to final after action reporting.Coordinates enterprise incident response efforts, including command and control functions, in response to cyber security incidents.Provides detection, identification, and reporting of possible cyber-attacks/intrusions, anomalous activities, and misuse activities.Characterizes and performs analysis of network traffic and system data to identify anomalous activity and potential threats to resources.Performs security event and incident correlation using information gathered from a variety of sources within the enterprise.Analyzes and assesses damage to the data/infrastructure as a result of cyber incidents.Writes and publishes cyber incident reports detailing incident findings and mitigation/remediation recommendations.Develops and documents incident response guidance, processes, and procedures.Considered a Lead and may manage the work of others.Minimum Requirements:
Minimum Education: B.S. or equivalent experience in related field.Minimum/General Experience: 10 years of related experience.Experience working in a Cybersecurity Operations Center environment desired.Experience with COTS technologies used in a Cybersecurity Operations Center environment desired.CSSP-IR (GCIH, CSIH, or CEH) certification required within 6 months.IAT Level II (GSEC, Security, SSCP, or CCNA-Security) certification required.Proficient in Windows and Linux operating systems.Working knowledge of current COTS Cybersecurity technologies.Working knowledge of database and operating system security.Understanding of latest security principles, techniques, and protocols.Ability to function in a fast-paced environment and effectively manage multiple tasks simultaneously; coordinating resources and ensuring scheduled goals are met.Excellent verbal and written communication skills are required.Ability to effectively interact with various levels of senior management is necessary.Ability to make decisions and resolve problems effectively.Seek out information and data to evaluate, prioritize and formulate best solution or practice.Must be able to multi-task, work independently and as part of a team, share workloads, and deal with sudden shifts in project priorities.Clearance Requirement:
Must possess an active TS/SCI w/CI polygraph.Physical Requirements:
Must be able to remain in a stationary position 50% of the time.Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine, and computer printer.The person in this position frequently communicates with co-workers, management, and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.
#J-18808-Ljbffr
Interacts with senior external personnel on significant technical matters often requiring coordination between organizations.Directly manages security incidents (e.g., coordinate documentation, work efforts, resource utilization within the organization) from inception to final after action reporting.Coordinates enterprise incident response efforts, including command and control functions, in response to cyber security incidents.Provides detection, identification, and reporting of possible cyber-attacks/intrusions, anomalous activities, and misuse activities.Characterizes and performs analysis of network traffic and system data to identify anomalous activity and potential threats to resources.Performs security event and incident correlation using information gathered from a variety of sources within the enterprise.Analyzes and assesses damage to the data/infrastructure as a result of cyber incidents.Writes and publishes cyber incident reports detailing incident findings and mitigation/remediation recommendations.Develops and documents incident response guidance, processes, and procedures.Considered a Lead and may manage the work of others.Minimum Requirements:
Minimum Education: B.S. or equivalent experience in related field.Minimum/General Experience: 10 years of related experience.Experience working in a Cybersecurity Operations Center environment desired.Experience with COTS technologies used in a Cybersecurity Operations Center environment desired.CSSP-IR (GCIH, CSIH, or CEH) certification required within 6 months.IAT Level II (GSEC, Security, SSCP, or CCNA-Security) certification required.Proficient in Windows and Linux operating systems.Working knowledge of current COTS Cybersecurity technologies.Working knowledge of database and operating system security.Understanding of latest security principles, techniques, and protocols.Ability to function in a fast-paced environment and effectively manage multiple tasks simultaneously; coordinating resources and ensuring scheduled goals are met.Excellent verbal and written communication skills are required.Ability to effectively interact with various levels of senior management is necessary.Ability to make decisions and resolve problems effectively.Seek out information and data to evaluate, prioritize and formulate best solution or practice.Must be able to multi-task, work independently and as part of a team, share workloads, and deal with sudden shifts in project priorities.Clearance Requirement:
Must possess an active TS/SCI w/CI polygraph.Physical Requirements:
Must be able to remain in a stationary position 50% of the time.Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine, and computer printer.The person in this position frequently communicates with co-workers, management, and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.
#J-18808-Ljbffr