Apex Systems
Cyber Security Watch Officer Level 1 (Wed-Sat 1pm - 11pm)
Apex Systems, Fort George Meade, Maryland, United States,
Cyber Security Watch Officer Level 1 (Wed-Sat 1pm - 11pm)
Cyber Security Watch OfficerLocation: Ft Meade, MDPRIMARY RESPONSIBILITIES:Support the DJOC Battle Captain with all Cyber Defense and Network Assurance issues to include making recommendations regarding Indicators of Compromise (IOC), malicious cyber activity, and the overall security posture of our networks.Provide technical oversight of information security services and customer support initiatives, by updating DoD shared SA and knowledge management (KM) tools, including CMDNet, websites, blogs, and wikis, chat, collaboration tools, and portals.Consume and analyze operational reporting from cyber organizations; prepare and deliver daily situational awareness and operational update briefings, by coordinating with other cyber elements to obtain information for slides, briefings, presentations, or other SA products.Report DCO and incident management responses to network intrusions, malware, and other cyber events.Maintain awareness of all pertinent directives, orders, alerts, and messages to include the preparation and delivery of daily situational awareness and operational update briefings to DISA Senior Leadership.Oversee all network defense operations and be familiar with the operations process flow and execution. Coordinate and collaborate with internal DISA elements and mission partners to share the understanding and impact of day-to-day malicious cyber activity.Identify problems, determine accuracy and relevance of a broad range of technical information. Use sound judgment to generate, evaluate, and execute alternative courses of action. Produce timely, effective, decision-quality technical recommendations to support senior leadership.Coordinate and ensure DoD incident handling reporting procedures are adhered to in accordance with (IAW) DoD, CJCS, USCC, and DISA guidance, regulations, and directives. Review Commander Joint Chiefs of Staff Manual (CJCSM) 6510: Cyber Incident Handling Program.Serve as Senior Defensive Cybersecurity SME during 24x7 operations. Requires the ability to think independently and make decisions/recommendations which will have an immediate effect on the security of our networks.BASIC QUALIFICATIONS:Must have a DoD-8570 IAT Level 2 baseline certification (Security+ CE or equivalent) to start and must obtain CSSP-A certification within 180 days of start date.CND experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization. Requires a deep understanding and the ability to apply cybersecurity related principles, theories, and concepts.Demonstrated understanding of the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intelligence driven defense and/or Cyber Kill Chain methodology.Work independently and as part of a team to develop solutions to issues that are unclear and require deep technical knowledge.Experience in a 24x7 environment. This includes mentoring, training, and reviewing the work performed by more junior personnel.Experience recognizing situational awareness indicators and executing judgment of potential impact on mission operations.Ability to maintain Top Secret/SCI security clearance.PREFERED QUALIFICATIONS:Prior Military IT or IC ExperienceHands-on Experience working with DoD Networks including NIPR and SIPRWilling to perform Shift Work – Swing-shift hours: 1pm-11pm.Performs well under pressure and has the ability to multitask.Motivated, initiative-driven person with strong written and verbal communication skills, replying to official communications via email or phone, with the ability to report or speak to complex technical reports on analytical findings.Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and understanding of intrusion set tactics, techniques, and procedures (TTPs).
#J-18808-Ljbffr
Cyber Security Watch OfficerLocation: Ft Meade, MDPRIMARY RESPONSIBILITIES:Support the DJOC Battle Captain with all Cyber Defense and Network Assurance issues to include making recommendations regarding Indicators of Compromise (IOC), malicious cyber activity, and the overall security posture of our networks.Provide technical oversight of information security services and customer support initiatives, by updating DoD shared SA and knowledge management (KM) tools, including CMDNet, websites, blogs, and wikis, chat, collaboration tools, and portals.Consume and analyze operational reporting from cyber organizations; prepare and deliver daily situational awareness and operational update briefings, by coordinating with other cyber elements to obtain information for slides, briefings, presentations, or other SA products.Report DCO and incident management responses to network intrusions, malware, and other cyber events.Maintain awareness of all pertinent directives, orders, alerts, and messages to include the preparation and delivery of daily situational awareness and operational update briefings to DISA Senior Leadership.Oversee all network defense operations and be familiar with the operations process flow and execution. Coordinate and collaborate with internal DISA elements and mission partners to share the understanding and impact of day-to-day malicious cyber activity.Identify problems, determine accuracy and relevance of a broad range of technical information. Use sound judgment to generate, evaluate, and execute alternative courses of action. Produce timely, effective, decision-quality technical recommendations to support senior leadership.Coordinate and ensure DoD incident handling reporting procedures are adhered to in accordance with (IAW) DoD, CJCS, USCC, and DISA guidance, regulations, and directives. Review Commander Joint Chiefs of Staff Manual (CJCSM) 6510: Cyber Incident Handling Program.Serve as Senior Defensive Cybersecurity SME during 24x7 operations. Requires the ability to think independently and make decisions/recommendations which will have an immediate effect on the security of our networks.BASIC QUALIFICATIONS:Must have a DoD-8570 IAT Level 2 baseline certification (Security+ CE or equivalent) to start and must obtain CSSP-A certification within 180 days of start date.CND experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization. Requires a deep understanding and the ability to apply cybersecurity related principles, theories, and concepts.Demonstrated understanding of the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intelligence driven defense and/or Cyber Kill Chain methodology.Work independently and as part of a team to develop solutions to issues that are unclear and require deep technical knowledge.Experience in a 24x7 environment. This includes mentoring, training, and reviewing the work performed by more junior personnel.Experience recognizing situational awareness indicators and executing judgment of potential impact on mission operations.Ability to maintain Top Secret/SCI security clearance.PREFERED QUALIFICATIONS:Prior Military IT or IC ExperienceHands-on Experience working with DoD Networks including NIPR and SIPRWilling to perform Shift Work – Swing-shift hours: 1pm-11pm.Performs well under pressure and has the ability to multitask.Motivated, initiative-driven person with strong written and verbal communication skills, replying to official communications via email or phone, with the ability to report or speak to complex technical reports on analytical findings.Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and understanding of intrusion set tactics, techniques, and procedures (TTPs).
#J-18808-Ljbffr