TrustedQA, Inc.
Host Based System Analyst (HBSA)
TrustedQA, Inc., Arlington, Virginia, United States, 22201
TrustedQA
(TQA)
provides remote and onsite advanced technical assistance, proactive hunting, rapid onsite incident response, and immediate investigation and resolution using host, network, and cloud-based cybersecurity analysis capabilities. Team personnel provide a front-line response for Digital Forensics / Incident Response (DFIR) and proactively hunt for malicious cyber activity.We seek a
Senior Host Based System Analyst (HBSA)
to support this critical customer mission. The HBSA will perform event correlation, assess network topology and device configurations, recommend security best practices, collect network intrusion artifacts (e.g., PCAP, domains, URI’s, certificates, etc.) and use discovered data to enable mitigation of potential incidents. As a technical forensics liaison to stakeholders, the HBSA will explain investigation details and provide updates to leadership through executive summaries and in-depth technical reports.This federal program requires U.S. Citizenship, an
active TS/SCI
clearance, and the ability to obtain Department of Homeland Security (DHS) Entry on Duty (EOD) suitability. The HBSA will support a hybrid remote schedule; two days in the Arlington, VA office weekly.We are interested in speaking to candidates with the following background:10+ years of directly relevant experience in cyber forensic investigations using leading edge technologies and industry standard forensic toolsIn-depth understanding of SaaS, PaaS, and IaaS in the Cloud EnvironmentAble to create forensically sound duplicates of evidence (forensic images)Experience authoring cyber investigative reports, documenting digital forensics findingsProficiency analyzing and characterizing cyberattacks; identifying attack stages and classes of attackKnowledge of cloud development and automation tools (e.g., Terraform, Kubernetes, AWS CloudFormation, Azure Resource Manager, and Docker)Understanding of system and application security threats and vulnerabilities, and the proactive analysis of systems and networks, to include creating trust levels of critical resourcesCompany Overview:Recognized as one of
2023 Top Workplaces , we offer excellent benefits, competitive compensation, and real career growth opportunities. At TQA, you have an opportunity to make an immediate impact on your team by providing innovative IT solutions and professional services support for missions of national significance covering Intelligence, Defense, and Federal Civilian customers.TQA is an equal-opportunity employer. TQA does not discriminate in employment based on race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factor.Pay Range: The salary range for this role is 130,000 USD - 185,000 USD; however, TQA considers several factors when extending an offer, including but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, geographic location, education, and certifications.Our employees value the balance between quality work and their personal lives that TQA provides. We offer competitive compensation, benefits, and learning and career development opportunities. Our broad and competitive mix of benefits options are designed to support and protect employees and their families' physical, mental, and financial health. Employment benefits include health and wellness programs, income protection, paid leave and life insurance, and retirement and savings.As a federal contractor, TQA is subject to all federal mandates and/or other customer requirements.Keywords: SaaS, PaaS, IaaS, forensic images, digital forensics, cyberattacks, Terraform, Kubernetes, AWS CloudFormation, Azure Resource Manager, Docker, M365, Azure, authentication, networking, virtualization, identity, security, business continuity, disaster recovery, enterprise, cloud native, API, PowerShell, Bash, Python, PowerShell, JS hunt tools, threat, GCLD, GCFR, GCFA, GCFE, GCIH, EnCE, CCE, CFCE, CISSP, CCSP, AWS certifications, Microsoft Azure certified
#J-18808-Ljbffr
(TQA)
provides remote and onsite advanced technical assistance, proactive hunting, rapid onsite incident response, and immediate investigation and resolution using host, network, and cloud-based cybersecurity analysis capabilities. Team personnel provide a front-line response for Digital Forensics / Incident Response (DFIR) and proactively hunt for malicious cyber activity.We seek a
Senior Host Based System Analyst (HBSA)
to support this critical customer mission. The HBSA will perform event correlation, assess network topology and device configurations, recommend security best practices, collect network intrusion artifacts (e.g., PCAP, domains, URI’s, certificates, etc.) and use discovered data to enable mitigation of potential incidents. As a technical forensics liaison to stakeholders, the HBSA will explain investigation details and provide updates to leadership through executive summaries and in-depth technical reports.This federal program requires U.S. Citizenship, an
active TS/SCI
clearance, and the ability to obtain Department of Homeland Security (DHS) Entry on Duty (EOD) suitability. The HBSA will support a hybrid remote schedule; two days in the Arlington, VA office weekly.We are interested in speaking to candidates with the following background:10+ years of directly relevant experience in cyber forensic investigations using leading edge technologies and industry standard forensic toolsIn-depth understanding of SaaS, PaaS, and IaaS in the Cloud EnvironmentAble to create forensically sound duplicates of evidence (forensic images)Experience authoring cyber investigative reports, documenting digital forensics findingsProficiency analyzing and characterizing cyberattacks; identifying attack stages and classes of attackKnowledge of cloud development and automation tools (e.g., Terraform, Kubernetes, AWS CloudFormation, Azure Resource Manager, and Docker)Understanding of system and application security threats and vulnerabilities, and the proactive analysis of systems and networks, to include creating trust levels of critical resourcesCompany Overview:Recognized as one of
2023 Top Workplaces , we offer excellent benefits, competitive compensation, and real career growth opportunities. At TQA, you have an opportunity to make an immediate impact on your team by providing innovative IT solutions and professional services support for missions of national significance covering Intelligence, Defense, and Federal Civilian customers.TQA is an equal-opportunity employer. TQA does not discriminate in employment based on race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factor.Pay Range: The salary range for this role is 130,000 USD - 185,000 USD; however, TQA considers several factors when extending an offer, including but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, geographic location, education, and certifications.Our employees value the balance between quality work and their personal lives that TQA provides. We offer competitive compensation, benefits, and learning and career development opportunities. Our broad and competitive mix of benefits options are designed to support and protect employees and their families' physical, mental, and financial health. Employment benefits include health and wellness programs, income protection, paid leave and life insurance, and retirement and savings.As a federal contractor, TQA is subject to all federal mandates and/or other customer requirements.Keywords: SaaS, PaaS, IaaS, forensic images, digital forensics, cyberattacks, Terraform, Kubernetes, AWS CloudFormation, Azure Resource Manager, Docker, M365, Azure, authentication, networking, virtualization, identity, security, business continuity, disaster recovery, enterprise, cloud native, API, PowerShell, Bash, Python, PowerShell, JS hunt tools, threat, GCLD, GCFR, GCFA, GCFE, GCIH, EnCE, CCE, CFCE, CISSP, CCSP, AWS certifications, Microsoft Azure certified
#J-18808-Ljbffr