Y-Tech, LLC
COMPUTER NETWORK DEFENSE (CND) ANALYST (3 positions)
Y-Tech, LLC, Richmond, Virginia, United States,
Performs actions to protect, monitor, detect, analyze, and respond to unauthorized activity within assigned information systems and computer networks. Employs Cybersecurity capabilities and deliberate actions to respond to a CND alert or emerging situational awareness/threat. Serves as an expert on CND requirements and compliance to such requirements by using IA tools and techniques to perform compliance analysis and correlation, tracking and remediation coordination, and escalating CND non-compliance.
Provides technical analysis and sustainment support for the enterprise for IA tools and applications, and assists with the application of Defense-In-Depth signatures and perimeter defense controls to diminish network threats.
Minimum Experience:
Five (5) years relevant experience
Required Skills:
Must possess a current DOD Top Secret Clearance and be eligible for an IT-1 at time of proposal submission.
Relevant certification from a nationally recognized technical authority meeting DOD 8570.01 CSSP-IR.
Must possess and maintain CNDSP/CSSP-IR certification.
Computing Environment Certification (IA) Role/Function: Incident Response
Must possess experience working within a SIEM
Must possess experience analyzing logs from multiple sources such as system event logs, F5, Firewall, etc.
Must possess experience reviewing and analyzing network traffic through packet captures
Must possess written and verbal skills to appropriately document and brief cybersecurity incidents
#J-18808-Ljbffr
Provides technical analysis and sustainment support for the enterprise for IA tools and applications, and assists with the application of Defense-In-Depth signatures and perimeter defense controls to diminish network threats.
Minimum Experience:
Five (5) years relevant experience
Required Skills:
Must possess a current DOD Top Secret Clearance and be eligible for an IT-1 at time of proposal submission.
Relevant certification from a nationally recognized technical authority meeting DOD 8570.01 CSSP-IR.
Must possess and maintain CNDSP/CSSP-IR certification.
Computing Environment Certification (IA) Role/Function: Incident Response
Must possess experience working within a SIEM
Must possess experience analyzing logs from multiple sources such as system event logs, F5, Firewall, etc.
Must possess experience reviewing and analyzing network traffic through packet captures
Must possess written and verbal skills to appropriately document and brief cybersecurity incidents
#J-18808-Ljbffr