Logo
GovCIO

Sr Cyber Security Associate

GovCIO, Scott Air Force Base, Illinois, United States,


Overview

GovCIO is currently hiring for Cyber Operator (CPT) to execute, hunt and clear missions. This position will be located in Shiloh Valley Township, IL and will be and onsite only position.

Responsibilities

Correlates threat data from various sources to establish the identity and modus operandi of hackers active in client's networks and posing a potential threat. Provides the customer with assessments and reports facilitating situational awareness and understanding of current cyber threats and adversaries. Develops cyber threat profiles based on geographic region, country, group, or individual actors. Produces cyber threat assessments based on entity threat analysis. May provide computer forensic and intrusion support to high technology investigations in the form of computer evidence seizure, computer forensic analysis, data recovery, and network assessments. Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption.

Collaborates with intrusion analysts to identify, report on, and coordinate remediation of cyberthreats to the client.

Provides timely and actionable sanitized intelligence to cyber incident response professionals.

Leverages technical knowledge of computer systems and networks with cyber threat information to assess the client's security posture.

Conducts intelligence analysis to assess intrusion signatures, tactics, techniques and procedures associated with preparation for and execution of cyber-attacks.

Research hackers, hacker techniques, vulnerabilities, exploits, and provides detailed briefings and intelligence reports to leadership.

Serve on a Cyber Protection Team (CPT) in a Cyber Security Host Analyst position.

Conduct cyber threat hunting, network navigation, tactical forensic analysis, forensic collection of digital artifacts and other valuable operational data, and when directed, execute operations in support of defensive initiatives.

Provide support for persistent monitoring of all designated enclaves and systems.

Interpret, analyze, and document findings in reports in accordance with computer network directives, including initiating, responding, and reporting discovered events.

Manage and execute first-level responses and address reported or detected incidents.

Qualifications

High School with 9+ years (or commensurate experience)

Clearance:TS/SCI – Eligible; Top Secret with the ability for SCI nomination

Required Skills and Experience

DoD 8570 IAT Level III certification (current)CompTIA Advanced Security Practitioner+ Continuing Education (CASP+ CE), Cisco Certified Network Professional (CCNP) Security, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP) (or Associate), GIAC Certified Enterprise Defender (GCED), GIAC Certified Incident Handler (GCIH), or Certified Cloud Security Professional (CCSP)

General knowledge of physical computer components and architectures, including the functions of computer domains, directory services, various components and peripherals, basic programming concepts, assembly codes, TCP/IP, OSI models, underlying networking protocols (e.g., DNS, ARP, etc.), security hardware and software

Strong knowledge of Windows Fundamentals and/or UNIX/Linux fundamentals, and adversary Tactics, Techniques, and Procedures (TTPs), such as initial access, credential access, privilege escalation, persistence, lateral movement, and exfiltration

Proficient in writing, editing, executing scripts on Windows, UNIX/Linux systems

Experience with toolsets such as the Elastic Stack, Arkime, Zeek, Wireshark, Metasploit, tcpdump, NMap, Nessus, Snort, EnCase, and Forensic Toolkit

General knowledge of cyber security frameworks, such as the Cyber Kill Chain, MITRE ATT&CK, and the NIST 800 series

Proficient in collecting and analyzing digital data, recording detailed notes, and documenting findings in reports

Candidate must be self-motivated and able to perform with minimal supervision

Travel may be required up to 25%

Must successfully complete, and maintain, mission qualification requirements

Preferred Skills and Experience

Host – Operating system certification (i.e., Linux+, Windows Server, GCIH, etc.)

Knowledge of virtualization concepts, technologies and tools, such as VMware/Virtual Box, Docker, Kubernetes, and Ceph

Familiarity with Cloud Computing concepts, technologies, and tools, such as AWS, Azure, and Google Cloud

Experience programming in C, C++, C#, Ruby, Perl, Python, SQLClearance Required: TS/SCI

*Pending contract award

#NSS

#DL

Company Overview

GovCIO is a team of transformers--people who are passionate about transforming government IT. Every day, we make a positive impact by delivering innovative IT services and solutions that improve how government agencies operate and serve our citizens.

But we can't do it alone. We need great people to help us do great things - for our customers, our culture, and our ability to attract other great people. We are changing the face of government IT and building a workforce that fuels this mission. Are you ready to be a transformer?

We are an Equal Opportunity Employer.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, or status as a protected veteran. EOE, including disability/vets.

Posted Pay Range

The posted pay range, if referenced, reflects the range expected for this position at the commencement of employment, however, base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, education, experience, and internal equity. The total compensation package for this position may also include other compensation elements, to be discussed during the hiring process. If hired, employee will be in an “at-will position” and the GovCIO reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, GovCIO or individual department/team performance, and market factors.

Posted Salary Range

USD $120,000.00 - USD $127,000.00 /Yr.

Submit a referral to this job (https://careers-govcio.icims.com/jobs/4824/sr-cyber-security-associate/job?mode=apply&apply=yes&in_iframe=1&hashed=-1834385473)

Location

US-IL-Scott AFB

ID

2024-4824

Category

Cyber Security Services

Position Type

Full-Time