Logo
Tyto Athene, LLC

Cybersecurity Analyst

Tyto Athene, LLC, Honolulu, HI, United States


Tyto Athene is searching for a Cybersecurity Analyst located at Ford Island in Honolulu, Hawaii to support GSM-O II Network Assurance in providing for the integrity and security of cyber systems and networks for the Defense Information Systems Agency’s (DISA) global Information Technology enterprise.

Responsibilities:

  • Monitors systems and networks for unauthorized infiltration, modification, destruction, exfiltration, or disclosure.
  • Analyzes volumes of logs, network data, and output from firewalls, intrusion detection systems, and enterprise anti-virus systems in support of investigations for information systems security violations and incidents.
  • Conducts cyber threat intelligence analysis, develops correlation techniques, correlates actionable cybersecurity events, participates in the coordination of resources during incident response efforts, and reports and tracks incident findings and resolutions to customers that include trends, responses, and mitigation actions.
  • Researches and reports on network threats, attacks, attack vectors, and methods of exploitation with a comprehension of cyber threat actor tactics, techniques, and procedures.
  • Assesses, plans, and enacts measures including refinements to cybersecurity architecture, tools configurations, and detection signatures to help protect customers from security breaches and attacks on its computer networks and systems.
  • Identifies and assesses solutions for automating cybersecurity analysis tasks.

Qualifications:

  • Minimum of two (2) years of relevant experience.
  • Minimum active Secret clearance in DISS. Active Top Secret with SCI access preferred.
  • DoD 8570 Compliant for IAT Level II or above: Possess a CASP+ CE, CCNA Security, CCNP Security, CCSP, CISA, CISSP (or Associate), CND, CySA+, GCED, GCIH, GICSP, GSEC, Security+ CE, or SSCP certification.
  • DoD 8570 Compliant for CSSP Analyst: Obtain a CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA+, GCIA, GCIH, GICSP, PenTest+, or SCYBER certification within 6 months of start date.
  • Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.
  • Understanding of Anti-Virus, HIPS/HBSS, IDS/IPS, Full Packet Capture, Network Forensics, and complex technical reports on analytic findings.
  • Understanding of malware analysis concepts and methods.
  • Understanding of Unix/Linux as well as scripting and programming.