Link Solutions
Link Solutions is hiring: Cyber Data Analyst in Hinesville
Link Solutions, Hinesville, GA, US
Company Description Link Solutions, Inc. delivers reliable and effective Information Technology services to government clients in support of critical mission needs. Delivering a broad range of Infrastructure Operations, Application Development, Cybersecurity, Virtualization, Cloud, and Mobility services. Link is quality and compliance-focused, under our guiding philosophy "Mission First, Customer Always". If you're looking for a technology company that values innovation, with a vision toward the future of the technology landscape, look no further than Link Solutions We are ISO 9001:2015, ISO 20000-1:2018, ISO 27001:2013 certified and appraised for CMMI ML3 for Services and Development. Job Description Links Solutions is seeking a Cyber Data Analyst to join our team at Fort Stewart, GA. Must be a US Citizen DoD Secret Clearance required Non-remote (relocation incentive available) The Cyber Data Analyst will assess infrastructure vulnerabilities and collaborate with stakeholders to produce advanced cyber analytics, visualizations, and risk-based reports. They will also lead the analysis and correlation of compliance and vulnerability data across the Ft. Stewart Regional Network Enterprise Center (RNEC) managed endpoints. This role involves identifying critical assets, mapping traffic patterns, integrating various cybersecurity tools (e.g., firewall logs, ACAS/Tenable, HBSS/Trellix, Microsoft MDE/EDR), and generating actionable insights through Power BI dashboards. Become an integral part of a professionally diverse team while working at an industry-leading organization. This is a great opportunity that will allow you to work on innovative projects that offer advancement and growth while helping protect our national security. Job Responsibilities: Critical Asset Identification & Network Analysis: Identify high-value assets within the RNEC's network and assess their security posture. Perform detailed network topology mapping, documenting traffic flows and analyzing east-west and north-south traffic patterns to assess vulnerabilities. Use tools such as Wireshark, TShark, or NetFlow to capture and analyze network traffic. Data Integration: Integrate data from firewalls, ACAS/Tenable vulnerability scanners, Trellix/HBSS endpoint protection, and Microsoft MDE/EDR into centralized systems. Implement secure API connections between these tools and Power BI or a SIEM to aggregate and normalize data for analysis. Risk and Vulnerability Assessment: Perform risk assessments by analyzing compliance, vulnerability, and traffic data to prioritize high-risk assets and vulnerabilities. Use data from ACAS for vulnerability scanning and compare it with the MITRE ATT&CK framework to understand how adversaries could exploit the vulnerabilities. Assess logs from EDR/MDE solutions to identify anomalous activities or indicators of compromise (IoCs). Security Tool Expertise: Maintain a comprehensive understanding of security tools and their data outputs, including firewall logs (Cisco ASA, Palo Alto), endpoint protection platforms (HBSS/Trellix), and vulnerability scanning tools (Tenable/ACAS). Identify how each tool's dataset correlates with others to provide comprehensive visibility of the network's security posture. Collaboration and Reporting: Collaborate with Government stakeholders to design security dashboards that reflect organizational needs, including compliance metrics, vulnerability trends, and Plan of Action and Milestones (POA&M) status. Lead efforts to produce reports and visualizations in Power BI that support proactive risk management and decision-making. Provide briefings and reports along with recommendations to enhance the organization's security posture to Senior Leadership. Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Qualifications Must be a US Citizen Active DoD Secret Clearance IAT Level II Certification equivalent or higher per DoD 8570/DoD 8140 (CompTIA Security CE, CCNA Security, GICSP, GSEC, SSCP, etc.). Seven (7) years of experience in Cybersecurity Operations and/or Systems Engineering specializing in endpoint protection, network security, and vulnerability management. Experience with cybersecurity tools (e.g., ACAS, HBSS, Microsoft MDE) Knowledge of IT infrastructure including networking, storage, and security in classified environments. Experience with hybrid infrastructures (on-premise and cloud environments) and familiarity with Azure or AWS security tools. Working knowledge of PowerBI and/or similar Analytics platforms Experience with Python or PowerShell to automate data ingestion and reporting processes. Preferred: BA/BS degree in Engineering, Computer Science, Information Systems, or a related field. IAT Level III Certification equivalent or higher per DoD 8570/DoD 8140 (CASP, CCNP Security, CISA, CISSP, GCED, GCIH, etc.). Experience working in a Department of Defense (DoD) environment. Experience providing quality service and support for mission-critical systems and VIP end users. Excellent communication skills (written and oral) and interpersonal skills. Superior organizational skills, attention to detail, and ability to prioritize and manage multiple tasks. Additional Information Link Solutions Inc. offers a competitive compensation and benefits package to include paid holidays, paid time off, medical, dental, vision, company-paid long and short-term disability, life insurance, referral bonuses, relocation incentive program, certification reimbursement program, retirement, and more. Link Solutions, Inc. is an EOE. AA/M/F/D/V. We participate in the E-Verify Employment Verification Program. All your information will be kept confidential according to EEO guidelines.