ManTech
Cyber Security Analyst, Principal
ManTech, Springfield, Virginia, us, 22161
Currently, ManTech is seeking a motivated, career, and customer-oriented Cyber Security Analyst, Principal serving our Global customer in the Springfield, VA, area.
Responsibilities
include, but are not limited to:
Performs as the technical expert
Interacts with senior external personnel on significant technical matters often requiring coordination between organizations.
Directly manages security incidents (e.g., coordinate documentation, work efforts, resource utilization within the organization) from inception to final after action reporting.
Coordinates enterprise incident response efforts, including command and control functions, in response to cyber security incidents.
Provides detection, identification, and reporting of possible cyber-attacks/intrusions, anomalous activities, and misuse activities
Characterizes and performs analysis of network traffic and system data to identify anomalous activity and potential threats to resources.
Performs security event and incident correlation using information gathered from a variety of sources within the enterprise
Analyzes and assesses damage to the data / infrastructure as a result of cyber incidents
Writes and publishes cyber incident reports detailing incident findings and mitigation/remediation recommendations.
Develops and documents incident response guidance, processes, and procedures.
Considered a Lead and may manage the work of others
Basic Qualifications
:
Bachelor’s Degree with 7+ years of experience in Cybersecurity or 11+ years of total experience
Experience working in a Cybersecurity Operations Center environment.
Experience with COTS technologies used in a Cybersecurity Operations Center environment.
IAT Level II (GSEC, Security+, SSCP, or CCNA-Security) certification required.
CSSP-IR (GCIH, CSIH, or CEH) certification required within 6 months of hire.
Preferred Qualifications:
Experience with Windows and Linux operating systems.
Knowledge of database and operating system security.
Knowledge of latest security principles, techniques, and protocols.
Security Clearance Requirements:
TS/SCI w/Polygraph
Physical Requirements:
Must be able to remain in a stationary position 50% of the time
Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer
The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations
Responsibilities
include, but are not limited to:
Performs as the technical expert
Interacts with senior external personnel on significant technical matters often requiring coordination between organizations.
Directly manages security incidents (e.g., coordinate documentation, work efforts, resource utilization within the organization) from inception to final after action reporting.
Coordinates enterprise incident response efforts, including command and control functions, in response to cyber security incidents.
Provides detection, identification, and reporting of possible cyber-attacks/intrusions, anomalous activities, and misuse activities
Characterizes and performs analysis of network traffic and system data to identify anomalous activity and potential threats to resources.
Performs security event and incident correlation using information gathered from a variety of sources within the enterprise
Analyzes and assesses damage to the data / infrastructure as a result of cyber incidents
Writes and publishes cyber incident reports detailing incident findings and mitigation/remediation recommendations.
Develops and documents incident response guidance, processes, and procedures.
Considered a Lead and may manage the work of others
Basic Qualifications
:
Bachelor’s Degree with 7+ years of experience in Cybersecurity or 11+ years of total experience
Experience working in a Cybersecurity Operations Center environment.
Experience with COTS technologies used in a Cybersecurity Operations Center environment.
IAT Level II (GSEC, Security+, SSCP, or CCNA-Security) certification required.
CSSP-IR (GCIH, CSIH, or CEH) certification required within 6 months of hire.
Preferred Qualifications:
Experience with Windows and Linux operating systems.
Knowledge of database and operating system security.
Knowledge of latest security principles, techniques, and protocols.
Security Clearance Requirements:
TS/SCI w/Polygraph
Physical Requirements:
Must be able to remain in a stationary position 50% of the time
Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer
The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations