IC-CAP, LLC
Cyber Security Analyst-Level 4
IC-CAP, LLC, Washington, District of Columbia, us, 20022
This is a future position that may come open but is not open at the present moment. We are willing to prescreen personnel for these positions if you are interested .
Cyber Security Analyst :
Level 4 :
Investigates, analyzes, and responds to cyber incidents within a network environment or enclave.
Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.
Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events.
Evaluates, tests, recommends, coordinates, monitors, and maintains cybersecurity policies, procedures, and systems, including access management for hardware, firmware, and software.
Ensures that cybersecurity plans, controls, processes, standards, policies, and procedures are aligned with cybersecurity standards.
Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security.
Researches and evaluates new concepts and processes to improve performance.
Analyzes cross-functional problem sets, identifies root causes and resolves issues.
Develops techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks.
May coach and provide guidance to less-experienced professionals.
May serve as a team or task lead.
Education and Experience :
HSD/GED+12yrs
Associates+10yrs
Bachelors+8yrs
Masters+6yrs
PhD+4yrs
NOTE :
Relevant professional certifications will be considered equivalent to six (6) months of relevant experience .
Training and Certifications :
Incident Detect Team Members : GIAC Continuous Monitoring (GMON) or equivalent / Splunk Core Certified User / DoDD 8140/DoD 8570.01M CNDSP Analyst (CND-A) Baseline Certification
Incident Response Team Members : GIAC Continuous Monitoring (GMON) or equivalent / Splunk Core Certified User / DoDD 8140/DoD 8570.01M CNDSP Incident Responder (CND-IR) Baseline Certification
Defense Countermeasure Team Members : GIAC Continuous Monitoring (GMON) or equivalent DoDD 8140/DoD 8570.01M CNDSP Infrastructure Support (CND-IS) Baseline Certification
Malware Analysis Team Members : GIAC Reverse Engineering Malware (GREM) or equivalent DoDD 8140/DoD 8570.01M CNDSP Analyst (CND-A) Baseline Certification
Cyber Defense Fusion Team Members : GIAC Cyber Threat Intelligence (GCTI) or equivalent DoDD 8140/DoD 8570.01M CNDSP Analyst (CND-A) Baseline Certification
Security Auditing Team Members : DoDD 8140/DoD 8570.01M IAT Level III Baseline Certification DoDD 8140/DoD 8570.01M CNDSP Auditor (CND-AU) Baseline Certification.
Security Clearance :
Active TS SCI and the willingness to take a polygraph if needed.
Cyber Security Analyst :
Level 4 :
Investigates, analyzes, and responds to cyber incidents within a network environment or enclave.
Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.
Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events.
Evaluates, tests, recommends, coordinates, monitors, and maintains cybersecurity policies, procedures, and systems, including access management for hardware, firmware, and software.
Ensures that cybersecurity plans, controls, processes, standards, policies, and procedures are aligned with cybersecurity standards.
Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security.
Researches and evaluates new concepts and processes to improve performance.
Analyzes cross-functional problem sets, identifies root causes and resolves issues.
Develops techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks.
May coach and provide guidance to less-experienced professionals.
May serve as a team or task lead.
Education and Experience :
HSD/GED+12yrs
Associates+10yrs
Bachelors+8yrs
Masters+6yrs
PhD+4yrs
NOTE :
Relevant professional certifications will be considered equivalent to six (6) months of relevant experience .
Training and Certifications :
Incident Detect Team Members : GIAC Continuous Monitoring (GMON) or equivalent / Splunk Core Certified User / DoDD 8140/DoD 8570.01M CNDSP Analyst (CND-A) Baseline Certification
Incident Response Team Members : GIAC Continuous Monitoring (GMON) or equivalent / Splunk Core Certified User / DoDD 8140/DoD 8570.01M CNDSP Incident Responder (CND-IR) Baseline Certification
Defense Countermeasure Team Members : GIAC Continuous Monitoring (GMON) or equivalent DoDD 8140/DoD 8570.01M CNDSP Infrastructure Support (CND-IS) Baseline Certification
Malware Analysis Team Members : GIAC Reverse Engineering Malware (GREM) or equivalent DoDD 8140/DoD 8570.01M CNDSP Analyst (CND-A) Baseline Certification
Cyber Defense Fusion Team Members : GIAC Cyber Threat Intelligence (GCTI) or equivalent DoDD 8140/DoD 8570.01M CNDSP Analyst (CND-A) Baseline Certification
Security Auditing Team Members : DoDD 8140/DoD 8570.01M IAT Level III Baseline Certification DoDD 8140/DoD 8570.01M CNDSP Auditor (CND-AU) Baseline Certification.
Security Clearance :
Active TS SCI and the willingness to take a polygraph if needed.