ActioNet logo
.
[logo] ActioNet. Click here to return to ActioNet home.
 
Current Opening

Click on 'Apply Now' to submit your application for this position.

Cyber Incident Management Analyst
EducationBachelor's Degree
Experience05 - 06 years
Citizenship RequirementSole US Citizenship
Clearance RequiredDOE Q
LocationMD - Germantown
  
Job Responsibilities
The Cyber Incident Management Analyst processes cybersecurity-related incidents according to documented procedures and escalates to management as necessary within the Cyber Incident Management Center. The Cyber Incident Management Analyst will process incidents such as system compromise, website defacement, malicious code infection, and lost or stolen hardware. The Cyber Incident Management Center operates 24/7/365 and occasional shift work is required. The ideal candidate will have earned a bachelor’s degree in a technical field and has 3 years of help desk or other technical support experience.

o Support, escalate, and document cyber event reports
o Provide cyber event handling functions for cybersecurity events including, but not limited to: intrusion detection, malware infections, denial-of-service attacks, privileged account misuse, classified spillage, and other network breaches
o Take appropriate action on data obtained through customer reporting, open source research, and enterprise security tools

Skills Required

• Preferred Background:
o Bachelor’s degree in computer science, computer engineering, cybersecurity, information technology, or related subject matter, or equivalent professional experience
o Previous work or internship experience required within the following areas:
? Information Security
? Network/data center operations
? Systems Administration
o Currently holding a DOE Q-level or Top Secret security clearance
o Currently holding Security+, GCIA, GCIH, or CEH certifications
o Strong oral and written communication skills
o Working knowledge of networking technology and protocols.
o Hands-on experience in troubleshooting network devices.
o Hands-on experience with Windows and/or Linux operating systems as an administrative user
• Technical Requirements:
o Understanding of TCP/IP networking including knowledge of protocols and services
o Capable of interpreting packet captures and/or “netflow” data
o Administrator level knowledge of OS basics
o Understanding of Intrusion Detection and Prevention from both the network and host levels
o Understanding of intrusion detection/protection systems (Snort, Bro, Fire Eye, argus, SiLK, etc) and tools (tcpdump, Wireshark, nmap, etc)
o Understanding of network, desktop and server technologies, and other security related technologies such as Intrusion Detection Systems and Intrusion Protection Systems

• Requirements:
o Strong oral and written communication skills
o Ability to effectively communicate and translate highly technical information in a professional manner at all levels, including to high-ranking executives
o Aptitude for learning, be self-directed, and be capable of working in a fast paced operations environment
o 1–3 years of experience in a large IT enterprise or Government environment
o Perform shift work in 24/7/365 environment
o Ability to obtain and maintain a DOE Q-level clearance
o Obtain Security+ within 6 months and/or maintain active

Skills Preferred
o Bachelor’s degree in computer science, computer engineering, cybersecurity, information technology, or related subject matter, or equivalent professional experience
o Previous work or internship experience required within the following areas:
? Information Security
? Network/data center operations
? Systems Administration
o Currently holding a DOE Q-level or Top Secret security clearance
o Currently holding Security+, GCIA, GCIH, or CEH certifications
o Strong oral and written communication skills
o Working knowledge of networking technology and protocols.
o Hands-on experience in troubleshooting network devices.
o Hands-on experience with Windows and/or Linux operating systems as an administrative user
  
    
Photo of a woman
Did You Know? ActioNet has a mentor program designed to get you up to speed in your new job quickly...helping you succeed and grow with the company.

 

ActioNet Inc. is an Equal Opportunity/Affirmative Action Employer.