Share Email Opening Apply Now
Title

Computer Network Defense (CND) Analyst 

Category Information Technology  
Description

Description:

The Computer Network Defense (CND) Analyst will provide Cyber Security Support to the Defense Logistics Agency (DLA).

Additional Responsibilities Include, but are not Limited To:

  • Perform actions to protect, monitor, detect, analyze, and respond to unauthorized activity within assigned information systems and computer networks.
  • Employ Cybersecurity capabilities and deliberate actions to respond to a CND alert or emerging situational awareness/threat.
  • Serve as an expert on CND requirements and compliance to such requirements by using IA tools and techniques to perform compliance analysis and correlation, tracking and remediation, coordination, and escalating CND non-compliance.
  • Provide technical analysis and sustainment support for the enterprise for IA tools and applications and assists with the application of Defense-In-Depth signatures and perimeter defense controls to diminish network threats.
  • Perform monitoring of DLA’s cybersecurity tools, triage of all alerts as well as analysis and response of all cybersecurity incidents.
  • Perform Threat Hunting to ensure proactive efforts are made to discover malicious activity and threats to DLA’s environment.
  • Incident Detection and Analysis:
    • Monitors cybersecurity tools for alerts and relevant dashboards for traces of system compromise.
    • Initiates incident response actions.
    • Correlates data from multiple sources to include host & network-based IDS & IPS, available log and packet capture data, data pulled by forensics tools, government & open-source intelligence.
    • Assesses the scope of suspected or confirmed cyber incidents and takes immediate action to prevent the spread of the activity.
    • Develops countermeasures such as custom SIEM and IDS rules/signatures to strengthen DLAs ability to prevent and detect attacks against DLA assets and data.
  • Incident Response:
    • Maintains an initial triage and response process for cybersecurity incidents.
    • Ensures proper reporting to law enforcement and intelligence groups in the event of incidents involving classified data spillages, incidents involving cleared defense contractors or where suspected criminal activity has occurred.
    • Works with DLA subscriber groups to identify operational or technical impact of an incident as well as the criticality of the system/data affected by the incident.
    • Supports DLA PMO incident response processes.
      • Coordination of countermeasure deployment
      • Maintaining incident escalation procedures
      • Maintaining point of contact for each subscriber
      • Participating in annual Incident Response Tabletop exercises as requested
  • Threat Hunting:
    • Provides recommendations for hunting targets within DLA’s network environments.
    • Uses tools defined in the Threat Hunting SOPs and TTPs to engage in Threat Hunting exercises at the direction of DLA CERT leadership.
    • Identifies potential detection signatures to assist in identifying threats to DLA’s environment and implement them.
  • Assist with proposal development, if necessary.
  • Perform other duties, as assigned.

Experience:

  • Five (5) years of relevant experience or related formal education.
  • Two (2) years of experience performing root cause analysis of cybersecurity events and incidents.
  • Two (2) years of experience analyzing network traffic and/or system logs.

Education:

  • Bachelor’s degree preferred.

Certificates, Licenses, Registrations:

  • DOD Approved 8570/8140 Baseline Certification: Category IAT Level II required.
  • DOD Approved 8570/8140 CSSP Certification: CSSP-IR required.

Other Required Skills & Abilities:

  • Must possess written and verbal skills to appropriately document and brief Cybersecurity Incidents.
  • Working knowledge of at least two cybersecurity areas:
    • Firewall
    • IDS/IPS
    • Host based antivirus
    • Vulnerability Management
    • Forensics
    • Malware Analysis
    • Device Hardening
  • Understanding of Defense-in-Depth.
  • Ability to build and read scripts in languages such as Perl, Bash, Powershell, Ruby, Python.
  • Must be able to effectively communicate with customer and fulfill all duties and responsibilities as listed in the contract.
  • Must be proficient in Microsoft Office suite including, but not limited to: Word, PowerPoint, Excel, and Outlook.

Security Clearance:

  • Top Secret security clearance required. Must be able to obtain a TS/SCI security clearance.

US Citizenship: This position supports a U.S. Government Contract whose terms require Sawdey Solution Services to staff it only with U.S. Citizens.

 
Full-Time/Part-Time Full-Time  
Requisition Category Proposal  
Req Number INF-23-00055  
Location Columbus, OH  
About the Organization Here at Sawdey Solution Services, an ISO 9001-14001 certified and CMMI-SVC v2 Level 3 appraised corporation, has built a nationwide and global footprint as a leading government contracting organization. Specializing in cybersecurity, systems engineering, and operational support, Sawdey invites you to be a part of a team that's at the forefront of securing our nation. Operating successfully since 2001, we are a Woman Owned/Service-Disabled Veteran Owned Business (WOSB/SDVOSB). Our mission is to provide employees with the best experience in a people focused, continuous process improvement environment. We are extremely proud of the culture we have created and encourage all prospective applicants to take a look at what other applicants and employees are saying about us:




Indeed Reviews:


Sawdey Indeed Reviews




Glassdoor Reviews:


Sawdey Glassdoor Reviews




Don't just take our word (and others' words) for it… We invite you to come experience Sawdey Solution Services!  
EOE Statement We are a Disabled-Veterans-41 CFR 60 1.4, Equal Opportunity Employer. Devoted to creating a diverse and friendly workplace, we do not discriminate against any employee or applicant because of race, age, sex, color, physical or mental disability, religion, sexual orientation, gender identity, marital status, national origin, or veteran status. Our goals and beliefs are that diverse backgrounds and experiences empower and enable us to offer our customers an unmatched level of service. People of color, women, LGBTQIA+, veterans, and persons with disabilities are encouraged to apply!  

This position is currently accepting applications.

Apply Now



WE ALSO RECOMMEND

Other Jobs Within Same Category
IT Support Technician in Plymouth, NH
Posted on: 2/8/2024
[Apply Now]

Cyber Security Engineer I in Columbus, OH
Posted on: 1/19/2024
[Apply Now]

Cyber Security Engineer III in Columbus, OH
Posted on: 1/19/2024
[Apply Now]

Cyber Security Engineer I in Richmond, VA
Posted on: 1/19/2024
[Apply Now]

Cyber Security Engineer III in Richmond, VA
Posted on: 1/19/2024
[Apply Now]


Other Jobs Within 60 Miles
LAN Engineer - Senior in Columbus, OH
Posted on: 3/9/2023
[Apply Now]

DLA Splunk Enterprise Log Management (ELM) Cybersecurity Engineer in Columbus, OH
Posted on: 8/16/2023
[Apply Now]

Cybersecurity Engineer – Insider Threat Protection in Columbus, OH
Posted on: 8/16/2023
[Apply Now]

Cybersecurity Policy Analyst in Columbus, OH
Posted on: 9/21/2023
[Apply Now]

Cyber Security Engineer I in Columbus, OH
Posted on: 1/19/2024
[Apply Now]



Follow us See who works here:
 


 
Click here for technical assistance.