Full Time Employee
Cyber Security Analyst - NICS (Job Number:421864)
Has thorough knowledge of all aspects of incident response including identification, mitigation, detection, containment, resolution, and restoration to minimize loss and destruction to information technology systems assets and data.
Develops focused reporting and provides comparisons against advanced cyber threats and activity to identify false positives and false negatives
Provides correlation and trending of cyber incident activity
Participate in continuous improvement of Forensics and incident response processes and activities related to the piloted application.
Contribute to the improvement and development of the pilot application and system via procedures, manuals and documentation for Forensic investigations and advanced persistent threat detections.
Handles events that have been classified as incidents; including log analysis, forensic review of file systems on affected systems, malware analysis, and advanced investigation.
Must be able to present to different audiences and adjust accordingly (business, technical and management) either structured presentations or ad-hoc.
Must be able to establish and maintain business relationships with individual contributors as well as management.
Participate in special projects and performs other duties as assigned.
Education and Experience:
Bachelors and five (5) years or more of related experience; Masters and three (3) years or more related experience; PhD and 0 years experience.
Bachelor’s degree in an IT, Computer Science or related field or equivalent education or work experience and 5+ years of experience in information security, forensics, Cyber Security, and an in- depth understanding of highly complex network and internet-based systems, preferred.
Demonstrated experience with the various phases of digital forensics that involves acquisition, examination, analysis and reporting
Relevant security knowledge and experience in two or more of the following areas: Digital forensics, Malware analysis, Incident response, network/host intrusion detection or security operations
Excellent written and oral communication skills.
Self-motivated and able to work in an independent manner.
Solid working experience with any of the following tools/vendors is desired: Arcsight, Splunk, Wireshark, Riverbed, Sourcefire IDS or Cisco ASA. Certifications with these tools/vendors will be given extra consideration.
Must have at least two (2) certifications in the field of information technology. ** Certified Intrusion Analyst Certification (GIAC) is preferred **
Must possess an active Secret Clearance. (Ability to activate prior clearance held within the past 48 months will also be considered). Must be able to obtain a Top Secret clearance.
SAIC Overview:SAIC is a premier technology integrator providing full life cycle services and solutions in the technical, engineering, intelligence, and enterprise information technology markets. SAIC provides systems engineering and integration offerings for large, complex projects. Headquartered in McLean, Virginia, SAIC has approximately 15,000 employees and annual revenues of about $4.3 billion.
EOE AA M/F/Vet/Disability
Job Posting: Nov 28, 2016, 4:56:54 PM
Primary Location: United States-AL-HUNTSVILLE
Clearance Level Must Currently Possess: Secret
Clearance Level Must Be Able to Obtain: Top Secret
Potential for Teleworking: No
Shift: Day Job
To apply for this job, contact: