Cyber Defense Analyst - Military veterans preferred

2021-09-03
SAIC (www.saic.com)
Other

/yr

  full-time   employee


Oak Ridge
Tennessee
37830
United States

Description

SAIC is hiring a Cyber Defense Analyst in Oak Ridge, TN. The SAIC Cyber Defense Analyst role is responsible for monitoring and analysis of identified security events in support of the real-time 24/7/365 Security Operations Center’s monitoring capability. The Cyber Defense Analyst will perform daily operations utilizing a SIEM and monitor events from multiple sources including but not limited to firewall logs, system logs, network and host based intrusion detection systems, applications, databases, and other security information monitoring tools.

Note: This role offers temporary work from home / remote / virtual work due to COVID-19.  Eventually the work will go back on site 100% in Oak Ridge, TN once the COVID-19 threat has passed.

The Cyber Defense Analyst responds and reacts to events in the SAIC monitored environment and escalates for further analysis as needed. The individual shall perform computer network defense (CND) incident triage, to include:

  • Continuously monitor security event systems by utilizing the Security Operation Center’s security information and event management (SIEM) tool.
  • Provide initial response and support to potential intrusion or security breach alerts.
  • PCAP Analysis and correlated events.
  • Determining urgency, and potential impact.
  • Assist with analysis of actions taken by malicious actors to determine initial infection vectors, establish a timeline of activity and any data loss associated with incidents.
  • Perform documentation review and improvement.
  • Communicate and escalate issues and alerts as required by process or management.
  • Additional responsibilities including the support of Security Operations Center activities.

Qualifications

Required Education and Experience:

  • AA Degree in related discipline and one year related experience; Or, High School and two (2) years of related experience with relevant certification.
  • Must obtain the CompTIA Security+ certification within the first 4 months of employment.
  • Availability to work flexible hours in a 24x7x365 environment.
  • Must be a US Citizen. 


COVID Policy: Prospective and/or new employees will be required to adhere with SAIC's vaccination policy. Full vaccination will be required before the start of employment in order to work onsite at an SAIC location. If applicable, prospective or new employees may seek an exemption to the vaccination requirement at and must have an approved exemption prior to the start of their employment. Employees working onsite at a customer location must comply with customer requirements which may include mandatory vaccination, mandatory attestation regarding one's vaccination status and mandatory weekly or bi-weekly testing.


COVID Policy: Prospective and/or new employees will be required to adhere with SAIC's vaccination policy. Full vaccination will be required before the start of employment in order to work onsite at an SAIC location. If applicable, prospective or new employees may seek an exemption to the vaccination requirement at and must have an approved exemption prior to the start of their employment. Employees working onsite at a customer location must comply with customer requirements which may include mandatory vaccination, mandatory attestation regarding one's vaccination status and mandatory weekly or bi-weekly testing.