Analyst – IA Enterprise Support

Recruiter
Location
Ft Bragg, North Carolina
Salary
Competitive
Posted
09 Nov 2016
Closes
07 Dec 2016
Ref
I2S0000VM
Contract Type
Permanent
Hours
Full Time
Analyst - IA Enterprise Support Job Description:

This IA technical support position will require someone who can conduct network audits, read and understand audit logs, and determine actions to be taken when discrepancies are detected. Will be required to configure policy and monitor network security using tools such as Slunk. Should be able to respond to network intrusions and be familiar with performing forensic investigation. Security incidents will be reported to the government within 30 minutes of detection. This IA technical support position will also conduct security evaluations and vulnerability assessments using Assured Compliance Assessment Solution (ACAS) and Security Technical Implementation Guides (STIG) and to liaison with network and system administrators to correct identified problems. The services provided by this contractor will help ensure USSOCOM Army Collateral and JWICS networks are well protected from both insider and outsider threat.

Analyst - IA Enterprise Support will be required to:
  • Perform network vulnerability scans using Nessus scanning tools.
  • Identify patch requirements and deliver reports with required actions to other SITEC Towers.
  • Use provided IA tools to monitor the network for malicious activity or intrusion.
  • Work closely with HQ USSOCOM and USASOC to resolve identified or suspected malicious activity.
  • Review IA architecture and identify weaknesses.
  • Review downward-directed IA guidance from venues outside standard policy documents, to include but not limited to CYBERCOM Operations Orders (OPORDS), Fragmentary Orders (FRAGOS), and Task Orders, to determine requirements for the site.
  • Use tools such as Host Based Security System (HBSS), Splunk, Sourcefire, Bluecoat, and other to monitor the network. Review network audit logs and determine actions to be taken when discrepancies are detected.
  • Respond to and report network intrusions and be familiar with incident management actions.
  • Monitor the network for trusted insider threat.
  • Assist with classified data spill detections and clean-up.
  • Assist with the submission of ports, protocols, and services change requests.
  • Assist with Command Cyber Readiness Inspection (CCRI) preparations.
Minimum Education/Experience Requirements: Bachelor's Degree in computer or systems science discipline and three (3) years of progressive, relevant experience or equivalent combination of education and experience. Experience with the US Combatant Commands (USCENTCOM/USSOCOM) is desired.



Required skills include:
  • IA Technical Level 2 required prior to start (i.e., Security+)
  • Working knowledge computer incident response procedures and techniques.
  • Must be comfortable with reviewing audit logs and searching for computer incidents.
  • Must have excellent communications skill (written and oral) and interpersonal skills.
  • Knowledge and experience with DOD IA processes and policies (e.g., CJCSM 6510.01, Incident Response and other IA policies).
  • ITIL V3 Foundations Certification preferred.

Active TS/SCI clearance required.



Essential Functions

Work Environment

Work will be performed inside a large facility. Work assignments vary based on client requirements. Position may require some night and weekend work. Some travel may be required based upon customer requirements.

Physical Requirements

Sitting at desk. Phone use and PC or laptop. Filing required. May require lifting and carrying boxes of supplies or files up to 25 lbs. Extended periods of sitting while on PC/laptop or phone.

Equipment and Machines

General office equipment, which includes: telephone, fax machine, copier, PC/laptop, and other miscellaneous office equipment.

Attendance

Work assignments dependent on requirements by the client. It is important to be able to work at least 8 hours a day for 5 days per week (Monday through Friday). Weekend/Holiday and extended work week hours may be required when TDY conducting Site training.

Other Essential Functions

Candidate must exhibit a professional behavior that promotes teamwork, fosters cooperation, and enhances productivity in the workplace. Must be well organized with the ability to coordinate, prioritize and execute multiple tasks simultaneously in a high-pressure environment. Ability to communicate verbally and in writing to work effectively with a variety of government, military and contractor personnel at all levels. Must be able to interface effectively with individuals at all levels of the organization. Grooming and dress usually business casual, but dependent on client's standards. Must not pose a safety hazard to employees working in the same general area.
The position for which you are applying for requires a US government security clearance. This is to advise you, that should you be extended an offer, if you possess a dual citizenship (i.e., citizen of the US and another country), in order to be granted a clearance you will be required to relinquish your citizenship in the foreign country.