Job Description

At
Criterion Systems, we developed a different kind of business—a company whose
real value is a reputation for excellence built upon the collective skills,
talents, perspectives, and backgrounds of its people. Our differentiators:
employee-owned Federal government IT services contractor founded in 2005; high
employee retention rate because of excellent benefits and a focus on job
flexibility and work/life balance; leadership team comprised of individuals who
have successfully built and run businesses. We have grown our workforce each
year for the past seven years with annual growth of at least 30% in the past
four years! Our employees are the company’s most valuable assets. Are you
ready to be appreciated?
Criterion Systems’ rapid growth and a recent win
has created the need for anIntrusion Detection Analystbased at our Government
customer’s location in Alexandria, Virginia.
PRIMARY RESPONSIBILITIES:
This position will be a
member of the Cyber Security Operations Team with the responsibility of performing
as an Intrusion Detection Analyst. This
position requires providing superior technical knowledge and infrastructure
experience to successfully deliver the availability, security, and operations
of a varied and complex heterogeneous network. Knowledge of high-level
functional systems of analysis, design, integration, documentation and
implementation solutions is required. You will assist management and peers with
analysis and evaluation of new and existing products, preparation of
recommendations for system improvements, optimization, development, and
maintenance.
+ Cyber Security Intrusion
Detection, Incident Response, and Forensic Analysis
+ Manage,utilize, support, and monitor the customer’s tool suite;
requires familiarity and experience using the customer’s tools, technologies
and products:
+ EnCase, ForeScout CounterACT
Appliance, ForeScout CounterACT, HP Universal Configuration Management Database
(UCMDB), McAfee Endpoint Protection, McAfee ePolicy Orchestrator (ePO), McAfee
Application Control, RSA Archer, Splunk Enterprise, and Tenable Security Center
(SC)
+ Manage the licensing and end of life
of software and products
+ Assist with the creation and
maintenance of position run-books for relevant areas of responsibilities
+ Serve as the primary point of
contact for Managed Security Services monitoring, alerts, etc.
+ Provide 24x7 monitoring and incident
response capabilities, and Web-accessible audit logs in accordance with NIST Special
Publication (SP) 800-61 and applicable organization guidance
+ Assist in the deployment of
additional intrusion detection capability
+ Provide support during computer
cyber security intrusion/incident investigationsin accordance with NIST SP 800-61 and applicable
organization guidance
+ Establish the objectives
and data to be searched to determine whether inappropriate material exists
within the customer’s network
+ Establish target systems
along with identifying any special considerations; determine preferred scanning
times
+ Respond to audit Notice
of Findings (NFR) provided by Client (PBC) host audit request
+ Network Operations
Center (NOC) Support
+ Recommend services and
standards for supporting the end user computing environment/end users from the
perimeter endpoints
+ Periodically review
approaches and methods used in operation sustainment of assets and their impact
or risk to the NOC
+ Recommend Cyber Security
improvements to the operation of the service desk that will help ensure
compliance to Security Policy and regulations and that will minimalize vulnerabilities
+ Participate in groups
addressing cyber security related issues from escalated trouble tickets
+ Conduct post mortem
review and where opportunities from improvement are identified; provide
follow-up recommendations for improving NOC Tier 1 solutions
+ Provide a Monthly NOC
Performance Report detailing trouble ticket volumes, categories, etc. and
recommend improvements where possible
+ Support of Inspector
General (IG) Monitoring
+ Modernize the customer’s
established processes and procedures
+ Support the customer in
achieving a risk based and cost effective cyber security program compliant with
National Institute of Standards and Technology’s (NIST) Cyber Security
Framework areas
+ Identify, Protect,
Detect, Respond, and Recover
+ Identify, develop and
support the NIST procedures and artifacts for annual IG metrics
MINIMUM QUALIFICATIONS AND SKILLS:
+ Bachelor’s Degree or 4 years of experience can
be substituted
+ 3 Years of Experience within cyber security
+ US Citizen eligible for a NACI/Public Trust
clearance
PRE
Save Job