Cyber Forensic & Intrusion Analyst

Quantico, VA


 Please go to our website to apply: https://www.caskgov.com/careers/openings/


POSITION: Cyber Forensic & Intrusion Analyst


LOCATION: Quantico, VA


STATUS: Funded


CLEARANCE: Active Secret Clearance Required


TRAVEL: Up to 25%


DESCRIPTION:


As a Junior Forensic & Intrusion Analyst, you will protect Technology infrastructure (including networks, hardware, and software) from a range of criminal activity. The Analyst will monitor networks and systems, detect security threats ('events'), analyze and assess alarms, and report on threats, intrusion attempts and false alarms, either resolving them or escalating them, depending on the severity.  This position performs technical validation and initial severity assessment of externally-reported web security vulnerabilities


Basic Qualifications:

  • Conduct network monitoring and intrusion detection analysis using various computer network defense tools, such as intrusion detection/prevention systems, firewalls, and host-based security systems.
  • Work with security information and event management (SIEM) to correlate events and identify indicators of threat activity.
  • Research emerging threats and vulnerabilities to aid in the identification of incidents.
  • Conduct log-based and endpoint-based threat detection to detect and protect against threats coming from multiple sources.
  • Correlate network, cloud, and endpoint activity across environments to identify attacks and unauthorized use.
  • Review alerts and data from sensors. Document formal, technical incident reports.
  • Provide customers with incident response support, including mitigating actions to contain activity and facilitate forensics analysis when necessary.
  • Work with threat intelligence and threat-hunting teams. Maintain awareness of threat intelligence sources.
  • Maintain awareness of current cyber threats, attack methodologies, and detection techniques using a wide variety of security products, including COTS and open source.
  • Assist in the evaluation of new analytical techniques and capabilities to determine how they can integrate into a managed security offering.
  • Support the investigation of large- and small-scale cyber breaches.
  • Communicate cyber events to internal and external stakeholders.
  • Knowledge of current DoD cyber security challenges and threats
  • Knowledge of common web application architecture and programming techniques, including common languages (e.g., JavaScript, PHP, SQL)
  • Familiar with Layer 2/3 network and security appliance capabilities; familiar with TCP/IP protocol stack
  • Strong verbal and written communication skills; ability to provide expert review of accurate and timely technical reports for release to external customers
  • Flexibility to adapt to dynamic work environment to meet organizational requirements
  • Ability to use sound judgement when conducting live testing to avoid or minimize impact to production services and data
  • Superior organizational skills to analyze, develop, and deliver detailed reports to meet short suspense windows
  • Aware of industry trends; IoT, ICS/SCADA, containerization technologies, Dev-Sec-Ops
  • Certifications (any): CEH, GCIH, Security+, CCNA Cyber Ops, GWAPT, GPEN, OSCP, OSWE


Desired Skills:

  • Certifications (any): CEH, GCIH, Security+, CCNA Cyber Ops, GWAPT, GPEN, OSCP, OSWE
  • Strong attention to detail and ability to prepare documents for customer review



Required Education: High School Diploma



Security Clearance: Active Secret


About Cask


Cask is a woman-owned small business (WOSB) founded in 2004 by a group of professionals who saw the need to help clients use and unlock the value of technology in more efficient, cost effective ways. Cask delivers business and technology advisory and consulting services to help our customers achieve success.


Cask is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, age, status as a protected veteran, among other things, or status a qualified individual with a disability.



EEO/Employer/Vet/Disabled

This position has been filled. Would you like to see our other open positions?