Job Description

Overview

The Defensive Cyber Operations (DCO) division within the USARCC-SWA is looking for a candidate with strong scripting abilities, experience with systems security administration, and network security technologies. The Cyber Threat Analyst will design, implement, automate, maintain, and optimize measures protecting systems, networks, and information.

This position offers company-paid housing and transportation, a completion bonus and tuition reimbursement program!

You must satisfy all host country requirements to legally work in the host country in order to be qualified for this position.

Responsibilities

+ Monitor, detect, analyze, and correlate events for potential threat activity utilizing Security Information Event Management (SIEM) systems, Big Data Analytics, and other supporting platforms or applications.

+ Investigate and identify the cause, source, and methodology of compromises or incidents.

+ Initiate computer incident handling procedures to isolate and investigate potential network information system compromises.

+ Perform trend analysis on events and incidents to identify and characterize threats.

+ Conduct open source research to identify commercial exploits or vulnerabilities (i.e., Zero - Day) requiring response actions.

+ Prepare formal comprehensive reports and presentations for both technical and executive audiences.

+ Configure and optimize software and hardware detection and prevention capabilities.

+ Perform host and network base signature development and standardization for implementation on end-point products or sensor grid.

+ Develop, document and refine Tactics, Techniques, and Procedures (TTP)

Qualifications

+ Qualifications:

+ Education / Certifications: One year of related experience may be substituted for one year of education if degree is required.

+ Bachelor's Degree or equivalent experience preferably in Computer Science or MIS, IS, Engineering or related field.

+ This position requires candidates to adhere to DoD 8570.01. All candidates are required to maintain at least one (1) baseline certification and one (1) computing environment (CE) certification. Baseline certifications cannot also be used as a Computing Environment (CE) certification. The authorized certifications for this job title are listed as follows:

+ IAT Level: CSSP Analyst

+ BASELINE:

+ Cisco: CCNA Security

+ Cisco: Cyber Ops

+ CompTIA: Cloud

+ + CompTIA: PenTest

+ + CyberSec: CFR: First Responder

+ EC-Council CEH: Certified Ethical Hacker

+ GIAC: GCFA: Certified Forensic Analyst

+ GIAC: GCIA: Certified Intrusion Analyst

+ GIAC: GCIH: Certified Incident Handler

+ GIAC: GICSP: Industrial Cyber Security Profession

+ COMPUTING ENVIRONMENT (CE):

+ Cisco: CCNP: Certified Network Professional (Any)

+ EC Council: ECIH: Certified Incident Handler

+ GIAC: GCDA: Certified Detection Analyst (preferred)

+ GIAC: GCFA: Certified Forensic Analyst

+ GIAC: GCIA: Certified Intrusion Analyst

+ GIAC: GCIH: Certified Incident Handler

+ GIAC: GCWN: Certified Windows Security Administrator

+ GIAC: GDAT: Defending Advanced Threats

+ GIAC: GREM: Reverse Engineering Malware

+ Microsoft: 365 Certified: Enterprise Administrator Expert

+ Microsoft: Certified: Azure Security Engineer Associate

+ Microsoft: Certified: Azure Solutions Architect Expert

+ Microsoft: MCSE: Core Infrastructure

+ Microsoft: MCSE: Database Management and Analytics

+ Microsoft: MCSE: Productivity Solutions Expert

+ Offensive Security: Certified Expert

+ Offensive Security: Certified Professional

+ Experience: One year of related academic study above the high school level may be substituted for one year of experience up to a maximum of a 4-year bachelor's degree in a Business Information Systems discipline for three years general experience.

+ At least five (5) years of practical experience working with various data (network and system) technologies, with a minimum of two of those years focused on information systems security, cyber threats and SIEM event analysis.

+ Experience with a customer service-oriented company

We are committed to an inclusive and diverse workplace that values and supports the contributions of each individual. This commitment along with our common Vision and Values of Integrity, Respect, and Responsibility, allows us to leverage differences, encourage innovation and expand our success in the global marketplace. Vectrus is an Equal Opportunity /Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, protected veteran status or status as an individual with a disability. EOE/Minority/Female/Disabled/Veteran.