Experience Inc. Jobs

This job was posted by https://www.azjobconnection.gov : For more information, please see: https://www.azjobconnection.gov/jobs/6859356

• Program/Business Area Name: U.S. Army Global Cyber Center (GCC)
• Location: Sierra Vista, AZ Fort Huachuca
• Security Clearance: TS-SCI

Job Details/Position Summary:

The Defensive Cyber Operations (DCO) division within the U.S. Armys Global Cyber Center (GCC) is looking for a candidate with strong scripting abilities, experience with systems security administration, and network security technologies. The Forensics/Malware Senior Analyst will lead a team that will design, implement, automate, maintain, and optimize measures protecting systems, networks, and information.

Major Job Activities:

• Lead and examine malicious software using reverse engineering techniques to identify the nature of threats and perform analysis to understand adversarial capabilities and tactics.
• Develops procedures and scripts to identify, collect, transfer, and preserve evidence of unauthorized access to military and partner networks.
• Develops and maintains practices on obtaining forensic images of servers, workstations, laptops, flash devices, removable media, cell phones, RAID, and virtual systems.
• Oversees analysis of computer network intrusion events and malicious activity.
• Draft and review forensic and malware reports, briefings, and white papers.
• Analyze trends and statistics to provide proactive indications and warnings of malicious cyber activity and correlate attacks, exploits, and threat vectors.
• Develop mitigation techniques to deny further exploitation and provide recommendations for appropriate response and corrective actions to defend against threat activity.
• Shall work and interact with other DCO professionals internal and external to ARCYBER, with LE/CI Liaison Officers (LNOs), and intelligence professionals as a technical specialist to understand higher-level adversary capability.

Material & Equipment Directly Used:

• Basic Office Equipment.

Working Environment:

• Normal office environment.
• May require support during periods of non-traditional working hours including nights or weekends.

Physical Activities:

• Must be able to lift/push/pull 40 lbs. unassisted.

Qualifications:

• Education / Certifications:
• This position supports DCWF Work Role 541 (Advanced) and accordingly per DoD 8140.03 the candidate must possess GIAC Certified Forensic Analyst (GCFA) certification, AND one of the following DCWF requirements.
  • DCWF 541

OR

- - DOD/Military Training: 4-11-C32-255S (CP) or 4C-255N (CP) or 4C-255A (CP) or A-531-0009 or A-531-0022 or A-531-0045 or WSS 012

OR

- - Certification: CISSO or CPTE or CySA+ or CFR or FITSP-A or GCSA or GPEN or CCE or CISA or CISM or GCIH and GSNA - U.S. citizenship is required. - Active TS/SCI (Top Secret/Sensitive Compartmentalized Information) Security Clearance. - ITIL Foundations certification desired upon hire, required within three months of hiring date.

• Experience/Skills:
  • 5 years applicable experience working with various data (network and system) technologies, with a minimum of two of those years focused on information systems security, forensic and malware analysis.
  • Exceptional knowledge and experience with commercial binary analysis tools, threat intelligence and visualization technologies, visualization of quantitative (numerical) or qualitative information.
  • Excellent interpersonal, organization, writing, communicating, and briefing skills.
  • Excellent analytical and problem-solving skills. Must have a firm unders anding of security enclave engineering.

Supervisory/Budgetary Responsibilities:

• Acts in a technical based supervisory capacity.