Cyber Network Defense Analyst (CNDA)

Arlington, VA, US • Posted 10 hours ago • Updated 10 hours ago
Full Time
On-site
Fitment

Dice Job Match Score™

🧠 Analyzing your skills...

Job Details

Skills

  • Digital Forensics
  • Forensics
  • Acquisition
  • Network
  • Virtual Private Cloud
  • Google Cloud
  • Google Cloud Platform
  • Threat Analysis
  • Documentation
  • Incident Management
  • Emulation
  • Security Clearance
  • EOD
  • Computer Science
  • Cyber Security
  • Computer Engineering
  • SaaS
  • PaaS
  • IaaS
  • Reporting
  • API
  • Scripting
  • Windows PowerShell
  • Python
  • Bash
  • JavaScript
  • Cloud Computing
  • Orchestration
  • Terraform
  • Kubernetes
  • Microsoft Azure
  • Docker
  • GCFA
  • GCIH
  • CISSP
  • Cisco Certifications
  • Amazon Web Services
  • Microsoft
  • Cloud Security
  • Artificial Intelligence
  • Biometrics
  • Spectrum
  • Business Process

Summary

Our Partner provides remote and onsite advanced technical assistance, proactive hunting, rapid onsite incident response, and immediate investigation and resolution using host-based, network-based and cloud-based cybersecurity analysis capabilities. Team personnel provide front line response for digital forensics/incident response (DFIR) and proactively hunting for malicious cyber activity. They are seeking Cyber Network Defense Analysts (CNDA) with Cloud Forensics experience to support this critical customer mission.

Responsibilities
  • Conduct forensic acquisition and analysis from on-premises and cloud platforms (Entra ID/Azure AD, M365, AWS, Google Cloud Platform, SaaS) to identify compromise activity, persistence mechanisms, and data exfiltration
  • Investigate and respond to incidents and attacks targeting cloud and hybrid identity
  • Correlate cloud control-plane events and network telemetry (e.g., Azure Activity Logs, AWS CloudTrail, VPC Flow Logs) to reconstruct attacker timelines, validate IOCs, and identify post-compromise privilege escalation
  • Develop and operationalize detection logic and automation using cloud-native tools (Microsoft Defender, Sentinel, AWS GuardDuty, Google Cloud Platform Chronicle) and scripting (PowerShell, Python, Bash), integrating threat intelligence feeds and indicators
  • Produce technical reports, incident documentation, and containment recommendations integrating cloud, identity, and endpoint findings; support development of incident response playbooks and procedures for cloud and hybrid environments
  • Support cloud development and automation projects to enhance threat emulation, investigative, and hunting capabilities
  • Coordinate with internal teams, government staff, and external stakeholders to validate alerts and investigate preliminary findings
Requirements
  • U.S. Citizenship
  • Active TS/SCI Clearance
  • Ability to obtain Department of Homeland Security (DHS) Entry on Duty (EOD) Suitability
  • BS in Computer Science, Cybersecurity, Computer Engineering, or related field; OR HS Diploma with 7+ years relevant experience
  • 5+ years of experience in cyber forensic investigations with leading tools and techniques
  • Strong understanding of SaaS, PaaS, and IaaS in cloud environments, and hybrid identity security
  • Expertise in acquiring forensically sound evidence, analyzing attacks, and reporting findings
  • Knowledge of M365/Azure, hybrid identity, and threats targeting these solutions
  • Knowledge of AWS, IAM, and best practices for cloud identity security
Desired Skills
  • Strong API and scripting skills (PowerShell, Python, Bash, JavaScript) for automation and threat detection
  • Knowledge of common and advanced cloud attacks and techniques, and how to detect and mitigate these threats
  • Proficiency with cloud automation and orchestration tools (Terraform, Kubernetes, CloudFormation, Azure Resource Manager, Docker)
  • Certifications: GCLD, GCFR, GCFA, GCFE, GCIH, EnCE, CCE, CFCE, CISSP, CCSP, AWS or Microsoft Cloud/Security certifications

About Us
For more than 20 years, NewGen Technologies has solved our clients' toughest IT challenges with integrity, security, and outstanding service by delivering both technology and talent. We have helped secure borders, have used artificial intelligence (AI) to fight terror, aided the identification of criminals, and have helped to prevent crime through the introduction of biometrics. Our team of Highly Cleared Specialists have hard-to-find skills and expertise in a wide spectrum of technologies to provide solutions that transform business processes and solve problems of national significance. #CJ
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 10153280
  • Position Id: 170169578a87c7b671d36dea65884bf3
  • Posted 10 hours ago
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Sterling, Virginia

Today

Full-time

Arlington, Virginia

Today

Full-time

Arlington, Virginia

Today

Full-time

McLean, Virginia

Today

Full-time

USD 158,800.00 - 198,500.00 per year

Search all similar jobs