Honolulu, HI Description: Our client is currently seeking a Information Assurance Analyst Information Assurance Analyst
Location: HI - Honolulu
One or more certs required - A CSSP-A certification (CEH, CFR, CYSA+, GCIA, GCIH, GICSP, or SCYBER).
Any Detection systems will work
Top Secret clearance required TS/SCI preferredLooking for a qualified Information Assurance Analyst to support our contract with USARPAC.Description of Responsibilities
Analyze and correlate anomalous events identified in Intrusion Detection System (IDS), Intrusion Prevention System (IPS), Security Information and Event Management (SIEM) systems, and supporting devices/applications. These devices, applications, tools, and data include, but are not limited to the following:
ArcSight SIEM (or similar capability), JIMS (Joint Incident Management System), HBSS (Host Based Security Systems), TCP (Transmission Control Protocol) Dump, Attack, Sensing, & Warning Sensors (Snort, Full Packet Capture (PCAP), Flow data, Pipeline and Super Mediator), McAfee Intrushield IPS, Router and firewall logs, Syslog data, Web Proxy / Reverse Proxy logs, SPLUNK, Big Data Platforms, NIKSUM and Cyber analytics applications and Netflow Data.
Analyze, correlate and trend anomalous events and incidents to identify and characterize the threat or incident in such a manner that will:
a) Identify the cause, source, and methodology of compromises or incident;
b) Identify and recommend network configuration changes in order to (IOT) deter the existing threat;
c) Configure and fine tune detection/prevention capabilities for IDS, IPS, SIEM, and supporting devices/applications;
d) Facilitate reporting and situational awareness to ARCYBER, DISA, CCMDs, and respective regional Theater Signal Commands;
e) Facilitate reporting to Law enforcement and Counter-Intelligence investigation agencies;
f) Update Incident Handling procedures, response guidelines, and checklists based on findings and lessons learned;
g) Submit forensically sound media images to ARCYBER F&MA as directed.Degree/Education/Certification Requirements
Bachelor's Degree in a related field, preferred.
Operating System Certifications: SNORT IDPS/IPS Training Certificate based on current market offerings (SNORT and/or Sourcefire experience highly preferred).
A CSSP-A certification (CEH, CFR, CYSA+, GCIA, GCIH, GICSP, or SCYBER).
Training IAW PWS Requirements: IA Awareness Training, as specified in AR 25-2; Antiterroism Level I; iWATCH; Level I OPSEC; TARP Training; Theater Specific TrainingRequired Skills and Experience
Knowledge and minimum 2 years of experience in Information Assurance Systems/Network Analysis Experience with Network intrusion detection system (NIDS) software such as SNORT Experience with Army Cyber Security (CS) guidance and regulations.CITIZENSHIP/SECURITY CLEARANCE REQUIREMENTS:
Top Secret Clearance will work - TS/SCI security clearance preferredPlease contact:Richard Bower, Technical Recruiter, Judge Technology Solutions12700 Park Central Drive, Suite 1070 Dallas, Texas 75251www.judge.comContact:
This job and many more are available through The Judge Group. Find us on the web at www.judge.com