Post Job Free
Sign in

Cyber Watch Officer

Company:
TEKsystems
Location:
Baltimore, MD
Pay:
95000USD - 105000USD per year
Posted:
May 07, 2025
Apply

Description:

Job Description

Must have a current Top Secret/SCI Clearance and CompTIA Security+ CE Certified

Location: Fort Meade, MD/ DISA Headquarters

Top Three Skills:

1) SIEM tool experience (ArcSight, Splunk, Wireshark, etc)

2) Experience conducting packet capture (PCAP) analysis

3) Familiarization with STIGS process and structure

Job Description:

The Cyber Security Analyst will enable Command and Control (C2) of the Department of Defense Information Network (DODIN) by ensuring its overall health through 24/7 monitoring, directing, controlling, coordination, de-conflicting, synchronizing, and reporting the current status to JFHQ-DODIN staff.

Identify and characterize cyber threats to Department of Defense Information Networks (DODIN) through intelligence, operational reporting, and network information Centrally coordinate and/or recommend CND operations that impact more than one DoD Component.

Coordinate Computer Network Defense (CND) operations with DoD Component Commands/Services/Agencies/Field Activities (CC/S/A/FA) and monitor and report effect of DCO-IDM operations on CC/S/A/FA missions.

Have knowledge of DoD Computer Network Defense with an understanding of the lifecycle of the network threats, attack vectors, and network vulnerability exploitation.

Primary Responsibilities:

Incident Handling

Triage of events

Network analysis and threat detection

Tend analysis

Metric development

Vulnerability information Dissemination

DoD CSSP Methodology

Required Experience/Qualifications

Experience coordinating and/or recommending CND operations that affect more than one DoD Component.

Experience conducting Packet Capture (PCAP) Analysis

Experience with security information and event management (SIEM) systems

Basic understanding of intelligence tool

Experience with and/or a working knowledge of the following :

Networking infrastructure: routers, switches, and web security gateway

TCP/IP Protocols and Services

Identification and Access Management

Firewalls, Access Control Lists

Intrusion Detection/Prevention Systems (IDS/IPS) Configuration Management

Demilitarized Zone (DMZ)

SIEM and JIMS Reports

Data backup/Data Loss Prevention (DLP)

Host Base Security Systems (HBSS)

Enterprise Mission Assurance Support Service (eMASS)

Full-time

Apply

Report this job