Cyber Security Incident Handler

at Chenega Corporation
Published April 16, 2019
Location Sierra Vista, AZ
Category Default  
Job Type Full-time  

Description

CHENEGA IT ENTERPRISE SERVICES, LLC
 

Company Job Title:

Cyber Security Incident Handler

 

 

Clearance:

TS/SCI

Location:

Fort Huachuca, AZ

Reports To:

Program Manager

FLSA Status:

Exempt, Full Time, Regular

 

 

 

 

 
Summary:
The Cyber Security Incident Handler’s primary responsibility is coordination of the response activities for cyber security incidents; providing guidance for reducing a large number of incidents to actual malicious threat determinations and mitigating those threats; providing Incident handling on-site for newly identified compromised system, updating Incident Handling procedures, response guidelines, and checklists based on findings and  lessons learned; providing Live Incident Handling Analysis.
 
Duties and Responsibilities:

  • Acts as Incident Commander for high impact cyber breaches and advanced attacks in accordance with Cyber Kill Chain methodology and incident response process.
  • Understands Incident Response processes and participate in analysis, containment, and eradication of cyber security events and incidents.
  • Conducts malware analysis and identification of Indicators of Compromise (IOCs) to evaluate incident scope and associated impact
  • Utilizes analytic experience to address cyber-attacks and mitigate indicators and correlations to identify attribution and potential threat and impact
  • Enhances workflow and processes driving incident response and mitigation efforts
  • Executes the Incident Response Lifecycle to drive threat remediation and identify strategic countermeasures improving future defenses
  • Performs analysis of logs from various security controls, including, but not limited to, firewall, proxy, host intrusion prevention systems, endpoint security, application and system logs, to identify possible threats to network security.
  • Analyzes security events in partnership with other support organizations to counteract malicious activity detected on the network.
  • Assists in conducting both Internet and conventional research to complete technical analysis and testing.
  • Assists in researching security events using complex technical and analytical tools and methods to protect customer information systems and networks.
  • Implements methods and tools that support Computer Network Defense Service Provider Program (CNDSP) operations in support of the customer's mission.
  • Analyzes security events using approved tactics, techniques, tools and procedures.
  • Performs intermediate-level risk analyses tasks, which also includes risk assessment.
  • Other duties as assigned

 
Minimum Qualifications: (To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.)

  • High School and 5 years similar experience, OR Associate’s Degree and 3 years’ experience, OR Bachelor’s Degree and 2 years’ experience
  • IT Level I; CSSP-IR; IAT II; Computing Environment Cert required
  • iWATCH; AR 25-2 - IA Awareness; AT Level I; Level I OPSEC; CUI; ALMS Security; AHIMA HIPAA – Privacy and Security training required
    TS/SCI clearance required

 

•**This position is contigent upon contract award***
 
Knowledge, Skills and Abilities:

  • Leadership and self-direction skills are highly desired.
    Ability to solve complex problems utilizing creative thinking skills.
  • Strong communication skills.
  • Ability to critically analyze and understand the systems and communicate system requirements to the customer and leadership.
  • Ability to travel as required.
  • Ability to meet eligibility requirements of a government security clearance for access to classified information
  • Ability to provide on-call support 24 hours a day, seven days a week.
  • Ability to work shift type schedule
  • Knowledgeable of Security/Information Assurance (IA) products such as PKI, VPN, firewalls, and intrusion detection and prevention systems

 
Physical Demands:(The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.)

  • While performing the duties of this Job, the employee is regularly required to sit and talk or hear. The employee is frequently required to walk; use hands to finger, handle, or feel and reach with hands and arms. The employee is occasionally required to stand; climb or balance and stoop, kneel, crouch, or crawl. The employee must occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision.

 
Work Environment: (The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job.)

  • The employee will normally work in a temperature-controlled office environment, with frequent exposure to electronic office equipment.
  • During visits to areas of operations, may be exposed to extreme cold or hot weather conditions.  Is occasionally exposed to fumes or airborne particles, toxic or caustic chemicals, and loud noise.

 
Chenega Corporation and family of companies is an EOE.
Equal Opportunity Employer Minorities/Women/Veterans/Disabled/Sexual Orientation/Gender Identity
Native preference under PL 93-638.
We participate in the E-Verify Employment Verification Program.