TS/SCI – Cyber Incident Responder – Defense Counter – Measures Washington DC DIA HQS
Cyber Incident Responder – Defense Counter – Measures Washington DC DIA HQS
Functional duties consist of:
⦁ Performing Enterprise Defense Countermeasure (DC) activities and coordination with other government agencies to record and
prepare incident reports and analysis methodology and results.
⦁ Monitoring and analyzing signature alerts from Intrusion Detection/Prevention Systems (IDS/IPS) for false positives.
⦁ Providing technical enforcement of organizational security policies.
⦁ Providing “tune-or-drop” recommendations towards the DC team’s Signature Lifecycle Review procedure.
⦁ Provide insight to Detection and Response teams on signature functionality and providing signature tuning as needed.
⦁ Performing periodic and on-demand system audits and vulnerability assessments, including user accounts, applications access, file
system and external Web integrity scans to determine compliance.
⦁ Providing guidance and work leadership to less-experienced staff.
⦁ Communicating with customers and teammates clearly and concisely.
⦁ Maintaining current knowledge of relevant technology as assigned and may have supervisory responsibilities.
⦁ Participating in special projects as required.
⦁ May serve as a technical team or task leader.
Position may require evening, weekend or shift-work (depending on operational tempo).
STANDARD CHARACTERISTICS
o Identify and report detected events through persistent monitoring and analysis of indications and warnings (I&W) and attack, sensing, and warning (AS&W) indicators
o Respond to identified network or system cyber incidents
o Analyze, contain, eradicate malicious code
o Prepare and disseminate AS&W to enterprise and the CND-SP community
o Conduct cyber trend analysis as well as malware analysis
o Disseminate and report cyber related activities and trends
o Support or conduct CND/CI coordination and reporting to the organization, DoD, and IC
Skills and Tasks:
Exceptionally Complex, Inter-Discipline, Inter-Organizational. Can perform tasks of senior level technicians, specialists, and or managers not performed at Level 3 due to the size and/or complexity of the tasks.
o Leadership/Management. May work individually or as a key member of a senior leadership team. Oversees and monitors performance across several disciplines, and when required, takes steps to resolve issues.
o Guidance. Provides expert guidance and direction to Government and Vendor senior level technicians and managers. Directs multiple contractor and subcontractor teams through to project completion.
o Training and Certifications. DoD 8570 compliance or information assurance certification commensurate with technical objectives and services required within the task order. Applicable software or hardware training and certifications commensurate with the technical objectives, services required, and IT environment specified within the task order.
o Capabilities and additional Requirements. Apply Standard Characteristics of Labor Category Capability Levels.
o Education and Experience. HS/GED + 12 years
Associates Degree + 10 years
Bachelor’s Degree + 8 years
Master’s Degree + 6 years
PhD + 4 years
To apply for this job email your details to cybersecure@rainmakerbiz.com