Title: NetDef Analyst
Location: Herndon, VA
Clearance: Active TS/SCI w/ Polygraph needed to apply
Company Overview:
Cornerstone Defense is the Employer of Choice within the Intelligence, Defense, and Space communities of the U.S. Government. We focus on improving the overall work/life experience of our employees while supporting the mission. Our team uses their industry-leading knowledge to provide end-to-end solutions to combat our nation’s toughest problems. If you are looking for a place to be professionally challenged, encouraged, and supported by a caring company, consider Cornerstone Defense.
Responsibilities:
- Provide malicious code detection, intrusion detection, and information security tool development and integration.
- Utilize forensic analysis to identify malware, misuse, and/or unauthorized activity.
- Investigate and report on virus and malware alerts or incidents to determine root cause, entry point of code, and damage risk.
- Analyze all data sources, including Internet, Intelligence Community (IC) reporting, security events, firewall logs, and other data sources to identify malware, misuse, unauthorized activity, or other cybersecurity-related concerns.
- Track intelligence using open source and classified sources to identify malicious code threats and provide solutions to counteract those threats.
- Create, edit, and manage signatures, custom rules, and filters for specialized network defense systems, including but not limited to Network and host-based IDS, IPS, firewalls, Security Orchestration, Automation and Response (SOAR), and Security Information and Event Management (SIEM) systems.
- Manage and administer the tuning of rules, signatures, and custom content for CND applications and systems.
- Identify potential conflicts with the implementation of any CND tools within the enterprise and develop recommendations to remediate these conflicts.
- Provide logical use case development.
- Provide and track requirements to engineering partners.
- Identify gaps in visibility or coverage of cyber defense systems.
- Prepare data analytics and reporting.
Required Qualifications:
- 2+ years of experience in Network Defense, Network Operations, Cybersecurity, Network Engineering, Security Engineering, Information Security, Systems Architecture, or Data Analysis.
- Experience writing scripts in programming languages such as Python, JavaScript, Yara, or Snort.
- Experience using SIEM tools for case development and application.
- Experience with network security applications, protocols, and associated hardware.
- Knowledge of enterprise cyber defense technologies such as SIEM systems, SysMon, network and host-based IDS and IPS, network and host-based malware detection and prevention, Endpoint Detection & Response (EDR), Network Detection & Response (NDR), forensics tools and applications, and cloud-based platforms such as Azure, AWS, or Google.
- Active TS/SCI with polygraph clearance.
Preferred Qualifications:
- Experience with MITRE ATT&CK.
- Experience with Splunk or Splunk Enterprise Security.
- Ability to demonstrate interpersonal, organizational, writing, communication, and briefing skills.
- Ability to effectively use analytical and problem-solving skills.
Benefits Overview:
Cornerstone Defense offers a comprehensive benefits package including, but not limited to: Medical, Dental and Vision Plans; Generous PTO Policy; 401(k); HSA and FSA options; Life and Disability Insurance; Tuition Reimbursement and Training; Perks at Work Discount Program; Referral Program; Leads Generation Program; CollegeAmerica 529; Fitness Reimbursement Program; Travel Assistance; Norton Lifelock Benefit Solutions; Life Planning Financial & Legal Services.
#J-18808-Ljbffr