Title: NetDef Analyst
Location: Herndon, VA
Clearance: Active TS/SCI w/ Polygraph needed to apply

Company Overview:
Cornerstone Defense is the Employer of Choice within the Intelligence, Defense, and Space communities of the U.S. Government. We focus on improving the overall work/life experience of our employees while supporting the mission. Our team uses their industry-leading knowledge to provide end-to-end solutions to combat our nation’s toughest problems. If you are looking for a place to be professionally challenged, encouraged, and supported by a caring company, consider Cornerstone Defense.

Responsibilities:

1. Provide malicious code detection, intrusion detection, and information security tool development and integration.
2. Utilize forensic analysis to identify malware, misuse, and/or unauthorized activity.
3. Investigate and report on virus and malware alerts or incidents to determine root cause, entry point of code, and damage risk.
4. Analyze all data sources, including Internet, Intelligence Community (IC) reporting, security events, firewall logs, and other data sources to identify malware, misuse, unauthorized activity, or other cybersecurity-related concerns.
5. Track intelligence using open source and classified sources to identify malicious code threats and provide solutions to counteract those threats.
6. Create, edit, and manage signatures, custom rules, and filters for specialized network defense systems, including but not limited to Network and host-based IDS, IPS, firewalls, Security Orchestration, Automation and Response (SOAR), and Security Information and Event Management (SIEM) systems.
7. Manage and administer the tuning of rules, signatures, and custom content for CND applications and systems.
8. Identify potential conflicts with the implementation of any CND tools within the enterprise and develop recommendations to remediate these conflicts.
9. Provide logical use case development.
10. Provide and track requirements to engineering partners.
11. Identify gaps in visibility or coverage of cyber defense systems.
12. Prepare data analytics and reporting.

Required Qualifications:

1. 2+ years of experience in Network Defense, Network Operations, Cybersecurity, Network Engineering, Security Engineering, Information Security, Systems Architecture, or Data Analysis.
2. Experience writing scripts in programming languages such as Python, JavaScript, Yara, or Snort.
3. Experience using SIEM tools for case development and application.
4. Experience with network security applications, protocols, and associated hardware.
5. Knowledge of enterprise cyber defense technologies such as SIEM systems, SysMon, network and host-based IDS and IPS, network and host-based malware detection and prevention, Endpoint Detection & Response (EDR), Network Detection & Response (NDR), forensics tools and applications, and cloud-based platforms such as Azure, AWS, or Google.
6. Active TS/SCI with polygraph clearance.

Preferred Qualifications:

1. Experience with MITRE ATT&CK.
2. Experience with Splunk or Splunk Enterprise Security.
3. Ability to demonstrate interpersonal, organizational, writing, communication, and briefing skills.
4. Ability to effectively use analytical and problem-solving skills.

Benefits Overview:

Cornerstone Defense offers a comprehensive benefits package including, but not limited to: Medical, Dental and Vision Plans; Generous PTO Policy; 401(k); HSA and FSA options; Life and Disability Insurance; Tuition Reimbursement and Training; Perks at Work Discount Program; Referral Program; Leads Generation Program; CollegeAmerica 529; Fitness Reimbursement Program; Travel Assistance; Norton Lifelock Benefit Solutions; Life Planning Financial & Legal Services.