Job Description:</span>
</p>

• Conduct intrusion assessments (red/blue/hunt team activities) to validate compliance and identify exposures with existing defensive cyber operations software, tools, and systems. Identify exploitable vulnerable points and provide remediation recommendations.</span>
  </p></li>

• Collect and keep audit data in order to conduct a technical analysis relating to misuse, penetration, or other incidents.</span>
  </p></li>

• Develop tailored countermeasures to address identified threats and prevent or mitigate potential cyber event impacts to DCSA.</span>
  </p></li>

• This is a</span> partial Telework </span>position</span>
  </p></li> </ul>

  Education and Experience:</span>
  </p>

  • Bachelor’s Degree in Information Technology, Information Systems Management, or Cybersecurity and 7 Years- managerial Computer Network Defense or Cyber Operations experience</span>
    </p></li> </ul>

    Clearance Level:</span>
    </p>

    An Active </span>TS/SCI Clearance</span>
    </div></span>
    

    Requirements</h3>

    Basic Requirements:</span>
    </p>

    • Knowledge of standard </span>DISA Security Technical Information Guides, NIST SP 800-61, CJCSM 6510.01 B, United States Cyber Command guidelines, and other applicable DoD Cybersecurity and Computer Network Defense policies</span>
      </p></li>

    • Develop tailored countermeasures to address identified threats and prevent or mitigate potential cyber event impacts</span>
      </p></li>

    • Experience scoping and participating in red/blue testing in order to confirm/tune detection, alerting, and prevention systems</span>
      </p></li>

    • Demonstrated experience integrating multiple tools in a cyber defense architecture, getting maximum usage and efficiency from those tools, identifying gaps and recommending solutions to close/secure those gaps.</span>
      </p></li>

    • Experience developing and reporting metrics, preferably in a near-real time dashboard or common operating picture.</span>
      </p></li>

    • Develop, maintain, and provide a weekly brief that captures all of the cyber events including metrics and trends </span>
      </p></li>

    • Be able to maintain TS/SCI clearance and access to required commercial and/or DoD systems including NIPRNet, SIPRNet, and JWICS</span>
      </p></li>

    • Liaise with internal and external partners at all levels, government and private sector, in order to benefit the organization and provide for more uniform situational awareness and common defense</span>
      </p></li>

    • Lead SOC shift change briefings</span>
      </p></li>

    • Correlate warning intelligence and attack sensing and warning (AS&W) data to search for advanced, persistent, and coordinated threats across the enterprise</span>
      </p></li>

    • Analyze impact of cyber warning intelligence and AS&W</span>
      </p></li>

    • Led a team of 3 or more analysts in a cohesive and collaborative effort to proactively and reactively defend an enterprise network</span>
      </p></li> </ul>

      
      </div></span>
      </body></html>”}}],”isMobile”:false,”iframe”:”true”,”jobType”:”Full time”,”applyName”:”Apply Now”,”zsoid”:”652014469″,”FontFamily”:”Verdana, Geneva, sans-serif”,”jobOtherDetails”:[{“fieldLabel”:”Industry”,”uitype”:2,”value”:”Technology”},{“fieldLabel”:”Location”,”uitype”:1,”value”:”On Site”},{“fieldLabel”:”City”,”uitype”:1,”value”:”Quantico”},{“fieldLabel”:”State/Province”,”uitype”:1,”value”:”Virginia”},{“fieldLabel”:”Zip/Postal Code”,”uitype”:1,”value”:”22134″}],”headerName”:”Cybersecurity Engineer/Defense Operations Lead(Partial Telework)”,”widgetId”:”416438000000072311″,”isJobBoard”:”false”,”userId”:”416438000000179003″,”attachArr”:[],”customTemplate”:”3″,”isCandidateLoginEnabled”:false,”jobId”:”416438000008821853″,”FontSize”:”12″,”location”:”Quantico”,”embedsource”:”CareerSite”,”indeedCallBackUrl”:”https://recruit.zoho.com/recruit/JBApplyAuth.do”}