Cyber Network Security Analyst Job at Peraton, Arlington, VA

T0NKcHU1Q010bEZOZ2xMM2h3ejNpdHdlTGc9PQ==
  • Peraton
  • Arlington, VA

Job Description

Program Overview

About The Role

Peraton is hiring a Cyber Network Security Analyst for its' Federal Strategic Cyber programs.

Location: Arlington, VA 

As the world’s leading mission capability integrator and transformative enterprise IT provider, Peraton delivers trusted and highly differentiated national security solutions and technologies that keep people safe and secure. We serve as a valued partner to essential government agencies across the intelligence, space, cyber, defense, civilian, health, and state and local markets.

In this role, you will:  

  • Perform technical analysis on a wide range of cybersecurity issues, with a focus on network activity and data; this includes, but is not limited to network flow (i.e., NetFlow) or related forms of session summary data, signature-based IDS alert/event data, full packet capture (PCAP) data, proxy, and application server logs (various types).
  • Triage IDS alerts, collect related data from various network analysis systems, review available open and closed source information on related threats & vulnerabilities, diagnose observed activity for likelihood of system infection, compromise, or unintended/high-risk exposure.
  • Prepare analysis reports detailing background, observables, analysis process & criteria, and conclusions.
  • Analyze large volumes of network flow data for specific patterns/characteristics or general anomalies, to trend network activity and to correlate flow data with other types of data or reporting regarding enterprise-wide network activity.
  • Leverage lightweight programming/scripting skills to automate data-parsing and simple analytics.
  • Document key event details and analytic findings in analysis reports and incident management systems.
  • Identify, extract, and characterize network indicators from cyber threat intelligence sources, incident reporting and published technical advisories/bulletins.
  • Assess cyber indicators/observables for technical relevance, accuracy, and potential value/risk/reliability in monitoring systems.
  • Recommend detection and prevention/mitigation signatures and actions as part of a layered defensive strategy leveraging multiple capabilities and data types.
  • Develop IDS signatures, test, and tune signature syntax, deploy signatures to operational sensors, and monitor and tune signature and sensor performance.
  • Fuse open-source threat & vulnerability information with data collected from sensors across the enterprise into cohesive and comprehensive analysis.
  • Provide technical assessments of cyber threats and vulnerabilities.
  • Communicate and collaborate with analysts from other SOC organizations to investigate cyber events.
  • Produce final reports and review incident reports from junior analysts.
  • Monitor and report on trends and activity on network sensor platforms.
  • Produce and update technical analysis documentation (processes, procedures, analysis criteria, report templates, etc.).

#CISA

Qualifications

Minimum Requirements Are: 

  • 6 years related technical experience.  
  • Working knowledge of security concepts, protocols, processes, architectures, and tools (vulnerabilities, threats and exploitation, authentication & access control technologies, threat intelligence data and sources, WHOIS and DNS referential data and sources, intrusion detection/prevention capabilities, network traffic analysis, SIM technology, incident handling, media/malware analysis, etc.).
  • Working knowledge of networking concepts, protocols, and architectures (OSI-model, TCP/IP, major application protocols such as DNS/ LAN/WANs, VPNs, routers/routing, addressing, etc.).
  • Detailed knowledge of intrusion detection engines, capabilities, and signature formats in general, with a specific focus on Snort/Sourcefire variations and regular expressions (REGEX).
  • Understanding of ICS systems and components that make up an ICS environment
  • Know and explain the different devices and roles they have within an ICS environment
  • Experience analyzing ICS Network traffic with various tools (Wireshark, Bro/Zeek, etc.)
  • Knowledge of cyber policy & issues, the global cyber community, roles of major organizations how they interrelate and interact, and challenges in these structures.
  • Analyze host forensic data for possible malicious activity.  
  • Analyze a variety of OT, host, and network logs to determine intent.  
  • Utilize an OT network Sensor for network investigations.  
  • Awareness of the common cyber products and services, an understanding of their limitations, and a comprehensive understanding of the disciplines of cybersecurity.
  • Demonstrated ability to be innovative in solving problems and providing solutions.
  • Ability to produce results in a fast-paced environment with the ability to meet iterative deadlines.
  • U.S. citizenship required.
  • An active Top Secret security clearance with SCI eligibility required.
    • In addition, selected candidate must be able to obtain and maintain a favorably adjudicated DHS background investigation (EOD) for continued employment.

SCA / Union / Intern Rate or Range

Details

Target Salary Range: $112,000 - $179,000. This represents the typical salary range for this position based on experience and other factors.

EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.

Job Tags

Internship, Local area,

Similar Jobs

Central Maintenance & Service

Part Time Evening Cleaner Job at Central Maintenance & Service

 ...Greentree , PA, who is dedicated, consistent, organized, and proud of the work they produce. Our competitive wages and flexible start times are designed to fit your lifestyle and to help you reach your personal and professional goals. JOB DETAILS: ~ Monday-Friday ~... 

Greater Public

Digital Producer Job at Greater Public

Digital ProducerOPB Portland ,...  ...launch; building a special show page to host multiple episodes of a podcast or video series; contributing to strategy and planning efforts... 

Ladgov Corporation

Unarmed Security Guard Job at Ladgov Corporation

 ...Job Title: Unarmed Security Guard Location: Cleveland Duties: Observation: observe suspicious personnel or personnel behaving inappropriately and showing hostility. Monitor potentially unauthorized personnel. Assistance: assist Police and personnel with... 

Olympus Corporation of the Americas

Manufacturing Engineer - II Job at Olympus Corporation of the Americas

 ...achieve Our Purpose: Patient Focus, Integrity, Innovation, Impact and Empathy. Job Description The Manufacturing Engineer-II will improve and sustain operations of the value stream at Olympus Redmond. They will support daily manufacturing, optimize... 

Quest Diagnostics

Medical Laboratory Scientist II Job at Quest Diagnostics

 ...plans have been designed to promote employee health in all respects - physical, financial,...  ...Blueprint for Wellness healthyMINDS mental health program Vacation and Health/Flex...  ...from IERF (International Education Research Foundation). United States-educated candidates...