The Sr. Cyber Security Analyst / Developer provides enterprise-wide cyber security services to the Veterans Affairs (VA) Enterprise Security Solutions Services (ESSS) and Enterprise Operations Center Services (EOCS) task orders. The ESSS and EOCS teams ensure that VA’s response to infrastructure security-related incidents, are both timely and efficient. Its goals are to recognize unauthorized activities, assess damage resulting from those activities, prevent widespread system contamination, and provide cost-effective tools and recovery services. This capability minimizes both the likelihood and impact of recognized risk and reduces the cost of recovery through early detection and response. Computer security incidents may include but are not limited to, computer viruses, unauthorized user activity, and denial-of-service attacks that compromise the integrity and availability of VA systems.
This position provides Cyber Security technical subject matter expertise (SME), and software development support services to various locations as needed nation-wide. The Sr. Cyber Security Analyst / Developer is responsible for responding, identifying, and resolving short-mid-long term issues. This professional must be able to evaluate, develop, implement, and provide long-term proactive support initiatives to VA’s Network Specialist, WAN managers and Information Security Officers.
Job responsibilities and requirements also include, but are not limited to:
Providing ESSS and EOCS related systems analytic administrative support.
Tracking incidents, problems, updates and ESSS and/or SOC changes enterprise-wide.
Detecting, tracking, documenting, responding, escalading events and incidents.
Providing status / incident reporting as required by the government Program Management Office.
Identifying categorizing, prioritizing, and investigating correlated events collected from firewalls, network devices, web proxies, intrusion detection / protection systems and anti-virus systems.
Monitoring incoming event queues for potential security incidents using ArcSight ESM or similar SEIM tools.
Performing investigation and triage of potential incidents and escalating as appropriate.
Managing and maintaining a knowledgebase along with monitoring security related configuration changes.
Monitoring / working off trouble ticket queue (ie: SOC queue) for potential event reporting.
Perform at a SME level and capable of managing developers to ensure proper requirements gathering, design, and coding standards are applied and employed enterprise-wide.
Requires BS/BA from an accredited college or related technical discipline, or the equivalent combination of education, professional training complimented by at a minimum, 5-10 years of full time work experience in Cyber Security analysis, development, incident response, or related INFOSEC experience as identified above.
IT background with extensive knowledge and proven expertise in the area of; BEA Secured Web-Enabled Development, Security Intrusion Detection, Prevention, Incident Response/Recovery, and Antivirus support services, with a strong emphasis, understanding and awareness, of Windows and IP based networking environments. Preference will be given to candidates with 5 years of hands-on computer forensics experience utilizing Splunk and Sourcefire. Initially must possess one or more of the following certifications, with an ability to obtain the remaining Certifications within the first 1.5 years of employed service; CISSP, CISSA, CISM, CITP or Cisco’s Certified Network Associate Certification (CCNA).
US citizenship is mandatory. Must be able to pass a government background check and obtain a Public Trust clearance High/BI security clearance level.
ACET, Inc. is an Equal Opportunity Employer
ACET - 30+ days ago