Employment Type : Full-Time
Secure our Nation, Ignite your Future Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International Corporation, you’ll help protect our national security while working on innovative projects that offer opportunities for advancement. Currently, ManTech is seeking a motivated, career and customer-oriented Cyber Security Watch Analyst to join our team at Fort Meade, MD . The Cyber Security Watch Analyst will work as part of a team in the JFHQ-DODIN Operations Center (JDOC) and will be assigned to an element that will focus on a designated area of operation (AO) within the DOD. Responsibilities include, but are not limited to: Obtaining and maintaining a working knowledge of the current status of Orders issued by JFHQ-DODIN, and subordinate organizations compliance with issued orders. Providing near real-time situational monitoring of an aligned AO to achieve, sustain, and present a near real time situational understanding of the AO’s operational environment, to include: Tracking ongoing operations, the posture and disposition of friendly forces and adversary activity Monitoring, consuming and analyzing operational, intelligence, and incident reporting. Monitoring and querying Security Information and Event Management (SIEM) tools (e.g., Splunk, ArcSight, McAfee Network Security Manager, etc.) for anomalous activity. Collecting, analyzing and distributing Indicators of Compromise (IOC) in support of the development and implementation of DOD countermeasures. Developing metrics to measure the effectiveness of practices and controls to mitigate threats and vulnerabilities; and developing dashboards that illustrate the effectiveness of risk mitigation over time. Coordinating DODIN Operations and Defensive Cyber Operations with DOD cyber components; obtaining situation reports, incident response efforts, and obtaining information for briefings, presentations, or other situational awareness products used to inform senior leadership. Basic Qualifications: Bachelor's degree in a relevant technical discipline and 6+ years of overall related experience; An additional 4+ years of information technology and/or cyber experience may be substituted in lieu of a degree. Must be able to work independently (where required) to achieve day-to-day objectives work and as part of a team. Knowledge of the DoD orders process. Knowledge of Cyber Incident Handling/Triage. Knowledge of Cyber vulnerability management cycle. Knowledge of Windows and/or Unix operating systems. Knowledge of LAN/WAN design and general internetworking technologies. Knowledge of security principles, approaches, and technologies (Defense-in-Depth). Knowledge of IT security architecture and design (firewalls, IDS/IPS, VPN, Endpoint protection). Experience with Microsoft Office (Outlook, Word, Excel, and PowerPoint) and Share point. Knowledge of Windows and/or Unix operating systems. Knowledge of LAN/WAN design and general internetworking technologies. Knowledge of security principles, approaches, and technologies (Defense-in-Depth). Knowledge of IT security architecture and design (firewalls, IDS/IPS, VPN, Endpoint protection). Excellent oral and written communication skills. Experience briefing Senior Leaders. SIEM Tool Experience. Preferred Qualifications: Knowledge of the DoD Information Assurance Vulnerability Management (IAVM) process. Knowledge of DOD Cyberspace Operations (JP 3-12). Knowledge of DOD’s Cyber Incident Handling Program (CJCSM 6510.01B). Knowledge of DODIN Transport (DODI 8010.01). Knowledge of Cybersecurity Activities Support to DODIN Operations (DODI 8530.01). Knowledge of the Cyber Mission Force (CMF) Construct. Familiarity with Joint Reporting Structure guidance (CJCSM 3150.05D, CJCSM 3150.07E). Familiarity with conducting risk assessments (NIST SP 800-30 Rev 1, Guide for Conducting Risk Assessments; DODIN Risk Assessment Methodology). Familiarity with enhancing trust in email (NIST SP 800-177, Trustworthy Email guidance). Working knowledge of DOD Security Technical Implementation Guide (STIG) Viewer. Working knowledge of Packet Capture (PCAP) and analysis (Noesis, Wireshark). Working knowledge of DOD Boundary and SIEM Tools (DISA Enterprise Collaborative Operational Sensor suite JRSS, etc.). DoD 8750 certification at IAT level II or higher; Security+ce. Security Clearance Requirements: Must be a U.S. Citizen with an active Top Secret with SCI eligibility (TS/SCI) Shift: This is a shift-work position; analyst maybe assigned to a day-shift, swing-shift (afternoon), or mid-shift (overnight); to include potentially weekends and/or holidays. Contract: The GSM-O 7-year contract is fully funded. Our GSM-O II re-compete has been awarded and is valid for an additional 10 years through 29 July 2030. POC: If interested, please apply to this position online/upload your resume and also directly contact our DISA GSM-O Recruiter, Everett Lucas, Everett.Lucas@ManTech.com 571-324-5975 (please send copy of your resume and certifications). Physical Requirements: Must be able to be in a stationary position more than 50% of the time. Constantly operates a computer and other office productivity machinery, such as a computer. The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations. #LI-EL1 ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law. If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services. If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click careers@mantech.com and provide your name and contact information.
JFHQ-DODIN is a component command of USCYBERCOM, and is aligned with the Secure, Operate, and Defend the DODIN mission area. JFHQ-DODIN executes Command and Control (C2) of DOD components that conduct DODIN operations and Defensive Cyberspace Operations-Internal Defensive Measures to ensure the DOD has a secure and reliable information infrastructure, and to minimize intrusion attacks.
Location : Ft. Meade, MD