Cyber Detection Analyst (Various Shifts And Days)

Overview:At Criterion Systems, we developed a different kind of business—a company whose real value is a reputation for excellence built upon the collective skills, talents, perspectives, and backgrounds of its people. By accepting a position with Criterion Systems, you will join a group of professionals with a collaborative mindset where we share ideas and foster professional development to accomplish our goals. In addition to our great culture, we also offer competitive compensation and benefit packages, company-sponsored team building events, and advancement opportunities. To find out more about how Criterion can help you take your career to the next level please visit our website: www.criterion-sys.com.Responsibilities: Criterion Systems is seeking several candidates for various shifts as a Cyber Detection Analyst. These positions will be fixed shift, 4 days per week in McLean.
Available shifts are as follow:1st Shift- (Sunday-Wednesday)1st shift- (Wednesday- Saturday)2nd shift- (Wednesday-Saturday)
The ideal candidates will be responsible for, but are not limited to:

• Identifying misuse, malware, or unauthorized activity on monitored networks.
• Analyzing all relevant cyber security event data and other data sources for attack indicators and potential security breaches.
• Assisting in coordination during incidents.
• Identifying intrusions utilizing various detection and prevention systems and other security event data sources on 24x7x365 basis.
• Analyzing intrusion related data to determine root cause and identify follow on activity while coordinating with Incident Handlers, Hunters, and various partners.
• Correlating data from intrusion detection and prevention systems with data from other sources such as firewall, web server, and DNS logs, to include netflow, metadata, and pcap analysis.
• Contributing in tuning and filtering of events and information, creating custom views and content using all available tools.
• Reviewing assembled data with firewall administrators, engineering, system administrators and other appropriate groups to determine the risk of a given event.
• Contributing to the development of playbooks and procedures for handling each security event detected.

Qualifications:

• Active TS/SCI Clearance with Polygraph
• Excellent interpersonal, organizational, writing, communications, and briefing skills.
• Strong analytical and problem-solving skills.
• Bachelor’s Degree or equivalent 2-4+ years of experience in Cyber Security, InfoSec, Security Engineering, Network Engineering with emphasis in cyber security issues and operations, computer incident response, systems architecture, and data management.
• Familiarity with the following classes of enterprise cyber defense technologies:
• Security Information and Event Management (SIEM) systems.
• Network Intrusion Detection System/Intrusion Prevention Systems (IDS/IPS).
• Host Intrusion Detection System/Intrusion Prevention Systems (IDS/IPS).
• Network and Host malware detection and prevention.
• Network and Host forensic applications.
• Web/Email gateway security technologies.

• Required Certifications:
  DOD 8570 IAT Level I or CSSP-A

Criterion Systems, Inc. is committed to equal employment opportunity and non-discrimination at all levels of our organization. We believe in treating all applicants and employees fairly and make employment decisions without regard to any individual’s protected status: race, ethnicity, color, national origin, ancestry, religion, creed, sex/gender, gender identity/gender expression, sexual orientation, physical and mental disability, marital/parental status, pregnancy (including childbirth, lactation, and related medical conditions), age, genetic information (including characteristics and testing), military and veteran status, or any other characteristic protected by law. For our complete EEO/AA and Pay Transparency statement, please visit https://careers-criterion-sys.icims.com/.