ProSync

Incident Manager - I (HIRT)

ID
2020-3563
# of Openings
1
Category
Security Engineer
Clearance Level
TS/SCI
Location
US-VA-Arlington
Posted
9/17/2020

Overview

ProSync Technology is a leader in the Intelligence Community built on a community of talented and committed individuals. With a heritage built on supporting National Security and telecommunications industry we deliver solutions in Hardware Engineering, Intelligence Analysis, Cyber Defense, Research and Software Development. If you are ready for a new and exciting career we invite you to apply to be a part of our team, ProSync, Professionals In-Sync.

 

ProSync is currently looking for a Incident Manager - I to join our team!

Responsibilities

  • Monitor external data sources (e.g., Computer Network Defense vendor sites, Computer Emergency
    Response Teams [CERTs], SANS, Security Focus) to maintain currency of Computer Network
    Defense threat condition and determine which security issues may have an impact on the enterprise
  • Be able to identify the cause of an incident and recognizing the key elements to ask external entities
    when learning the background and potential infection vector of an incident
  • Receive and analyze network alerts from various sources within the enterprise and determine
    possible causes of such alerts
  • Track and document Computer Network Defense (CND) incidents from initial detection through final
    resolution
  • Work with other components within the organization to obtain and coordinate information pertaining to
    ongoing incidents

Qualifications

Requires a Bachelor’s degree from an accredited college or university in Incident Management, Operations Management, Cybersecurity or related discipline, and with a minimum one (1) year of incident management or cybersecurity operations experience

 

OR

 

A minimum of three (3) years incident management or cybersecurity operations experience with a High school diploma

 

  • Knowledge of incident response and handling methodologies
  • Knowledge of the NCCIC National Cyber Incident Scoring System to be able to prioritize triaging of
    incident
  • Knowledge of general attack stages (e.g., foot printing and scanning, enumeration, gaining access,
    escalation of privileges, maintaining access, network exploitation, covering tracks, etc.)
  • Skill in recognizing and categorizing types of vulnerabilities and associated attacks
  • Knowledge of basic system administration and operating system hardening techniques
  • Knowledge of Computer Network Defense policies, procedures, and regulations
  • Knowledge of different operational threat environments (e.g., first generation [script kiddies], second
    generation [non nation-state sponsored], and third generation [nation-state sponsored])
  • Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile
    code, cross-site scripting, PL/SQL and injections, race conditions, covert channel, replay, return-oriented attacks, and malicious code)

Clearance Requirement

  • U.S. Citizenship and TS/SCI with Polygraph required
  • CCAs will not be considered

ProSync Technology

ProSync's executive team creates and expands business opportunities, recruits talented and intelligent technology professionals, and fosters a company culture that empowers ProSync professionals to shape and mold the direction of their careers and the direction of ProSync. Employees of ProSync Technology Group, LLC and applicants for employment shall be afforded equal opportunity in all aspects of employment without regard to race, color, religion, political affiliation, national origin, disability, sex, age, or marital status.

   

Email Staffing@prosync.com for more specifics regarding the position.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed