Apply on Employer Site

Peraton · 3 weeks ago

Cyber Incident Handler

US-AZ-Fort Huachuca

Full-time

Onsite

Mid, Senior Level

$66K/yr - $106K/yr

2+ years exp

Peraton is a next-generation national security company that drives missions of consequence spanning the globe. They are seeking a Cyber Incident Handler to conduct DODIN Operations and provide CSSP responsibilities to protect the DODIN, including analysis, detection, and response to cyber threats.

Information TechnologyRobotics

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Identify, Protect, Detect, Respond, and Recover for DODIN operations

Conduct defensive measures to protect and defend information, computers, and networks

Perform threat and data analysis functions including analyzing anomalous cyber events and incidents

Conduct open-source research to identify commercial exploits or vulnerabilities

Report and facilitate the correction of issues with correlation tools and data feeds

Participate in ARCYBER signature working groups

Create, recommend, or refine TTPs as appropriate

Conduct cyber threat analysis and hunting

Examine threat intelligence from DoD and public sources

Provide recommendations and operational impact assessments of identified domains

Conduct Cyber Analysis missions

Consolidate research and results into Threat Analysis reports

Perform technical analysis of computer network intrusion events

Analyze trends and statistics of cyber activity

Perform filter queries of network flow data

Analyze origins, pathways, and methodologies of malicious cyber activities

Provide recommendations for defensive measures and mitigation techniques

Provide recommendations for appropriate response and actions to activity

Perform threat analysis of emails held for review

Qualification

CybersecurityThreat AnalysisIncident ResponseData AnalysisSIEM SystemsNetwork Intrusion DetectionCompTIA Security+Communication SkillsTeam Collaboration

Required

Clearance: Secret

6 years w/o BS/BA, 2 years w/BS/BA, 0 years w/Masters OR A-531-0451, Cyber Defense Incident Responder (Intermediate) Playlist OR CEH(P), ECIH, GRID, RCCE Level 1, CBROPS, CCSP, CEH, Cloud+, FITSP-O, GCED, GCIH, GSEC, PenTest+, Security+

Certifications: DCWF Code 511 Intermediate: CompTIA Cloud+ or CompTIA PenTest+ or CompTIA Security+ or GIAC Certified Enterprise Defender (GCED) or GIAC Foundational Cybersecurity Technologies (GFACT) or GIAC Information Security Fundamentals (GISF)