General Dynamics Information Technology · 2 days ago
CSOC Tier 3 Engineer
USA VA Springfield
Full-time
Onsite
Senior Level, Lead/Staff
$147K/yr - $199K/yr
8+ years expGeneral Dynamics Information Technology is a global technology and professional services company that delivers consulting, technology, and mission services. They are seeking a CSOC Tier 3 Engineer to provide expert services in cybersecurity incident response, including malware analysis and forensic artifact handling.
Artificial Intelligence (AI)Cloud ComputingConsultingCyber SecurityInformation Technology
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Coordinate and implement tasks, performing analysis, and building/documenting response activities required during cyber security incident response, to include but not limited to actions such as implementing containment measures, IP blocks, domain blocks, and disabling user accounts on direction of the Government
Coordinates with Security and Installations Directorate (SI) Office of Counterintelligence (SIC), Insider Threat Office (SIII), in addition to other law enforcement and counter intelligence personnel as required to perform advanced investigation and triage of incidents
Collaborates with appropriate authorities in the production of security incident reports
Categorizes incidents and events
Coordinates with other contracts, organizations, activities, and other services as appropriate to ensure incidents are properly reported, contained, and eradicated
Coordinates with other contracts, organizations, activities, and other services as appropriate to de-conflict blue / red team activity with open incidents/events
And analyze data, and to respond to incidents/events
Performs digital media analysis on host, server, and network data as required to analyze and respond to an incident, to include but not limited to volatile and non-volatile memory and/or system artifact collection and analysis
Develops and identifies indicators of compromise to send to Cybersecurity stakeholders and other Contract Services
Performs malware analysis and signature development
Coordinate with CSOC Tier 1 and 2 services to remediate all discrepancies and provide recommendations to prevent reoccurrence
Provides input to and coordinates with all applicable stakeholders to develop and deliver the daily CSOC Significant Activity Report, the daily CSOC Operations Update, and the Weekly CSOC Status Report
Serve as C-IRT members as required and serve under the direct control of, and take direction from, the Government C-IRT Commander
Develop and coordinate courses of action with various Government and contract stakeholders, and when properly authorized by the Government, execute Defensive Cyberspace Operations-Internal Defensive Measures on behalf of the NGA on NGA networks and systems
Performs digital media analysis and malware reverse engineering on host, server, and network data as required to analyze and respond to an incident, to include but not limited to volatile and non-volatile memory and/or system artifact collection and analysis
When properly authorized by the Government, execute custom scripts, tools, and capabilities to collect and analyze data, and to respond to incidents/events
Develops, documents, and provides to the Government incident investigation reports which include sufficient information to document the entire lifecycle of the incident and the response, including but not limited to adversary and friendly forces activity, host and network analysis, timelines, and recommendations for corrective actions, recommendations for new Tactics, Techniques, and Procedures (TTP) and other recommendations as appropriate, within 30 days of C-IRT stand-down
Conduct Quality Control reviews of a percentage closed CSOC Tier 2 tickets each week to ensure proper analysis, categorization, documentation, and notification
Qualification
Required
Top Secret SCI + Polygraph clearance level must currently possess
Top Secret SCI + Polygraph clearance level must be able to obtain
8 + years of related experience
US Citizenship Required
Bachelors Degree and 8 years' experience in Cyber Security (CSOS)
Active TS/SCI, Polygraph
DoDD 8140.01 and DoD 8570.01-M IAT Level II and CSSP Incident Responder certification
Cyber Incident Response
Cybersecurity Operations
Security Incident Response
Preferred
Masters degree
IAT III
Benefits
Medical plan options
Health Savings Accounts
Dental plan options
Vision plan
401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match
Full flex work weeks
Paid time off plans
Vacation
Sick and personal time
Holidays
Paid parental leave
Military leave
Bereavement leave
Jury duty leave
Short and long-term disability benefits
Life insurance
Accidental death and dismemberment insurance
Personal accident insurance
Critical illness insurance
Business travel and accident insurance
Company
General Dynamics Information Technology
General Dynamics Information Technology is an IT consulting company that specializes in cyber security, AI, and quantum computing. It is a sub-organization of General Dynamics.
10001+ employees
Funding
Current Stage
Late StageLeadership Team
Paul Nedzbala
Senior Vice President
Ben Buckley
Vice President and General Manager
Recent News
Company data provided by crunchbase