Cyber Defense Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

CACI International Inc · 14 hours ago

Cyber Defense Analyst

positionUS MD Suitland
timeFull-time
remoteOnsite
seniorityMid, Senior Level
money$87K/yr - $182K/yr
date5+ years exp

CACI International Inc is seeking a skilled and experienced Cyber Defense Analyst to join their team supporting a DoD client. The role involves monitoring, investigating, and responding to cybersecurity threats, as well as implementing network defense strategies and collaborating with cross-functional teams.

Information TechnologyService IndustrySoftware
check
Comp. & BenefitsbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Monitor and investigate alerts from cybersecurity tools to identify potential threats and malicious activities
Utilize Network Intrusion Detection/Prevention Systems (NIDPS) and Security Information and Event Management (SIEM) systems to analyze network traffic and detect anomalies
Develop and implement computer network defense tactics, techniques, and procedures (TTPs)
Create and maintain "best practices," manuals, and standard operating procedures in alignment with Federal, DoD, IC, and industry standards
Participate in incident management lifecycle processes, including identification, categorization, eradication, response, recovery, and mitigation of cybersecurity incidents and breaches
Conduct penetration testing and Red Teaming activities to assess and enhance the security posture of the organization
Perform malware detection and analysis, IDS/IPS rule/signature writing, and countermeasure development
Utilize scripting and coding languages to automate tasks and enhance security measures
Collaborate with cross-functional teams to ensure the integrity and security of IT systems and networks
Provide briefings, write reports, and disseminate intelligence related to cybersecurity threats and incidents

Qualification

Computer Network DefenseCybersecurity tools monitoringIncident management lifecycleNetwork Intrusion Detection/PreventionSecurity InformationEvent ManagementScripting languagesAnalytical skillsCommunication skillsProblem-solving skillsAttention to detail

Required

BA/BS in Computer Science, Information Technology, Information Assurance, or a related field is desired
TS/SCI Clearance
Alternatively, 8+ years of relevant professional experience in CND or related fields
Must have 5+ years of concentrated experience in CND
3+ years of professional experience in monitoring and investigating alerts from cybersecurity tools
Effective interpersonal, organizational, time management, writing/documentation, and briefing skills with strong attention to detail
Strong analytical, conceptual, and problem-solving skills
Proven ability to communicate effectively and develop/present presentations
Ability to think outside the box by utilizing IT knowledge and cybersecurity tool output to discover instances of malicious activity
Proven ability to prioritize, execute, and complete tasks with little to no direction in a high-pressure environment
Moderate experience utilizing Federal, DoD, IC, and industry standards
Moderate experience in the development and implementation of CND TTPs
Moderate experience in the operational use of NIDPS (e.g., Cisco FirePower, Palo Alto NGFW) and host-based intrusion detection/prevention systems (e.g., Trellix ePO, Microsoft Defender, Tanium)
Moderate experience in the operational use of SIEM systems (e.g., Splunk, Elastic)
Moderate knowledge of policies and processes related to CND execution
Moderate knowledge of incident management lifecycle processes
Moderate knowledge of network security architecture concepts, including topology, protocols, and components
Knowledge of common adversary TTPs in assigned areas of responsibility
Moderate knowledge of common enterprise services such as domain controllers, print, email, DNS, and web servers
Knowledge of network traffic packet captures with capabilities such as WireShark or NIKSUN
Moderate knowledge in identifying and classifying attack vectors, malware detection and analysis, IDS/IPS rule/signature writing, and countermeasure development
Moderate knowledge of firewall rules and routing rules
Moderate knowledge of scripting and coding languages (e.g., Python, Perl, Ruby, JavaScript)

Benefits

Healthcare
Wellness
Financial
Retirement
Family support
Continuing education
Time off benefits

Company

CACI International Inc

twittertwittertwitter
Glassdoor4.0
company-logo
At CACI International Inc (NYSE: CACI), our 25,000 talented and dynamic employees are ever vigilant in delivering distinctive expertise and technology to meet our customers’ greatest challenges in national security.
dateFounded in 1962
location
Arlington, Virginia, USA
people-size10001+ employees
web-link
https://www.caci.com

Funding

Current Stage
Public Company
Total Funding
$1B
2025-05-21Post Ipo Debt· $1B
2003-01-10IPO

Leadership Team

leader-logo
John Mengucci
President & CEO
linkedin
leader-logo
Darryl W Burke
Senior Vice President / Air Force Client Executive
linkedin

Recent News

Washington Technology
CACI's outlook on the government's commercial acquisition push
2026-01-25
TradingView
BRIEF-CACI International Q2 Adjusted EPS USD 6.81 Vs. IBES Estimate USD 6.44
2026-01-22
Benzinga.com
CACI International Likely To Report Higher Q4 Earnings; These Most Accurate Analysts Revise Forecasts Ahead Of Earnings Call
2026-01-22
Company data provided by crunchbase