What are the responsibilities and job description for the Systems Security Analyst/Cyber Defense Analyst position at ActioNet?
ActioNet has an immediate opportunity for a Systems Security Analyst / Cyber Defense Analyst in Newport, RI. This requires a Top Secret/SCI clearance. ActioNet is an IT service provider and solutions integrator headquartered in Vienna, VA that works with the Federal Government and Department of Defense.
Target Start Date: Q1 2025
Responsibilities:
- Analysis, documentation, and development of integration, testing, operations, and maintenance of system security.
- Use data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events from environments to mitigate threats.
- Apply defensive measures resulting from sources to identify, analyze, and report events from the enterprise network to protect information systems from threats.
- Coordinate threat and mitigation strategies across the enterprise.
Required Job Experience:
- Coordinating, installing, and maintaining information security devices and services on EDU, SIPRNET, DMZ, and commercial ISP networks.
- Ensure compliance of information security devices, services, and capabilities within DOD Security and Information Assurance protection requirements.
- Provide information security services to implement, maintain, and sustain all unclassified and classified information security support services.
- Setup, configure, modify, test, maintain, operate, and support information security tools.
- Operate ACAS for Information Assurance Vulnerability Alert (IAVA) management and scanning, McAfee HBSS, Corelight, and Cortex.
- IOT discovery, monitoring, SOAR orchestration, and SIEM event correlation and analysis.
- Cloud security systems for DLP, and Email and threat prevention/monitoring.
- Validate remediation of IT resources managed by departmental branches.
- Security incident reporting to the Security Operations Center.
- Administration of firewalls, Intrusion Detection System, policy server, IAVA management, Defense Information Systems Agency, Host-Based Security System, Secure Configuration Compliance Validation Initiative, and Secure Configuration Remediation Initiative tools.
- Virtual Private Network management, penetration testing, forensics research and analysis, web content filter management, security incident reporting, and vulnerability scanning.
- Knowledge of cybersecurity principles, cyber threats, and vulnerabilities.
- Analyze network alerts from enterprise sources determining causes of alerts.
- Conduct security reviews, gap analysis, and risk mitigation in security architecture.
- Experience with Intrusion Detection System / Intrusion Prevention System tools and applications.
- Cloud computing deployment models in private, public, and hybrid on/off-prem environments.
- Knowledge of information technology security principles and methods (e.g., firewalls, DMZ, encryption).
- Familiarity with network protocols TCP/IP, Dynamic Host Configuration, and Domain Name System.
- Understand network traffic flows, Transmission Control Protocol, Internet Protocol, Open System Interconnection Model, and Information Technology Infrastructure Library.
- Knowledge of common attack vectors and classes of attacks (passive, active, insider, close-in, distribution).
- Experience with packet-level analysis and collecting data from a variety of cyber defense resources.
Degree (Required or certifications below can be substituted in lieu of):
- BS degree in Information Technology, Cybersecurity, Data Science, Information Systems, or Computer Science, from an ABET accredited or CAE designated institution.
Certification (Preferred one of the following in lieu of Required Degree):
- Certified Ethical Hacker (CEH)
- CompTIA Cloud
- CompTIA PenTest
- CompTIA Security
- Cisco Certified CyberOps Associate
- CompTIA Cybersecurity Analyst (CySA )
- CyberSec First Responder (CFR)
- Federal IT Security Professional-Operator-NG (FITSP-O)
- GIAC Certified Enterprise Defender (GCED)
- GIAC Foundational Cybersecurity Technologies (GFACT)
- GIAC Information Security Fundamentals (GISF)
- GIAC Certified Forensics Analyst (GCFA)
- GIAC Certified Intrusion Analyst (GCIA)
- GIAC Defensible Security Architecture (GDSA)
- GIAC Global Industrial Cyber Security Professional (GICSP)
- GIAC Security Essentials Certification (GSEC)
ActioNet is a CMMI-DEV Level 4, CMMI-SVC Level 4, ISO 20000, ISO 27001, ISO 9001, HDI-certified, woman-owned IT Solutions Provider with strong qualifications and expertise in Agile Software Engineering, Cloud Solutions, Cyber Security and IT Managed Services. With 25 years of stellar past performance, ActioNet is the premier Trusted Innogrator!
Core Capabilities:
- Advanced and Managed IT Services
- Agile Software Development
- DevSecOps
- Cybersecurity
- Health IT
- C4ISR & SIGINT
- Data Center Engineering & Operations
- Engineering & Installation
Why ActioNet?
At ActioNet, our Passion for Quality is at the heart of everything we do:
- Commitment to Employees: We are committed to making ActioNet a great place to work and continue to invest in our ActioNeters.
- Commitment to Customers: We are committed to our customers by driving and sustaining Service Delivery Excellence.
- Commitment to Community: We are committed to giving back to our community, helping others, and making the world a better place for our next generation.
ActioNet is proud to be named a Top Workplace for the eleventh year in a row (2014 - 2024). We have a 98% customer retention rate. We are passionate about the inspirational missions of our customers, and we entrust our employees and teams to deliver exceptional performance to enable the safety, security, health, and well-being of our nation.
What's in It For You?
As an ActioNeter, you get to be part of an exceptional team and a corporate culture that nurtures mutual success for our customers, employees, and communities. We give you the tools to be successful; all you need to do is bring your best ideas, your energy, and a desire to develop your skills, experience, and career. Are you ready to make a difference?
ActioNet is an equal-opportunity employer and values diversity at our company. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
Full-Time Employees are eligible to participate in our ActioNet’s Benefits Program:
- Medical Insurance
- Vision Insurance
- Dental Insurance
- Life and AD&D Insurance
- 401(k) Savings Plan
- Education and Professional Training
- Flexible Spending Accounts (FSA)
- Employee Referral and Merit Recognition Programs
- Employee Assistance and Identity Theft Protection
- Paid Holidays: 11 per year
- Paid Time Off (PTO)
- Disability Insurance
ActioNet is an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
********Direct Applicants, only. No Agencies, No third-party recruiters, please********
