What are the responsibilities and job description for the Cyber Defense Incident Responder position at Cadre5?
Cyber Defense Incident Responder
Founded in 1999 in the beautiful Smoky Mountains of East Tennessee, Cadre5 provides innovative technical solutions to our customers locally and nationally. Our Cadre5 Lab Partners division has partnered with Information Solutions and Services at Y-12 National Security Complex to recruit a qualified Cyber Defense Incident Responder.
The Y‑12 National Security Complex is a premier manufacturing facility dedicated to making our nation and the world a safer place and plays a vital role in the Department of Energy’s Nuclear Security Enterprise. Y‑12 helps ensure a safe and effective U.S. nuclear weapons deterrent. Y‑12 has evolved to become the complex the nation looks to for support in protecting America's future, developing innovative solutions in manufacturing technologies, prototyping, safeguards and security, technical computing and environmental stewardship.
A Q clearance is required; however, an active DOD Top Secret that can become a Q through reciprocity is acceptable. Therefore, a Secret or L, will not work.
This is a full-time, permanent position that can telecommute. Occasional travel to the Oak Ridge facility will be required.
Why Cadre5?
- Working with highly talented team members
- 3 weeks’ vacation
- Excellent medical insurance, up to 100% paid by employer
Job Responsibilities:
- Investigates, analyzes, and responds to cyber incidents within the network environment or enclave.
- Coordinate and provide senior level technical support to enterprise-wide cyber defense analysts to resolve cyber defense incidents
- Determine the scope, urgency and impact of cyber defense incidents
- Coordinate incident response functions and recommend incident remediation strategies
- Correlate incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation
- Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats to network security
- Perform cyber defense incident triage, to include determining scope, urgency, and potential impact, identifying the specific vulnerability, and making recommendations that enable expeditious remediation
- Perform real-time cyber defense incident handling (e.g., forensic collections, intrusion correlation and tracking, threat analysis, and direct system remediation) tasks to support deployable Incident Response Teams (IRTs)
- Receive and analyze network alerts from various sources within the enterprise and determine possible causes of such alerts
- Track and document cyber defense incidents from initial detection through final resolution
- Coordinate with intelligence analysts to correlate threat assessment data
- Perform cyber defense trend analysis and reporting
Basic Qualifications:
- At least a PhD in a technical field with limited experience or Master’s degree in a technical field or 2 to 5 years of related experience or Bachelor’s degree in a technical field or 5 to 10 years of related experience or Associates degree in a technical field and 10 to 15 years of related experience.
- This position requires and an active Department of Energy "Q" or “L” clearance. A “Top Secret (TS)” or “Secret” Department of Defense clearance will also suffice. This requires US Citizenship.
Benefits
Cadre5 offers excellent pay and benefits, to include full medical, dental, and vision coverage coupled with 401K match, 15 days PTO, and 10 holidays.
Cadre5 is an equal opportunity employer. All qualified applicants, including individuals with disabilities and protected veterans, are encouraged to apply. Cadre5 is an E-Verify Employer.
#CJ