What are the responsibilities and job description for the Cyber Defense Incident Responder position at GEM Technology?
Job Description:
Investigates, analyzes, and responds to cyber incidents within the network environment or enclave.
Knowledge, Skillset, and Abilities (KSAs):
1. Coordinate and provide senior level technical support to enterprise-wide cyber defense analysts to resolve cyber defense Incidents
2. Determine the scope, urgency and impact of cyber defense incidents
3. Coordinate incident response functions and recommend incident remediation strategies
4. Correlate incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation
5. Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats to network security
6. Perform cyber defense incident triage, to include determining scope, urgency, and potential impact, identifying the specific vulnerability, and making recommendations that enable expeditious remediation
7. Perform real-time cyber defense incident handling (e.g., forensic collections, intrusion correlation and tracking, threat analysis, and direct system remediation) tasks to support deployable Incident Response Teams (IRTs)
8. Receive and analyze network alerts from various sources within the enterprise and determine possible causes of such alerts
9. Track and document cyber defense incidents from initial detection through final resolution
10. Coordinate with intelligence analysts to correlate threat assessment data
11. Perform cyber defense trend analysis and reporting
Specific Requirements:
Direct correlation with KSA’s.
Twice a Quarter onsite
Specific Deliverables:
Notify designated managers, and cybersecurity service provider team members of suspected security incidents and communicate the event's history, status, and potential impact for further action in accordance with the organization's cyber incident response plan
Comments -
Education: Technical Field Experience weighted greater than minimum education
Clearance: A Department of Energy Q clearance is required; however, an active DOD Top Secret that can become a Q through reciprocity is acceptable.
Salary: Based on experience
Education and Related Experience for Each Level -
Level 4: PhD in a technical field with limited experience or Master’s degree in a technical field and 2 to 5 years of related experience or Bachelor’s degree in a technical field and 5 to 10 years of related experience or Associates degree in a technical field and 10 to 15 years of related experience. Requires demonstrated in-depth knowledge and skills in a technical specialty.
Level 5: PhD in a technical field and 2 to 5 years of related experience or Master’s degree in a technical field and 5 to 10 years of related experience or Bachelor’s degree in a technical field and 10 to 15 years of related experience or Associates degree in a technical field and 15 to 20 years of related experience. Requires demonstrated in depth knowledge and skills in a technical specialty. Recognized as an expert in their field.
Level 6: PhD in a technical field and 5 or more years of related experience or Master’s degree in a technical field and 10 or more years of related experience or Bachelor’s degree in a technical field and 15 or more years of related experience or Associates degree in a technical field and 20 or more years of related experience. Requires demonstrated in-depth knowledge and skills in a technical specialty. This level should be limited to a small population. Recognized as an expert in their field.
Job Types: Full-time, Contract
Pay: $140,000.00 - $180,000.00 per year
Benefits:
- 401(k)
- 401(k) matching
- Dental insurance
- Health insurance
- Health savings account
- Life insurance
- Paid time off
- Vision insurance
Compensation Package:
- Yearly pay
Schedule:
- 8 hour shift
- Monday to Friday
Application Question(s):
- Do you currently possess a Top Secret or Dept. of Energy Q clearance?
Education:
- Associate (Required)
Experience:
- providing technical support to cyber defense analysts: 2 years (Required)
- resolving cyber defense Incidents: 2 years (Required)
- Performing cyber defense trend analysis & reporting: 2 years (Required)
- Track & document cyber defense incidents: 2 years (Required)
- Receive, analyze, & determine cause of network alerts: 2 years (Required)
- Performing real-time cyber defense incident handling: 2 years (Required)
- Performing analysis of log files: 2 years (Required)
- Determining scope, urgency & impact of incidents: 2 years (Required)
Security clearance:
- Top Secret (Required)
Ability to Commute:
- Oak Ridge, TN 37830 (Required)
Work Location: Hybrid remote in Oak Ridge, TN 37830
Salary : $140,000 - $180,000