What are the responsibilities and job description for the Cyber Capability Developer (SME) position at NexThreat?
Job Title:Cyber Capability Developer (SME)
Location: NCR or Clarksburg
Job Category: Information Technology
Time Type: Full-time
Clearance Requirement: Current TS/SCI Clearance required
Security Suitability: Must pass FBI security suitability
Polygraph Requirement: Must pass an FBI administered Counterintelligence polygraph if one has not been conducted within the last five years.
Employee Type: W2 or 1099
Citizenship: US Citizen, no Dual Citizenship
Summary:
NexThreat is seeking a Cyber Capability Developer (SME). The Cyber Capability Developer (SME) plays a crucial role in supporting the Watch Floor Team within our Security Operations Center (SOC). This position is essential for ensuring the timely detection and resolution of potential security incidents, thereby minimizing the impact of cyber threats on the organization. The successful candidate will work in a dynamic, fast-paced environment, actively detecting, monitoring, preventing, and analyzing real-time cybersecurity information, events, and threats. This role is integral to safeguarding the confidentiality, integrity, and availability of organizational information assets.
Key Responsibilities:
- Collaborate with the Watch Floor Team to enhance incident detection and response capabilities.
- Develop and implement cybersecurity strategies, policies, and procedures.
- Utilize Splunk Enterprise Security and Microsoft Sentinel for monitoring and analyzing security events.
- Lead investigations into security incidents, providing expert guidance and recommendations.
- Conduct threat assessments and vulnerability analyses to identify potential risks.
- Provide training and mentorship to junior team members on cybersecurity best practices.
- Stay updated on the latest cybersecurity trends, threats, and technologies.
- Participate in the development and maintenance of incident response plans.
Unique Skills/Tasks/Software:
- Required: Proficiency in Splunk Enterprise Security.
- Preferred: Experience with Microsoft Sentinel.
- Strong analytical and problem-solving skills.
- Excellent communication and collaboration abilities.
Preferred Certifications:
- GIAC Continuous Monitoring Certification (GMON)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Forensic Analyst (GCFA)
- GIAC Certified Intrusion Analyst (GCIA)
- GIAC Network Forensic Analyst (GNFA)
- GIAC Cloud Threat Detection (GCTD)
- GIAC Cloud Forensics Responder (GCFR)
Qualifications:
- Bachelor’s degree in Cybersecurity, Information Technology, or a related field (or equivalent experience).
- 7 of experience in cybersecurity, with a focus on incident response and monitoring.
- Proven expertise in security operations and threat detection.
