Today
Top Secret/SCI
Mid Level Career (5+ yrs experience)
$115,000
Occasional travel
IT - Security
Annapolis Junction, MD (On-Site/Office)
Veteran-Owned Firm Seeking a Cyber Security Analyst (S-NET) with TS/SCI for a role in Annapolis Junction, MD
My name is Stephen Hrutka. I lead a Veteran-Owned management consulting firm in Washington, DC. We specialize in Technical and Cleared Recruiting for the Department of Defense (DoD), the Intelligence Community (IC), and other advanced defense agencies.
At HRUCKUS, we support fellow Veteran-Owned businesses by helping them recruit for positions across organizations such as the VA, SBA, HHS, DARPA, and other leading-edge R&D-focused defense agencies.
We seek to fill a Cyber Security Analyst (S-NET) position in Annapolis Junction, MD.
The ideal candidate must hold an active TS/SCI clearance and have 2-5+ years of experience with a BS/BA, 0-2+ years with an MS/MA/MBA, or 8-10+ years with no degree. They must also have a current DoD 8570.1-M IAT Level II certification.
If you’re interested, I'll gladly provide more details about the role and discuss your qualifications further.
Thanks,
Stephen M Hrutka
Principal Consultant
HRUCKUS LLC
Executive Summary: HRUCKUS seeks a Cyber Security Analyst (S-NET) for a role supporting the Department of the Navy in Annapolis Junction, MD.
Position Description: The Cyber Security (Incident Response) Analyst will support a government Cyber Security Operation Center (CSOC) and will conduct security event monitoring, advanced analytics, and response activities in support of the CND operational mission with diverse backgrounds in cyber security systems operations, analysis, and incident response.
Position Job Duties:
• Perform technical analysis on various cybersecurity issues, focusing on network activity, host activity, and data. This includes but is not limited to network flow (i.e., NetFlow) or related forms of session summary data, signature-based IDS/IPS alert/event data, full packet capture (PCAP) data, proxy, and application server logs (various types)
• Triage IDS/IPS alerts, collect related data from various systems, review open and closed source information on related threats & vulnerabilities, and diagnose observed activity for the likelihood of system infection, compromise, or unintended/high-risk exposure
• Prepare analysis reports detailing background, observables, analysis process & criteria, and conclusions
• Analyze large volumes of network flow data for specific patterns/characteristics or general anomalies, trend network activity, and correlate flow data with other types of data or reporting regarding enterprise-wide network activity
• Leverage lightweight programming/scripting skills to automate data-parsing and simple analytics. Document key event details and analytic findings in analysis reports and incident management systems. Identify, extract, and characterize network indicators from cyber threat intelligence sources, incident reporting, and published technical advisories/bulletins
• Assess cyber indicators/observables for monitoring systems’ technical relevance, accuracy, and potential value/risk/reliability. Recommend detection and prevention/mitigation signatures and actions as part of a layered defensive strategy leveraging multiple capabilities and data types
• Develop IDS/IPS signatures, test and tune signature syntax, deploy signatures to operational sensors, and monitor and tune signature and sensor performance
• Fuse open-source threat & vulnerability information with data collected from sensors across the enterprise into a cohesive and comprehensive analysis
• Develop security metrics and trend analysis reports
Position Qualifications:
• TS/SCI level clearance is required
• 2-5+ years of experience with a BS/BA, or 0-2+ years with an MS/MA/MBA, or 8-10+ years with no degree
• Bachelor’s degree in Computer Science, Information Systems, or equivalent education or work experience (additional relevant work experience can be substituted for a degree)
Certification Requirement:
• Must have a current DoD 8570.1-M IAT Level II certification
Desired:
• Desired Certifications: CEH, GCIH, GCIA, GCFA
• 1+ years in a SOC or Incident Response role
• Experience with Cisco Firepower, Cisco Sourcefire, Cisco Advanced Malware Protection, Cisco Stealthwatch, Cisco Umbrella
• Experience with deploying and writing signatures (Snort, YARA, HIPS)
• Experience with network hunting utilizing Zeek/Bro
• Experience with McAfee ePO, HBSS
• Splunk: Create log searches and dashboards, set up alerts, and schedule reports to help detect and remediate security concerns.
• Experience with ArcSight
• Experience with Wireshark and packet analysis
• Experience with Tanium or other endpoint solutions
• Working knowledge of scripting languages such as Python, PowerShell, Shell
• Knowledge of Regular Expressions
• Knowledge of server and client operating systems
• Participate in development and reporting of security metrics
• Experience in a SOC or Incident Response role
Details:
● Job Title: Cyber Security Analyst (S-NET)
● 3 Site Locations:
o Annapolis Junction, MD (Primary)
o JBAB (Depends on Responsibilities)
o Landover, MD (Future)
● Security Clearance Requirement: TS/SCI
● Assignment Type: Full-time
● Salary: Up to $115,000/year, depending on experience and qualifications
My name is Stephen Hrutka. I lead a Veteran-Owned management consulting firm in Washington, DC. We specialize in Technical and Cleared Recruiting for the Department of Defense (DoD), the Intelligence Community (IC), and other advanced defense agencies.
At HRUCKUS, we support fellow Veteran-Owned businesses by helping them recruit for positions across organizations such as the VA, SBA, HHS, DARPA, and other leading-edge R&D-focused defense agencies.
We seek to fill a Cyber Security Analyst (S-NET) position in Annapolis Junction, MD.
The ideal candidate must hold an active TS/SCI clearance and have 2-5+ years of experience with a BS/BA, 0-2+ years with an MS/MA/MBA, or 8-10+ years with no degree. They must also have a current DoD 8570.1-M IAT Level II certification.
If you’re interested, I'll gladly provide more details about the role and discuss your qualifications further.
Thanks,
Stephen M Hrutka
Principal Consultant
HRUCKUS LLC
Executive Summary: HRUCKUS seeks a Cyber Security Analyst (S-NET) for a role supporting the Department of the Navy in Annapolis Junction, MD.
Position Description: The Cyber Security (Incident Response) Analyst will support a government Cyber Security Operation Center (CSOC) and will conduct security event monitoring, advanced analytics, and response activities in support of the CND operational mission with diverse backgrounds in cyber security systems operations, analysis, and incident response.
Position Job Duties:
• Perform technical analysis on various cybersecurity issues, focusing on network activity, host activity, and data. This includes but is not limited to network flow (i.e., NetFlow) or related forms of session summary data, signature-based IDS/IPS alert/event data, full packet capture (PCAP) data, proxy, and application server logs (various types)
• Triage IDS/IPS alerts, collect related data from various systems, review open and closed source information on related threats & vulnerabilities, and diagnose observed activity for the likelihood of system infection, compromise, or unintended/high-risk exposure
• Prepare analysis reports detailing background, observables, analysis process & criteria, and conclusions
• Analyze large volumes of network flow data for specific patterns/characteristics or general anomalies, trend network activity, and correlate flow data with other types of data or reporting regarding enterprise-wide network activity
• Leverage lightweight programming/scripting skills to automate data-parsing and simple analytics. Document key event details and analytic findings in analysis reports and incident management systems. Identify, extract, and characterize network indicators from cyber threat intelligence sources, incident reporting, and published technical advisories/bulletins
• Assess cyber indicators/observables for monitoring systems’ technical relevance, accuracy, and potential value/risk/reliability. Recommend detection and prevention/mitigation signatures and actions as part of a layered defensive strategy leveraging multiple capabilities and data types
• Develop IDS/IPS signatures, test and tune signature syntax, deploy signatures to operational sensors, and monitor and tune signature and sensor performance
• Fuse open-source threat & vulnerability information with data collected from sensors across the enterprise into a cohesive and comprehensive analysis
• Develop security metrics and trend analysis reports
Position Qualifications:
• TS/SCI level clearance is required
• 2-5+ years of experience with a BS/BA, or 0-2+ years with an MS/MA/MBA, or 8-10+ years with no degree
• Bachelor’s degree in Computer Science, Information Systems, or equivalent education or work experience (additional relevant work experience can be substituted for a degree)
Certification Requirement:
• Must have a current DoD 8570.1-M IAT Level II certification
Desired:
• Desired Certifications: CEH, GCIH, GCIA, GCFA
• 1+ years in a SOC or Incident Response role
• Experience with Cisco Firepower, Cisco Sourcefire, Cisco Advanced Malware Protection, Cisco Stealthwatch, Cisco Umbrella
• Experience with deploying and writing signatures (Snort, YARA, HIPS)
• Experience with network hunting utilizing Zeek/Bro
• Experience with McAfee ePO, HBSS
• Splunk: Create log searches and dashboards, set up alerts, and schedule reports to help detect and remediate security concerns.
• Experience with ArcSight
• Experience with Wireshark and packet analysis
• Experience with Tanium or other endpoint solutions
• Working knowledge of scripting languages such as Python, PowerShell, Shell
• Knowledge of Regular Expressions
• Knowledge of server and client operating systems
• Participate in development and reporting of security metrics
• Experience in a SOC or Incident Response role
Details:
● Job Title: Cyber Security Analyst (S-NET)
● 3 Site Locations:
o Annapolis Junction, MD (Primary)
o JBAB (Depends on Responsibilities)
o Landover, MD (Future)
● Security Clearance Requirement: TS/SCI
● Assignment Type: Full-time
● Salary: Up to $115,000/year, depending on experience and qualifications
group id: 90999271
