SME 1(Shift Lead/Resource Manager) #3621
Overview
GovCIO is currently hiring for a SME 1 (Shift Lead / Resource Manager). This position will be located in Washington, D.C.
This will be a hybrid position.
Responsibilities
Correlates threat data from various sources to establish the identity and modus operandi of hackers active in client's networks and posing a potential threat.
Provides the customer with assessments and reports facilitating situational awareness and understanding of current cyber threats and adversaries.
Develops cyber threat profiles based on geographic region, country, group, or individual actors. Produces cyber threat assessments based on entity threat analysis.
May provide computer forensic and intrusion support to high technology investigations in the form of computer evidence seizure, computer forensic analysis, data recovery, and network assessments.
Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption.
- Collaborates with intrusion analysts to identify, report on, and coordinate remediation of cyber threats to the client.
- Provides timely and actionable sanitized intelligence to cyber incident response professionals.
- Leverages technical knowledge of computer systems and networks with cyber threat information to assess the client's security posture.
- Conducts intelligence analysis to assess intrusion signatures, tactics, techniques and procedures associated with preparation for and execution of cyber attacks.
- Researches hackers, hacker techniques, vulnerabilities, exploits, and provides detailed briefings and intelligence reports to leadership.
Qualifications
Required Skills and Experience
- Bachelor’s Degree in Information Systems, Computer Science or related field
- Must possess at least one (1) of the following certifications : GIAC Certified Intrusion Analyst (GCIA), EC-Council's Certified Security Analyst (ECSA), GIAC Certified Perimeter Protection Analyst (GPPA), GIAC Certified Enterprise Defender (GCED), Systems Security Certified Practitioner (SSCP), or a Certified Information Systems Security Professional (CISSP).
Splunk Fundamentals I & II certification.
Hybrid : Monday-Thursday - Onsite, Friday - Remote
- Clearance Required : Must be able to obtain a Public Trust