Nav
166503,  Cybersecurity Incident Threat Responder - NC - OM -

Category: IT
Job Title: Cybersecurity Incident Threat Responder - NC - OM
Region: NC-North Carolina
City: Morrisville
State: NC
Rate: Up to $40.11 DOE
Duration: 1-12 months
Description:


RESPONSIBILITIES:
Northrop Grumman Technology Services sector is seeking a Cybersecurity Incident Threat Responder to join our team of qualified, diverse individuals. Monitor network traffic for security events and perform triage analysis to identify security incidents. Respond to computer security incidents by collecting, analyzing, preserving digital evidence and ensure that incidents are recorded and tracked in accordance with CSOC requirements. Work closely with the other teams to assess risk and provide recommendations for improving our security posture.
Job Overview:
Respond to Cyber Security Incidents; provide cyber threat analysis and reporting to support SOC and Program's situational awareness.
Will actively monitor security threats and risks, provide in-depth incident analysis, evaluate security incidents, and will provide proactive threat research.
Support a 24/7/365 Security Operations Center and monitors security tools and provides first tier response to security incidents.
Follow standard operating procedures for detecting, classifying, and reporting incidents
Monitor network traffic for security events and perform triage analysis to identify security incidents.
Respond to computer security incidents by collecting, analyzing, preserving digital evidence and ensure that incidents are recorded and tracked in accordance with SOC requirements.
Work closely with the other teams to assess risk and provide recommendations for improving our security posture.
Recommend changes to Standard Operating Procedures and other similar documentation
Generates end-of-shift reports for documentation and knowledge transfer to subsequent analysts on duty.
Candidates must be willing to work in a 24x7x365 Cybersecurity Operations Center (CSOC) environment, as well as may be expected to work holidays, demonstrate intuitive problem solving skills and allow for flexible scheduling.
This position will be located in Morrisville, NC and does not offer relocation assistance.
Prefer local candidates for face to face interviews.

REQUIRED EXPERIENCE:
Bachelor's degree in an information technology discipline OR equivalent related work experience (4 years of additional experience can be substituted for a bachelor's degree).
Must have 3 years of related experience on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC).
An understanding of Cyber Security Incident Response and Network Security Monitoring.
Fundamental understanding of computer networking (TCP/IP).
The ability to take lead on incident research when appropriate and be able to mentor junior analysts.
Experience managing cases with enterprise SIEM systems like Arcsight, Splunk or Sourcefire.
Excellent analytical and problem solving skills.
Excellent interpersonal skills to interact with team members, management, and CSOC stakeholders.
Self-Starter.
Ability to work with little direct supervision.
Ability to think outside of the box when the need arises.
Candidates must be willing to work in a 24x7x365 CSOC environment.
Desired Qualifications:
Active Certifications(s): CompTIA Net+, CompTIA A+, CompTIA Security+, CPTE - Certified Penetration Testing Engineer, CEH - Certified Ethical Hacker.
Experience in Cybersecurity Operations Center (CSOC).

EDUCATION:
Bachelor's degree in an information technology discipline OR equivalent related work experience (4 years of additional experience can be substituted for a bachelor's degree).

HOURS:
5/40 workweek. Must be willing to work nights and/or weekends.

MISCELLANEOUS:
Applicants responding to this position will be subject to a government security investigation and must meet eligibility requirements by currently possessing the ability to view classified government information.
Candidates responding to this posting must currently possess the eligibility to work in the United States. No third parties please.

Chipton-Ross is an Equal Opportunity Employer of Minorities/Women/Individuals with Disabilities/Protected Veterans.

Contact:
Kent Hayes at khayes@chiptonross.com
CHIPTON-ROSS, INC.
343 Main Street
El Segundo, CA 90245

Phone: (310) 414-7800 x271 or (800) 927-9318 x271


Home Administrative Engineering Industrial Information Technology Manufacturing Professional List All Jobs Job Search Client Services Contractor Resources About Us Contact Us