"Alerted.org

Job Description

A company in Colorado Springs, CO and Huntsville, AL is looking for a Secret Cyber Threat Emulation Analyst to join their team. This Analyst will perform proactive and reactive cybersecurity duties on customer networks to improve enterprise-wide security, and they will lead cyber events and incident investigations from start to conclusion including data gathering, analysis and reporting. Their responsibilities will include:

Collaborate with the Cyberspace Domain Awareness (CDA) to develop evaluation criteria and methodologies, and perform Defensive Cyber Operations (DCO)/Cyber Security Service Provider (CSSP) duties

Analyze correlated assets, threat, and vulnerability data against known adversary exploits and techniques to determine impact and improve network defensive posture

Support the development, establishment, review and update of DCO procedures, processes, manuals, and other documentation

Measure effectiveness of defense-in-depth architecture against known vulnerabilities

Generate vulnerability assessment reports for customers and escalate for further review, and create custom dashboards and reports to provide analysis and recommended mediation steps

Execute Cyber Threat Emulation (CTE) actions within the approved network zones with the specific adversary tactics, techniques, and procedures (TTPs) documented in each engagement to assess toolset detection and alerting

This position is onsite full-time at Schriever SFB or Redstone Arsenal, and the ideal candidate will quickly adapt to new situations, have a willingness to learn new technologies, and work well in a team environment. The pay rate is $55-63/hr depending on years and level of experience, education, and certifications. This role requires an Active Secret Clearance or higher.

We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to Human Resources Request Form (https://airtable.com/app21VjYyxLDIX0ez/shrOg4IQS1J6dRiMo) . The EEOC "Know Your Rights" Poster is available here (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf) .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

Skills and Requirements

4-6+ years of general (full-time) work experience

2-4+ years of combined experience with:

- Performing manual or automated penetration testing in an enterprise environment

- Practical experience with vulnerability assessment, cybersecurity frameworks, or conducting risk assessments

- Experience performing the full life cycle of incident response and enterprise-level monitoring

1+ year experience in management or leadership in a team environment

Current DoD 8570.01-M IAT Level II certification with Continuing Education (CE): CySA+, GICSP, GSEC, Security+ CE, SSCP

Have, or obtain within 6 months of start date, a PenTest+ certification

Active DoD Secret Security Clearance, or higher Bachelors degree, or higher, in Cybersecurity, Computer Science or related field

Experience with Cyber Threat Emulation tools, policies, and procedures

Experience operating custom software on top of a Linux platform

Experience with security analysis and solutions in a WAN/LAN environment to include Routers, Switches, Network Devices, and Operating Systems (e.g., Windows and Linux)

Experience with other Security Operations Centers (SOC)/DCO tools/applications, such as Firewalls, Intrusion Detection Systems / Intrusion Prevention Systems, Network Security Manager, Bluecoat, Barracuda, etc.

Experience performing security compliance scans across a WAN (ACAS/Nessus preferred)

Background in configuration, troubleshooting, and deployment of host-based security (ESS preferred)

Ability to mentor and train personnel in an evolving, high-paced environment

Familiarity with DoD Security Operations Centers (SOC) (aka CSSP)

Familiarity with DCO/Cybersecurity Service Provider (CSSP)-guiding security policies and procedures

Active DoD Top Secret clearance null

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to [email protected].