• Cyber Defense Incident Responder- Senior

    ABBTECH Professional Resources, Inc. (Washington, DC)


    Cyber Defense Incident Responder- Senior

     

    Location- Washington, DC

     

    Clearance- Top Secret

    Salary- $110k-130k/yr

    _The above salary range represents the range expected for the position; however, final salary offers are based on a number of factors such as the position’s responsibilities; the candidate’s experience, education, and skills; location; travel required; and current market conditions._

     

    This program requires US Citizenship

    Job Description

    + Lead, facilitate and advise via the Incident Response lifecycle across the Bureau of the Census within the Department of Commerce against 24/7 threats/vulnerabilities/events.

    + Provide leadership w/ security and cybersecurity intelligence, posture/capabilities status, ways-forward, trend analysis and personnel readiness to enhance cyber security and incident response.

    + Advise leadership through multi-vector threat remediation and capabilities enhancement.

    + Leverage multi-source Cyber Intelligence to bolster cybersecurity posture.

    + Effectively lead and advise Security Operations and Infrastructure teams regarding threats and vulnerabilities mitigation procedures and system(s) enhancement(s).

    + Meet/exceed/expand customer mission requirements, goals, and vision.

    + Coordinate and communicate with multi-partner teams/services regarding 24/7 security posture and national regulatory requirements.

    + Learn and foster knowledge and skills training to adhere to and expand security, cybersecurity, and contingency requirements.

    + Manage/mentor SOC team members regarding procedures, schedules, training, event & tools management, and performance requirements.

    + Develop and implement best-practice network security, backup, and recovery procedures.

    + Diagnose network connectivity and performance issues during events and incidents.

    + Integrate new systems into existing network and security architecture.

    + Monitor network capacity, performance and

    + Advise during network patching, expansion, and capability growth to ensure safeguarding of data/information against threats and vulnerabilities.

    + Obtain and retain clearance requirements set by the Dept. of Commerce

    + Provide feedback on network requirements, including network architecture and infrastructure.

    + Test and maintain network infrastructure including software and hardware devices.

    Required Skills

    + Strong written and verbal communication skills.

    + Lead the Cybersecurity Incident Response lifecycle as an Incident Commander during high-demand events/incidents.

    + Advise leadership and assist management of SOC personnel, personnel readiness, team cohesion and training.

    + Understand and implement international, federal, state, and local regulation standards of cybersecurity.

    + Organize cyber operations, exercises, and inspections.

    + In-depth knowledge of network encryption, secure network topology and operating network equipment including hubs, routers, switches, bridges, servers, transmission media, and related logical & physical domains.

    + Knowledge of cloud-based networking, security, and best practices

    + Implement network threat detection and prevention rules and data control methods.

    + Operate common network tools (e.g., ping, traceroute, nslookup, ipconfig, nbstat).

    + Interpret Operating Systems command line (e.g., Windows, Linux).

    + Navigate and operate within the organization's LAN/WAN pathways.

    + Monitor and perform trend analysis of network performance, availability, and incidents.

    + Experience/knowledge monitoring networks for Indicators of Compromise

    + Operate different electronic communication systems and methods (e.g., e-mail, VOIP, IM, web forums, Direct Video Broadcasts).

    + Interpret the information collected by network tools (e.g., Microsoft Defender, FireEye, Akamai and packet capture).

    + Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), bandwidth/utilization management and directory services.

    + Measure, analyze and tune network performance, confidentiality, integrity, and availability.

    + Experience with network data structures and models (e.g., Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).

    Certifications/Licenses:

    + **_Bachelor’s degree or higher._**

    + 7+ years’ experience in network management and experience directly performing configurations and security implementation on LAN and WAN equipment.

    + Certifications addressing system security, network infrastructure, access control, cryptography, assessments and audits, and organizational security.

    Desired Skills

    + Experience holding a leadership position.

    + Implementing, maintaining, and improving established network security practices.

    + Applying ITIL or equivalent Change Management

    + Installing, configuring, and troubleshooting LAN and WAN components such as routers, hubs, switches. Establishing a routing scheme.

    + Skill in securing network communications and protecting a network against malware. (e.g., NIPS, anti-malware, restrict/prevent external devices, spam filters).

    + Configuring and utilizing network protection components (e.g., Firewalls, VPNs, network intrusion detection systems).

    + Implementing and testing network infrastructure contingency and recovery plans.

    + Applying various subnet techniques (e.g., CIDR)

    + Configuring and utilizing computer protection components (e.g., hardware firewalls, servers, routers, as appropriate).

    + Packet Analysis.

    . **_ABBTECH is an EOE/Minorities/Women/Disabled Individuals/Veterans_**

     

    _tag#IND1_