Job Description

Cyber Security Analyst – Watch Officer
North Charleston, SC 
Top Secret with Upgrade to TS SCI 

As Cyber Security Analyst – Watch Officer, you will maintain accountability of all analysts on shift.  This includes mentoring, assigning tasking, and ensuring all analyst are performing their primary duty of triaging indicators.

Position Requirements and Duties 

• During campaigns, guides the IR/Investigation process ensuring tasks are being completed and properly documented in the Forensic Notes section of the campaign documentation.
• During campaigns, guides the IR/Investigation process ensuring tasks in the Analyst Notes pages are accurate and in the proper format.
• During campaigns, guides the IR/Investigation process ensuring Forensic Notes are properly vetted and the Forensic Timeline of the campaign documentation is filled out.
• During campaigns ensures proper turnover of tasks and findings within the verbal turnover and the shift roll up tab of the campaign documentation.
• Prioritizes cyber events and incidents as necessary.
• Dictates communication with all peer defensive cyber components (JFHQ DoDIN, peer CSSP, etc) in times of incident.
• Dictates communication with all subscribers in times of incident.
• Provides cyber event/incident response and mitigation actions to subscribers.
• Ticket Verification/Quality Control
  • Verify cyber event / incident ticket status and verify most recent actions are up-to-date and current with incident communications/analysis.
  • Performs Quality Assurance of tickets created and of the analysis performed therein.
  • Consults Watch Officers to ensure adequate manning is assigned to carry out operational objectives.
• Indicator/analysis quality control
  • Assists the Training Coordinator in validation of satisfactory analysis.
  • Assists the Training Coordinator in mentoring Analysts of non-satisfactory analysis.
• Conducts verbal turnover with outgoing/oncoming shift Operations Watch personnel.
• Maintains written turnover within the CSSP’s incident tracking system’s Duty book.
• Monitor for information distributed by USCYBERCOM/JFHQ DoDIN and subscriber cyber components for changes in the CPCON level.
  • Communicates changes in CPCON level to appropriate subscriber personnel
• Monitor for information distributed by USCYBERCOM/JFHQ DoDIN, peer CSSPs and subscriber cyber components for TIPPER/self-reporting.
• Reports devices or critical services in a “down” state during their shift.
• Completes and disseminates Daily Operations Report to CSSP subscribers.
• Maintains an in-depth understanding of security concepts, protocols, processes, architectures, and tools.
• Mentorship of Analysts
  • Assists the OPS Watch Training Coordinator as necessary to provide feedback and guidance to completed analysis.
• Assists in the Indicator Tracking page(s) (The Grid), triaging alerts when needed.
• Maintains familiarity with CJCSM 6510.01B.
• Provides 24x7 support for the CSSP’s Incident Response capability during non-core business hours consistent with CSSP requirements as needed.
  • Communicates changes in CPCON level to appropriate subscriber personnel
• Monitor for information distributed by USCYBERCOM/JFHQ DoDIN, peer CSSPs and subscriber cyber components for TIPPER/self-reporting.
• Reports devices or critical services in a “down” state during their shift.
• Completes and disseminates Daily Operations Report to CSSP subscribers.
• Maintains an in-depth understanding of security concepts, protocols, processes, architectures, and tools.
• Mentorship of Analysts
  • Assists the OPS Watch Training Coordinator as necessary to provide feedback and guidance to completed analysis.
• Assists in the Indicator Tracking page(s) (The Grid), triaging alerts when needed.
• Maintains familiarity with CJCSM 6510.01B.
• Provides 24x7 support for the CSSP’s Incident Response capability during non-core business hours consistent with CSSP requirements as needed.
• Up to 15% global travel may be required; emergency travel may be required with 72-hour notice for incident response and to support other program needs.
  
   

Qualifications

• US Citizen
• Current Adapt Forward Employee 
• At least 2 years experience in Cybersecurity Service Provider (CSSP) environment or similar
• DoD or DoN Cybersecurity Workforce (CSWF) Certification or compliance (DoDD 8140 or SECNAV M-5239) 

Preferred Qualifications

• Knowledge of Incident Response Procedures
• Knowledge of Packet Analysis
• Knowledge of IDS/IPS solutions
• Familiarity with various Host-Based Tools
• Experience with Log Aggregation Tools
• Logical thinking and analytical ability
• Verbal and written communication ability

Certifications 

• DoD 8570/8140 and CSSP Compliant Certitfications Required 

Company Overview

Adapt Forward is a cybersecurity solutions provider for some of the nation’s most valuable information systems. Leveraging advanced threat assessment technology and experience in building high-level information security infrastructure, we develop adaptive solutions uniquely tailored to our customers’ business objectives to protect sensitive data against sophisticated threats in an increasingly complex security environment.

Summary of Benefits

• Comprehensive Physical Wellness Package, including Medical, Dental, Vision Care, plus Flexible Spending Accounts for health- and dependent-care are included in our standard benefits plan.
• 401k Retirement Plan with Matching Contribution is immediately available and vested.
• Annual Training Budget to be used for conference attendance, school enrollment, certification programs, and associated travel expenses.
• Eleven Federal Holidays, plus three weeks of PTO/vacation/sick leave that accrues at a rate of ten hours per month.
• Employee Assistance Program: Counseling/legal assistance and other employee well-being programs are also offered.

Equal Opportunity Employment

Adapt Forward is an equal opportunity employer that values diversity in the workplace and does not discriminate or allow discrimination on the basis of race, religion, age, gender, sexuality, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. Adapt Forward promotes affirmative action for minorities, women, disabled persons, and veterans.

Job Tags

Similar Jobs