Maintain responsibility for security monitoring and rapid response to security alerts and events. Create, tune, and compile metrics of all security devices and documentation of processes and procedures. Identify security issues and risks and then develop mitigation plans. Work in a 24/7 SOC environment and provide analysis and trending of security log data from various security devices. Apply up-to-date knowledge of the IT security industry, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors. Recommend solutions to mitigate risk in any activity that potentially impacts the security of existing IT and information management.
* Work 2nd or 3rd shift or weekend hours
* Author security analysis and recommendations (e.g. Google Appliance, wireless headsets)
* Provide monitoring and risk analysis of zero-day and other vulnerabilities
* Evaluation of NIST, Federal and DoD guidelines, policies, directives, memos, etc. as it relates to cybersecurity
* 24/7 monitoring of DFAS security landscape
* Triage of SIEM events and determine escalation of indicators
* 24/7 contact with JFHQ-DODIN, Cybercomm, NSA, et al for receiving and triaging threat indicators
* Experience performing offensive cybersecurity/red teaming assessments utilizing Burp Suite Professional, Metasploit Professional, and other penetration testing toolsets
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.