Leidos is seeking talented and cleared Cyber Security Analysts to join their dynamic team supporting the DISA GSM-O II program. The Cybersecurity Analyst will be responsible for defending Department of Defense networks from evolving cyber threats by analyzing cyber threat intelligence, correlating security events, and collaborating with incident response teams.
Analyzing real-time cyber threat intelligence to stay ahead of emerging threats.
Correlating security events to identify and prioritize potential incidents.
Conducting network traffic analysis using raw packet data to uncover malicious activity.
Collaborating with incident response teams to contain and eradicate threats.
Review DoD and open-source intelligence for threats.
Identify Indicators of Compromise (IOCs) and integrate those into sensors and SIEMs.
Triage and review system alerts to identify malicious actors on customer networks.
Assist T1 analysts with triage and analysis.
Complete moderate-level analysis of potential cybersecurity events that could threaten IT Systems.
Report incidents to customers and USCYBERCOM.
Create complex technical reports on analytic findings.
Qualification
Required
Bachelor's degree and 2+ years of relevant experience; equivalent work experience and/or military service may be considered in lieu of a degree.
Minimum active DoD Secret clearance with the ability to obtain TS/SCI.
Current DoD 8570 IAT Level II certification (or higher), such as CompTIA Security+ CE, ISC2 SSCP, or SANS GSEC (or equivalent).
Ability to obtain DoD 8570 CSSP-A Level Certification (e.g., CEH, CySA+, GCIA, or equivalent) within 180 days of hire.
Strong foundation in networking, including packet analysis, common ports and protocols, and traffic flow. Knowledge of the OSI model, defense-in-depth security principles, and common security elements for effective threat detection, analysis, and mitigation as a SOC Security Analyst.
Proven ability to work effectively both independently and as a collaborative team member, demonstrating initiative and a strong work ethic in both settings.
Committed to continuous learning and self-improvement in the cybersecurity domain, as evidenced by ongoing pursuit of certifications, active participation in industry forums, and dedication to staying ahead of emerging threats and technologies.
Excellent problem-solving skills, including the ability to collaborate effectively with cross-functional teams to address complex security challenges in real-world scenarios. This includes the ability to communicate technical information clearly and concisely, build consensus, and drive solutions to completion.
Reliable and flexible, with a demonstrated willingness to work assigned shifts to support operational requirements and team objectives.
Preferred
Advanced certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP and/or SIEM-specific training and certification (Security+ CE, CISSP or equivalent).
Demonstrated commitment to training, self-study, and maintaining proficiency in the technical cyber security domain.
CND experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization or Security Operations Center.
In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. Nitro/McAfee Enterprise Security Manager, ArcSight, QRadar, LogLogic, Splunk).
Benefits
Leidos is a Fortune 500® innovation company rapidly addressing the world’s most vexing challenges in national security and health.
Glassdoor
3.9
Founded in 1969
Reston, Virginia, USA
10001+ employees
https://www.leidos.com/
Leidos is a Fortune 500® innovation company rapidly addressing the world’s most vexing challenges in national security and health.
