Intrusion Analyst

  • $110,000.00 - $130,000.00/year
  • Tailored Solutions is currently seeking multiple Intrusion Analysts who possess skills and experience specifically in the areas of intrusion analysis & detection, network traffic & packet analysis and file/malware analysis. These individuals will be members of a 24x7x365 team responsible for defending the unclassified and classified networks of the command and control center of the Department of Defense (DoD). 

    We are looking for someone who is not only passionate about security, but passionate about defending our military's network infrastructure and will take pride in doing so. You will be a member of a team whose primary responsibility is to monitor, analyze and escalate all suspicious and/or unauthorized activity traversing the Pentagon's Enterprise Networks. 

    At a minimum, you must either possess or be able to obtain a Secret security clearance and meet DoD's 8570 baseline certification requirements for CSSP Analyst (https://iase.disa.mil/iawip/Pages/iabaseline.aspx). 

    You must possess knowledge of principles and techniques applied in providing real-time tactical and/or strategic intrusion monitoring with a technical proficiency in both Linux and Windows environments. Knowledge of and/or experience with both shell scripting and the use of regular expressions for network traffic pattern matching (IDS/IPS signature analysis & development) as well as event data pattern matching for pertinent information relating to network-based and host-based security events is desirable. 

    Must have knowledge and understanding of network and security operations as well as network monitoring procedures. Experience with various types of Intrusion Detection Systems (IDS) & Intrusion Prevention Systems (IPS), Web Content Filtering (WCF), sandbox technologies and knowledge of best practices regarding network security architecture and signature development. Knowledge of CERT procedures and NOSC operations is also desirable.


    Responsibilities
    •  Day-to-day responsibilities will include the following:
    •  Tactical real-time data monitoring of alert, session, statistical, file and full pcap data
    •  Ensuring CND device uptime, availability and the integrity of the all CND systems (active/passive) and associated data
    •  Ability to recognize “known” attacks or malicious activity on the network
    •  Signature tuning, analysis and development
    •  Apply updates to COTS IDS/IPS based on instructions in the SOP
    •  Documenting processes and procedures of all infrastructure operations

    •  Job Requirements:
    •  Must be able to obtain a DoD clearance
    •  Knowledge of TCP/IP as well as network analysis using various toolsets (tcpdump, wireshark, etc.)
    •  Must have a minimum of 1 years Linux experience
    •  Must have a minimum of 1 years network security experience

    •  Desirable Requirements:
    •  Possess a basic understanding of regular expressions
    •  Possess a basic understanding of scripting languages (perl, python, etc.)
    •  Possess a basic knowledge of hacking techniques and attack methodologies as well as mitigations of those techniques and methodologies
    •  Demonstrate an ability to work independently with minimal supervision
    •  Demonstrate an ability to handle concurrent projects and assignments
    •  Demonstrate a desire and willingness to continue to expand your area of knowledge in security best practices and technologies
    •  Focus under pressure and respond appropriately to critical situations or incidents

    Want to apply later?

    Type your email address below to receive a reminder

    Apply to Job

    ErrorRequired field
    ErrorRequired field
    ErrorRequired field
    Error
    Error
    insert_drive_file
    insert_drive_file