[ref. x14063121] Net Defense / DCO Technical Subject Matter Expert
About Us:
Scientific Research Corporation is an advanced information technology and engineering company that provides innovative products and services to government and private industry, as well as independent institutions. At the core of our capabilities is a seasoned team of highly skilled engineers and scientists with multidisciplinary backgrounds.This team is challenged daily to provide cutting edge technology solutions to our clients.
Scientific Research Corporation offers a competitive salary, an extensive benefits package and a work environment that encourages excellence. For positions requiring a security clearance, selected applicants will be subject to a government security investigation and must meet eligibility requirements for access to classified information.
Requirements:
- Strong Defensive Counter Cyber or Cyber Threat Hunting experience
- Hands-on experience with AF CSSP and/or CPT net defense weapons systems and DCO toolsets
- Advanced knowledge of cyber security including the following: attack surface mapping, Security Operations Center (SOC) operations, Intrusion Detection/Intrusion Prevention Systems (IDS/IPS), Security Information and Event Management (SIEM)/Security Orchestration, Automation and Response (SOAR) tools, network and host-based monitoring tools, cyber threats, vulnerabilities, and exploits; incident response, investigations, and remediation.
Desired Skills:
- Extensive knowledge of network firewalls, computer and server log analysis, computer network servers (DNS, proxy, e‐mail, domain controller, file server, Active Directory) and associated log analysis; knowledge of digital evidence collection, handling, and security
- Extensive knowledge and experience with network packet capture and analysis software
- Experience with standard DoD network topology and DMZ boundary protection
- environment.
- Experience working with DoD Cyber Red Teams; knowledge of cyber-attack vectors and TTPs
- Experience with computer incident response and analysis and report dissemination
- Knowledge of MITRE ATT&CK framework
- Knowledge of DOD, AF, and CCMD net defense organization and relationships
- Recent experience working in or with the AFIN SOC/33COS is highly preferred
Description:
- Person will integrate with AFIN Security Operations Center (33d Cyber Ops Sq) to conduct hands-on Blue Force data collection, analysis, and correlation to red cyber activity in support of cyber assessments
- Provides AF net defense subject matter expertise to conduct network defense data collection
- Observe and collect on blue force incident response, analysis and correlation
- Perform advanced traffic analysis, vulnerability analysis, IDS/IPS sensor monitoring, conduct log analysis, collect data from big data platform repositories
- Support red team deconfliction activities as well as support cyber assessment planning, execution, and reporting
- Some travel may be required
Clearance Information:
SRC IS A CONTRACTOR FOR THE U.S. GOVERNMENT, THIS POSITION WILL REQUIRE U.S. CITIZENSHIP AS WELL AS, A U.S. GOVERNMENT SECURITY CLEARANCE AT THE TOP SECRET / SCI LEVEL
Travel Requirements:
- Travel is expected to be no more than twice per year
Diversity & Inclusion:
We strongly believe in the abundance of differences among individuals. We value different points of view and appreciate diverse perspectives. We truly believe this is what makes our organization inclusive and more responsive to the needs of our diverse customers.
EEO:
Scientific Research Corporation is an equal opportunity and affirmative action employer that does not discriminate in employment.
All qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, age, sexual orientation, gender identity, or national origin, disability or protected veteran status.
Scientific Research Corporation endeavors to make www.scires.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact jobs@scires.com for assistance. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.