Jacobs Mid-Level (MDS) Cyber SOC Analyst IRES - SSFB in Colorado Springs, Colorado
Challenging Today. Reinventing Tomorrow.
We're invested in you and your success. Everything we do is more than just a project. It's our challenge as human beings, too. That's why we bring a thoughtful and collaborative approach to every one of our partnerships.
At Jacobs, we challenge the status quo and redefine how to solve the world's greatest challenges, transforming big ideas into intelligent solutions for a more connected, sustainable world.
Design your career with a company that inspires and empowers you to deliver your best work so you can evolve, grow and succeed – today and into tomorrow
THIS POSITION IS AN ON-SITE POSITION WITH NO OPTION FOR REMOTE/TELEWORK
The government client requires all employees to be fully vaccinated against COVID-19 for any/all positions that will require travel.
Full vaccination (against COVID-19) is defined as: an individual must be either two weeks past the last shot of a two-shot vaccination sequence, or two weeks past the only shot of a one-shot vaccination sequence.
Description of Duties:
The Mid-Level MDS (Missile Defense Systems) Cyber SOC Analyst supports the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract. The candidate will:
Perform Defensive Cyber Operations (DCO)/Cyber Security Service Provider (CSSP) duties outlined in Evaluator Scoring Metrics (ESM).
Perform cybersecurity duties on customer networks (proactively and reactively) to improve enterprise-wide security posture.
Perform and analyze vulnerability scans utilizing Assured Compliance Assessment Solution (ACAS/Nessus) scanning tool.
Perform and analyze network security threat/impact assessments.
Utilize SIEM tool to analyze and correlate event logs from network security devices and mission critical infrastructure (e.g., network and host-based security systems, firewalls, routers, switches, servers, workstations, etc.). Search for indicators of compromise and develop SIEM content/signatures to detect known attack patterns. Analyze and interpret log data within SIEM tools (e.g., ELK, ArcSight, etc.) and make recommendations for improvements.
Review data of ongoing intrusions or cybersecurity incidents and report, analyze, and document/report the findings in accordance with CJCSM 6510.01B guidelines.
Analyze vulnerabilities, attack vectors, and emerging technologies against known adversaries/exploits and disseminate guidance to improve network defensive posture.
Support the development, establishment, review and update of DCO procedures, processes, manuals, and other documentation.
Support Anti-Malware program, forward alerts and warnings to customers, respond to customer malware reports and assist in implementing protective/anti- malware measures.
Assist with host-based security across mission systems utilizing DoD Host-based Security System (HBSS)/Enterprise Security Solutions (ESS), to include: antimalware, host-based intrusion protection system, data loss prevention, and rogue system detection.
Support Incident Response across mission systems IAW DoD regulations and instructions.
Lead event/incident investigations from start to conclusion, to include gathering data, analysis, and reporting.
Create, update, and manage queries and dashboards pertaining to HBSS/ESS, ACAS, and related security tools.
Support DCO operations by mentoring and training junior DCO analysts.
The successful candidate will:
Have experience with most MS Office applications (Word, Excel, PowerPoint, and Visio).
Be able to multi-task and prioritize various projects and assignments in a dynamic work environment in order to meet scheduled/unscheduled customer requests.
Be willing to travel 25% of the time.
Be willing to work rotating shifts in a 24x7x365 operational environment and respond quickly to emergencies as needed.
This position will be filled at Schriever SFB, Colorado Springs, CO
This position is expected to pay $96,400 - $106,400 annually; depending on experience, education, and any certifications that are directly related to the position.
This position will be posted for a minimum of 3 days. If a candidate has not been selected at that time, it will continue to be posted until a suitable candidate is selected or the position is closed.
Resumes, in month and year format, must be submitted with application in order to be considered for the position. The selected candidate will be assigned as an employee for Jacobs or one of our teammate companies.
Jacobs health and welfare benefits are designed to invest in you, and in the things you care about. Your health. Your well-being. Your security. Your future. Typical benefits offered include flexible work schedules and opportunities to work remotely, educational reimbursement, retirement benefits (401K match), employee stock purchase plan, health benefits, tax saving options, disability benefits, life and accident insurance, voluntary benefits, paid time off and paid holidays, and parental leave.
Here’s What You’ll Need:
Must have one of the following combinations of education and experience: HS Diploma (or GED) and 6 years of general experience; Associate's degree and 4 years of general experience; Bachelor's degree and 2 years of general experience; Master's degree and 0 years of general experience.
If this position requires travel selected candidate must be willing to provide proof of fully vaccinated (against COVID-19) status? (the process of which must be completed prior to the anticipated start date)
Must have 4 years of directly related experience
Must have a current DoD 8570.01-M IAT Level II certification with Continuing Education (CE) - (CySA+, GICSP, GSEC, Security+ CE, SSCP)
Must have a DoD 8570.01-M CSSP Analyst, Incident Responder, and Auditor certification (CEH or CySA+ cover all three)
Must have an active DoD Secret Security Clearance
Must be able to obtain and active DoD Top Secret/SCI Security Clearance
Have an Bachelor's degree, or higher, in Cybersecurity, Computer Science or related field
Have experience with security analysis and solutions in a WAN/LAN environment to include Routers, Switches, Network Devices, and Operating Systems (e.g., Windows, and Linux)
Have experience with other Security Operations Centers (SOC)/DCO tools/applications, such as Firewalls, Intrusion Detection Systems / Intrusion Prevention Systems, Network Security Manager, Bluecoat, Barracuda, etc.
Have experience performing security compliance scans across a WAN (ACAS/Nessus preferred)
Have a background in configuration, troubleshooting, and deployment of host-based security (HBSS/ESS preferred)
Be able to mentor and train personnel in an evolving, high-paced environment
Be familiar with DoD Security Operations Centers (SOC)
Be familiar with DCO/Cybersecurity Service Provider (CSSP)-guiding security policies and procedures
Jacobs is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, religion, creed, color, national origin, ancestry, sex (including pregnancy, childbirth, breastfeeding, or medical conditions related to pregnancy, childbirth, or breastfeeding), age, medical condition, marital or domestic partner status, sexual orientation, gender, gender identity, gender expression and transgender status, mental disability or physical disability, genetic information, military or veteran status, citizenship, low-income status or any other status or characteristic protected by applicable law. Learn more about your rights under Federal EEO laws (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) and supplemental language (https://www.eeoc.gov/sites/default/files/migrated_files/employers/eeoc_gina_supplement.pdf) .