Northrop Grumman Cyber Incident Analyst Responder - Shift Incident Manager (SIM) in Arlington, Virginia
Do you desire a patriotic role and the chance to defend our nation's cyber infrastructure? Do you enjoy learning about new technologies and how they can be used to provide cutting edge services to our customers? If so, then look to join the Northrop Grumman Mission Systems team.
The Cyber Incident Analyst Responder - Shift Incident Manager (SIM) position will be located in Arlington, VA. Selected candidate will support 2 nd Shift to include a 2pm - 10pm work schedule.
This requisition may be filled at a higher grade based on qualifications listed below.
Serve as the Shift Incident Manager (SIM) and manage the NCCIC Security Operations Center (SOC) 24x7x365 Watch Section directing Department and Agency level incident management activities.
Manage incident triage and coordination with analysis and detection sections to identify and analyze technology and cyber impacts to IT assets, network infrastructure (LAN/WAN), including applying security and ensure proper incident management and coordination.
Direct continuity of operations for emergency relocation of 24x7x365 operations to include uninterrupted telecommunications, computer systems, cybersecurity, and networks.
Organizes, supports, and manages the containment, investigation, and remediation efforts in regards to incidences.
Perform quality assurance of service desk actions and Remedy ticket submissions. Monitor, respond, and catalog SOC and SIM emails as applicable. Submit Remedy tickets as necessary to assist with keeping the triage console free of backlogs.
Supports incident response engagements, and partners with other incident response teams in maintaining an understanding of threats, vulnerabilities, and exploits that could impact client networks and assets.
Monitor and review multiple data sources, including intelligence, media, and law enforcement reporting, to identify cybersecurity incidents, threats, and vulnerabilities.
Provide classified and unclassified cyber risk briefings and activity updates, to include but not limited to civilian government agencies and community stakeholders.
May be required to coordinate with external organizations, authorities, and senior level leadership.
Basic Qualifications - To be considered for this position, you must minimally meet the knowledge, skills, and abilities listed below. This requisition may be filled at a higher grade based on qualifications listed below. This requisition may be filled at either a level 2 or 3.
Bachelor's Degree and a minimum of 2 years' experience required for the level 2 role. An additional 4 years of experience may be substituted for degree.
Bachelor's Degree and a minimum of 5 years' experience required for the level 3 role. An additional 4 years of experience may be substituted for degree.
Active Top Secret Security Clearance with the ability to obtain a TS/SCI is required. In addition, selected candidate must be able to obtain and maintain a favorably adjudicated DHS background investigation (EOD) for continued employment.
Ability to support 2 nd Shift work schedule.
Familiar with network analytics including Netflow/PCAP analysis.
Understanding of cyber forensics concepts including malware, hunt, etc.
Understanding of how both Windows and Linux systems are compromised.
Preferred Qualifications - Candidates with these desired skills will be given preferential consideration:
DHS Suitability at the SCI level .
Experience using Splunk for system data analytics and monitoring strongly preferred.
Experience performing cyber forensics, malware analysis, cyber hunt, etc. strongly preferred.
A professional certification such as GCFA, GNFA, GREM, or GCIH is highly desirable.
Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO . U.S. Citizenship is required for most positions.
Job Category : Information Technology
- Northrop Grumman Jobs