Job Description

Description We are looking for a Cybersecurity Analyst to join our Land Border Integration program and put our Program Security Architect's vision into practice. You will have a fast moving, challenging, and highly rewarding position keeping the network and other infrastructure secure that helps Customs and Border Protection keep our borders safe. This position is hybrid remote with 1 day a week in office in Sterling VA. Responsibilities: Proactive Threat Intel and Vulnerability Management: Track threat actors and associated tactics, techniques, and procedures (TTPs). Oversee the monitoring of security systems, logs, and alerts to detect and respond to threats. Investigate security alerts and incidents and take appropriate mitigation steps. Fix vulnerabilities and responsible for creating security incident reports. Perform static code analysis to analyze source code for application's safety and security. Provide guidance to system and application owners to remediate identified vulnerabilities. Install security software such as firewalls and encryption programs. Continuously improve security operations processes and procedures. Work with Security Architect to research, evaluate and recommend new security tools, techniques, and technologies in alignment with enterprise IT security strategy. Provide security awareness training to program teams and recommend security enhancements. Provide periodic risk assessment and penetration tests. Ensure security of facilities, equipment, tools, data, networks, and resources throughout the program: design, development, build, test, storage, delivery, operations, and support. Periodically conducts a review of each system's audits and monitors corrective actions until all actions are closed. Provide support to plan, coordinate, and implement tactical response to improve the organization's information security posture. Possess working knowledge of security practices and procedures; knowledge of current security tools available; hardware/software security implementation; different communication protocols; encryption techniques/tools; familiarity with commercial products, current Internet/EC technology, and open-source methodologies. Stay current on cloud and cyber security technology trends. Ability to write and verbally communicate information security and risk-related concepts effectively to both technical and non- technical audiences. Qualifications Strong understanding of security principles, best practices, frameworks, and technologies. Fundamental technical knowledge of DHCP, DNS, Active Directory, Windows and Linux OSes, firewalls, networks. Experience writing Windows Bash and PowerShell scripting, python, and other scripting languages. Good understanding of Security Development Lifecycle. Must be Clearable (CBP BI Public Trust). Must have strong problem-solving and analytical skills and demonstrate poise and ability to act calmly and competently in high-pressure, high stress situations. Familiarity with network and host-based Intrusion Detection Systems (IDSs) and Security Incident Event Management (SIEM). Security certification preferred, such as (CISM, CISSP, CSSP Incident Responder Certification). Education and Experience Bachelor's degree and five (5) years or more experience; Master's degree and three (3) years or more experience; PhD and 0 years related experience. BI Requirement Current holder of a DHS Public Trust clearance or the ability to obtain one. Note: Employment will be contingent upon having/obtaining a DHS Public Trust clearance prior to starting. SAIC accepts applications on an ongoing basis and there is no deadline. Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site. SAIC

Job Tags

Similar Jobs