Cyber Defense Analyst

Job Title : Cyber Defense Analyst

Location : Rockville Maryland

Duration : 12 Months

Job Profile Summary :

The Cyber Defense Analysts role primarily includes security assessments data analysis and incident response activities. Team members are expected to collaborate and support each others areas and assist in monitoring and responding to security events generated by internal systems or through external alerts.

Job Description :

Essential Functions :

• Perform assessments of systems and networks within the College environment and identify where those systems / networks deviate from approved configurations or College policy.
• Measure effectiveness of defense-in-depth architecture against known vulnerabilities.
• Conduct vulnerability scanning activities across the enterprise.
• Analyze scan results to identify security weaknesses misconfigurations and areas of elevated risk.
• Correlate vulnerability data with current threat intelligence to assess exploitability and potential impact.
• Produce detailed reports on identified vulnerabilities severity levels business impact and remediation status.
• Coordinate and support remediation efforts across business owners and support teams.
• Supports security awareness and education efforts for the College community i.e.
• Employees Students Contractors Volunteers etc.
• Analyze data from cyber defense tools (e.g. Vulnerability Management tools EDR SEG IDS alerts firewalls network traffic logs) for the purposes of mitigating threats.
• Review SIEM and / or audit logs to identify anomalous activity and potential threats to network resources.
• Perform continuous monitoring and analysis of system and user activity to identify malicious activity.
• Maintain detailed tracking of vulnerabilities including deadlines remediation progress ownership and closure.
• Manage and update Plans of Action and Milestones (POA&Ms).
• Correlate events across a wide variety of source data (indications and warnings).
• Notify management of incidents that may require additional attention.
• Stay current with existing and evolving technologies to provide enhanced security service offerings to stakeholder groups.
• Act as a security consultant to help identify business needs and design appropriate security controls.
• Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
• Manage security incidents. Act as a trusted point of contact and provide expertise for incidents and executes incident response activities including escalation to upper management.
• Serve on the Cybersecurity Incident Response Team.
• Respond to alerts received from monitoring systems.
• Perform event correlation to gain situational awareness and determine the impact of an observed attack.
• Provide timely analysis of events to distinguish malicious incidents and events from benign activities.
• Analyze malicious activity to determine weaknesses exploited exploitation methods and effects on systems and information.
• Provide recommendations for improvements as needed.

Basic Qualifications :

Knowledge Skills and Abilities :

Competencies :

Decisions may affect a work unit or area within a department. May contribute to business and operational decisions that affect the department.

Problems are varied requiring analysis or interpretation of the situation. Problems are solved using knowledge and skills and general precedents and practices.

Results are defined and existing practices are used as guidelines to determine specific work methods and carries out work activities independently; supervisor / manager is available to resolve problems.

Contacts and information are primarily within the jobs working group department and / or campus.

Required Industry Certifications :

Key Skills

ArcGIS,Intelligence Community Experience,GIS,Python,Computer Networking,Data Collection,Intelligence Experience,R,Relational Databases,Analysis Skills,Data Management,Application Development

Employment Type : Full Time

Experience : years

Vacancy : 1