Interested in a position with cutting-edge Global Operations? Northrop Grumman Information Technology (NGIT) sector is seeking a Network Security Analyst 4 to join our team in defining the future. This position will be located in Arlington, VA. The qualified applicant will become part of Northrop Grumman's Joint Task Force Global Network Operations (JTF-GNO) Command
Roles and Responsibilities:
* Focuses on detecting and mitigating exploits through DOD data sets as well as communicating this information to internal and external DOD organizations.
* Review DOD information and, based on established rules, provide the data to internal and external sources to mitigate the detected threats including malicious code, Botnets, exploit code for new vulnerabilities, etc.
* Take information received from external and internal sources and understand how DOD systems will detect this activity.
* Document all releasable information in situational awareness reports for dissemination with DOD CND organizations.
* Develop capabilities within the existing data sets that allow DOD to develop a true indications and warning perspective.
* Review available DOD data sources based on reported instrusions to identify additional compromises.
* Leverage existing data sources to identify new types of threats and techniques for compromising DOD systems.
* To fully leverage existing data sources, the indivdual will need to be able to develop unix and perl scripts that combine data harvesting modules into data sets of interest.
* Assess DOD data set capabilities and understand new techniques for mining the data to produce accurate results and information.
Minimum Qualifications:
To be considered for this position, you must minimally meet the knowledge, skills, and abilities listed below:
* Degree in CS/IT related field or 4+ years of experience in lieu of a degree
* Router experience
* TCP/IP knowledge. Knowledge of network data and the ability to analyze the resulting data. Experience with or knowledge of Netflow.
* Experience with UNIX, NT Internet security, and network security technologies required
* A sound programming background for maniputating large data sets.
* Position requires a current TS/SCI Clearance
Preferred Qualifications:
Candidates with these desired skills will be given preferential consideration:
* CISSP and/or CCNA
* Need to be able to be trusted by various organizations on the internet through social and technical credentials Communicating data analysis with external and internal organization with a focus on developing mitigation strategies at the appropriate level DOD site level, DOD service level, DOD level, DOD perimeter, or external to DOD.
* Have an understanding of relationships between COCOM / Services / Agencies. Experience in CERT environment preferred
* Ability to assemble powerpoint briefings rapidly and formally brief JTF-GNO leadership on changes and significant events.
* Understand how new attack methodologies will manifest themselves in existing data sources based on inferred pattern behavior and potentially statistical analysis / known traffic patterns based on configuration of DOD assets, DOD perimeter security, and DOD network topology.
This position is contingent upon contract award, budget, and/or customer approval. Northrop Grumman IT will consider qualified college graduates, regardless of age.
MULTIPLE POSITIONS. Security Clearance Required.
|