Cyber Security Professionals with Security Clearance
, MD, United States
Railhead, Inc. is seeking qualified Cyber Security professionals to join our Defense Enclave Services (DES) team at Fort Meade, MD. Multiple openings, to include a Cyber Security Engineer, Cyber Security Architects, Information Assurance Analysts, Splunk Engineers/Admins, Cyber Security Engineers, and Solution Architects. The selected candidate will support an extensive digital modernization program critical to DISA and Fourth Estate Agencies. You will support information technology discovery, optimization, and transformation into a centralized, operational enterprise. Responsibilities: • Manages and responds to computer security incidents through detection, investigation, analysis, remediation, and reporting of cybersecurity incidents in a timely manner with high quality
• Help improve the overall security posture through obtaining the knowledge of the enterprise systems, and to ensure the timely dissemination of security information to the appropriate stakeholders
• Analyze EDR, OS, and firewall logs, Full Packet Capture (PCAP), SIEM alerts, Anti–malware alerts, Host Intrusion Prevent/Detection System (HIP/DS), and server and application logs to investigate events and incidents for anomalous activity and produce reports of findings
• Conduct reviews and analysis of proxy logs, Microsoft Windows and Active Directory logs, Orchestrator logs, and malicious code of identify, contain, eradiate, and ensure recovery from incidents
• Respond to cyber incidents, including responding to IR phone calls and emails, and preparing situational awareness reports for NOAA; escalate incidents to DOC as needed
• Act as main investigators for potential incidents identified by systems or lower tier analysts
• Investigate phishing and other user self–identified potential cyber threats (e.g., phishing emails sent to the CIRT)
• Work with users to analyze, triage, contain, and remediate security incidents
• Track incident managements thoroughly and communicate with end users and management effectively Qualifications: • Secret Clearance required.
• 8+ years of experience and Bachelor's Degree.
• Minimum of a Security+ certificate.
• Solid understanding of cyber landscape + typical threat vectors.
• Forensic investigation and malware analysis experience/exposure
• Experience with multiple vendor technologies, such as RSA Archer, FireEye suite of products, one or more SIEM technologies, Splunk or similar logging technology.
• Evaluate, develop and/or implement information assurance guidelines and procedures as required.
• Recommend security solution mitigations and enhancements supporting information assurance guidelines and customer requirements.
• Perform vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle. About Railhead: Railhead, Inc. is a leader in advanced cyber solutions; cloud and managed IT solutions; engineering; and information–based solutions for commercial entities, law enforcement, and homeland security. We provide intelligence, surveillance, and reconnaissance; training; logistics; and operational support services and solutions in support of organizations not limited to DHS, DoD, and the Intelligence Community (IC). We hire mission enablers who reflect our communities and proactively embrace diversity and inclusion, in order to advance our corporate culture, develop our family of employees into the best they can be, and in turn grow our market share throughout the industry. Railhead, Inc. is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status, or any other protected factor.
#J-18808-Ljbffr