Cybersecurity Network Defense Analyst

　　Job Category: Information Technology

　　Time Type: Full time

　　Minimum Clearance Required to Start: TS/SCI

　　Employee Type: Regular

　　Percentage of Travel Required: Up to 10%

　　Type of Travel: Continental US

　　What You’ll Get to Do

　　CACI has an exciting and immediate opportunity for a Cybersecurity Network Defense Analyst to support the USAF Network Operations Security Center (NOSC). This position works on site and is a shift work position in a work center providing 24x7x365 support at Lackland Air Force Base in San Antonio, Texas.

　　If you want to use your advanced IT skills to support national security then this is the job for you. You’ll get to use leading edge technology as you sustain and defend the networks our Air Force warfighters use in the CENTCOM theater.

　　More About the Role

　　Assist other active duty, government civilians, and contractors assigned to the same functional areas.

　　Provide technical reports, meeting minutes, program plans, concepts of operations, contingency plans, and related documentation as identified for task deliverables.

　　Prepare and disseminate operational reports.

　　Support real-time monitoring of all assigned IPS/IPS deployed and supporting the mission.

　　Monitor network traffic to provide event correlations of operational traffic from multiple locations to determine network security posture.

　　Use standard/provided network tools to evaluate traffic for incident response analysis.

　　Coordinate and execute JTF-GNO Information Assurance Vulnerability Alert (IAVA) notices.

　　Maintain IDS/IPS devices.

　　Perform IDS/IPS Real-Time Monitoring Analysis.

　　Perform Network Event Correlation/Advanced Traffic Analysis.

　　Perform Incident Response & Analysis.

　　Perform Vulnerability Analysis.

　　Perform IDS/IPS Sensor installation, configuration, and maintenance.

　　Provide IDS/IPS Database & VPN Technical Support.

　　Conduct Network Defense Training.

　　Support Standardization & Evaluation (Stan/Eval) activities.

　　Perform Operational Process Tracking and Processing.

　　Provide Systems and Exercise Planning support

　　Prepare Network Defense Technical Reports.

　　Prepare and present oral and written technical communications.

　　You will also be required to:

　　Provide oral and written briefs, presentations, and professional reports to Government senior leaders and decision makers.

　　Provide on-call support via cell phone after hours, on weekends and holidays.

　　You’ll Bring These Qualifications

　　DoD TS/SCI Security Clearance

　　B.S. in related field, and 5 or more years’ relevant IT experience; OR 7 or more years’ relevant IT experience.

　　DoD 8570 CSSP-A Baseline Certification (CEH or equivalent)

　　Completion of additional Professional Certifications within 3 months of your start date to remain on the program. CACI will cover the cost of these certifications.

　　MCP (Server) - proof of passing Microsoft Exam 98-365: Windows Server Administration Fundamentals will satisfy this requirement (or min. 3 yrs. Microsoft Server expertise)

　　Network+ CE or CCNA

　　ITIL Foundation

　　Possess the following skill sets:

　　Extensive knowledge of network firewalls, computer, and server log analysis.

　　Extensive knowledge of digital evidence collection, handling, and security.

　　Experience with computer incident response and analysis and report dissemination.

　　Extensive knowledge and experience with network packet capture and analysis software such as WireShark (Ethereal) and Snort.

　　Experience with standard DoD network topology and DMZ boundary protection.

　　Experience with system analysis software (i.e. EnCase/EnCase Enterprise or FTK), software coding and debugging, and the virtual machine (VM) environment.

　　Experience with DoD/AF incident reporting processes.

　　Familiarity with NSA Threat Operations Center (NTOC) Attack, Sensing & Warning (AS&W) alerts and processing.

　　Knowledge and experience constructing, executing, and troubleshooting SQL DB queries.

　　Knowledge and experience with the DOD Centaur analysis system.

　　Possess experience with DoD/AF incident reporting processes; knowledge of threat visualization applications; extensive knowledge of digital evidence collection, handling, and security; experience with computer incident response and analysis, and report dissemination; extensive knowledge of DoD and AF network operations regulations; knowledge and experience processing Information Assurance Vulnerability Alert (IAVA) notices.

　　These Qualifications Would Be Nice to Have

　　Experience working in DoD, Air Force, and local base environmentsWhat We Can Offer You:

　　We’ve been named a Best Place to Work by the Washington Post.

　　Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

　　We offer competitive benefits and learning and development opportunities.

　　We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.

　　For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.

　　Company Overview: At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.