Torin Consulting, Inc. is hiring: Cyber Data Analyst 2 (CDA2) with Security Clea

We believe in providing a strong work/life balance by investing in our employees and encouraging professional and personal growth. We do this by offering exceptional benefits, flexible schedules, and the tools necessary to achieve success through paid training, mentoring, and the opportunity to work alongside top-notch industry professionals. Join us on this journey as we execute this mission-critical contract providing high-end analytics and data science services within the REALM of cybersecurity. Your effort and expertise are crucial to the success and execution of this impactful mission that is critical in ensuring mission success through Security Engineering, Risk Management and Assessment, and Insider Threat Analysis, by improving, protecting, and defending our Nation's Security. Job Description: * Uses information collected from a variety of sources to monitor network activity and analyze it for evidence of anomalous behavior. Identifies, triages, and reports events that occur in order to protect data, information systems, and infrastructure. Finds trends, patterns, or anomaly correlations utilizing security-relevant data. Conducts analysis to isolate indicators of compromise. Notify designated managers, cyber incident responders, and cybersecurity service provider team member of suspected cyber incidents and articulate the event's history, status, and potential impact for further action in accordance with the organization's cyber incident response plan. The Cyber Data Analyst 2 shall possess the following capabilities: * Use cyber defense tools to monitor, detect, analyze, categorize, and perform initial triage of anomalous activity. * Generate cybersecurity cases (including event's history, status, and potential impact for further action) and route as appropriate. * Leverage knowledge of commonly used network protocols and detection methods to defend against related abuses. * Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). * Perform advanced manual analysis to hunt previously unidentified threats. * Conduct PCAP analysis. * Identify cyber-attack phases based on knowledge of common attack vectors and network layers, models and protocols. * Apply techniques for detecting host- and network-based intrusions. * Working knowledge of enterprise-level network intrusion detection/prevention systems and firewall capabilities. * Understand the foundations of a hardened windows network and what native services and protocols are subject to abuse. * Familiarity with fragmentation of network traffic and how to detect and evaluate fragmentation related attacks in raw packet captures. * Conduct network - traffic, protocol and packet-level - and netflow analysis for anomalous values that may be security-relevant using appropriate tools. * Understand system and application security threats and vulnerabilities to include buffer overflow, SQL injection, race conditions, covert channel, replay and return-oriented attacks, malicious code and malicious scripting. * A technical bachelor's degree from an accredited college or university may be substituted for two (2) years of CDA experience on projects of similar scope, type, and complexity. * Two (2) years of demonstrated experience using security information and event management suites (such as Splunk, ArcSight, Kibana, LogRhythm). * Two (2) years of demonstrated experience in network analysis and threat analysis software utilization. Requires Wireless certification similar to Certified Wireless Network Administrator (CWNA) to Assessing and Auditing Wireless Networks (GAWN), Certified Wireless Security Professional (CWSP), Offensive Security Wireless Fidelity (OSWP), Cisco Certified Network Associate (CCNA-Wireless), Or Cisco Certified Network Professional (CCNP-Wireless). Position requires active Security Clearance with appropriate Polygraph Pay Range: 176,000-227,000 The RealmOne pay range for this job level is a general guideline only and not a guarantee of compensation or salary. These considerations include, but are not limited to, the extent and intricacy of the role's responsibilities, the candidate's educational background, their work experience, and the specific competencies crucial for success in the role. RealmOne Benefits: * Healthcare Coverage + Insurance: Medical: Three (3) rich healthcare options through CareFirst with 100% or majority company-paid premiums. Tax-advantaged health savings account available with generous employer contribution. Dental + Vision: 100% employer-paid for employees and family, with a buy-up option available. * Retirement + Savings: 401K - 10% TOTAL CONTRIBUTION - 5% safe harbor - 5% annual profit share (both immediately vested!). * Paid Time Off + More: 4 weeks starting PTO - 11 federal holidays + 2 floating holidays - Paid hours for company-required training. * Paid parental leave - Adoption assistance - Annual swag drops - Flexible work schedules -Generous referral bonus program - Employee appreciation + family-friendly corporate events ...and much more. ABOUT US * RealmOne is a mid-sized science and technology company dedicated to solving our customers' toughest mission challenges. * Headquartered in Columbia, MD., RealmOne supplies advanced cybersecurity, data science, and software engineering services and products to customers in the Government and commercial sectors. * RealmOne delivers encompassing mission assurance and critical systems support to government customers across various U.Across more than 20 prime contracts, RealmOne is a premier innovator for the Government and Department of Defense, and our team is located across the United States.