Abile Group, Inc.
Cyber Security Operations Specialist, CSOC Tier 3
Abile Group, Inc., Springfield, Virginia, us, 22161
Cyber Security Operations Specialist, CSOC Tier 3
Abile Group, Inc. has an exciting and challenging opportunity for a Cyber Security Operations Specialist, CSOC Tier 3 on a contract providing Network and Cybersecurity services supporting an Intelligence Community customer. All personnel on the team will work to support transport and cybersecurity information technology (IT) services on multiple networks and security domains, at multiple locations worldwide, including new facilities and building constructions to support the IC mission. The right candidate will possess the skills and qualifications below and be prepared to handle all responsibilities independently and professionally. Responsibilities
Coordinate and implement tasks, perform analysis, and document response activities required during cyber security incident response, including containment measures, IP blocks, domain blocks, and disabling user accounts on the direction of the Government. Coordinate with the Security and Installations Directorate (SI) Office of Counterintelligence (SIC), Insider Threat Office (SIII), and other law enforcement and counterintelligence personnel to perform advanced investigation and triage of incidents. Collaborate with appropriate authorities in the production of security incident reports. Categorize incidents and events. Coordinate with other contracts, organizations, activities, and services to ensure incidents are properly reported, contained, and eradicated. De-conflict blue/red team activity with open incidents/events when applicable. Coordinate with NGA and other entities to support recovery from incidents/events. Build timelines, documents, briefings, and other products to inform stakeholders of incident response actions and impacts. Document actions and analysis in the authorized ticketing system to enable reconstruction of actions taken. Develop and, when approved, generate and update reports in JIMS, ICMS, and other authorized reporting systems. Develop, maintain, and, when authorized, execute custom scripts/tools to collect and analyze data and respond to incidents/events. Perform digital media analysis on host, server, and network data as required to analyze and respond to incidents, including volatile and non-volatile memory and artifacts. Develop indicators of compromise for Cybersecurity stakeholders and other Contract Services; provide adversary attribution; perform malware analysis and signature development. Coordinate with CSOC Tier 1 and 2 services to remediate discrepancies and provide recommendations to prevent recurrence. Clearance Required:
TS/SCI with the ability to obtain a CI Poly. Degree and Experience:
Bachelor's degree; 6 years of experience in Cyber Security (CSOS). Certifications
DoDD 8140.01 and DoD 8570.01-M IAT Level II. CSSP Incident Responder. Desired Skills/Certifications
Master’s degree. IAT III. Required Skills
Provide input to and coordinate with stakeholders to deliver CSOC Significant Activity Report, CSOC Operations Update, and Weekly CSOC Status Report. Serve as a C-IRT member as required and under the direction of the Government C-IRT Commander. Develop and coordinate courses of action with Government and contract stakeholders;, and, with authorization, execute Defensive Cyberspace Operations-Internal Defensive Measures on NGA networks and systems. Perform digital media analysis and malware reverse engineering as required to analyze and respond to incidents. Execute authorized scripts/tools to collect and analyze data and respond to incidents/events. Develop, document, and provide incident investigation reports detailing the entire lifecycle of the incident, adversary activity, host and network analysis, timelines, and recommendations within 30 days of C-IRT stand-down. Conduct quality control reviews of closed CSOC Tier 2 tickets to ensure proper analysis, categorization, documentation, and notification. Abile Group, Inc. was formed in July 2004 to partner with the Intelligence Community and their Contractors in Enterprise Analytics & Performance Management, IT & Systems Engineering, and Program & Project Management. We are an EDWOSB dedicated to our employees and clients. We are looking for high performing employees who provide advice, guidance, and solutions development and implementation support. Note:
Abile is committed to hiring the most qualified and best fit person for the job. Anyone requiring reasonable accommodations should email careers@abilegroup.com with requested details. A member of the HR team will respond within 2 business days. Please review our current job openings and apply for positions you believe may be a fit. If not an immediate fit, we will keep your resume for future opportunities.
#J-18808-Ljbffr
Abile Group, Inc. has an exciting and challenging opportunity for a Cyber Security Operations Specialist, CSOC Tier 3 on a contract providing Network and Cybersecurity services supporting an Intelligence Community customer. All personnel on the team will work to support transport and cybersecurity information technology (IT) services on multiple networks and security domains, at multiple locations worldwide, including new facilities and building constructions to support the IC mission. The right candidate will possess the skills and qualifications below and be prepared to handle all responsibilities independently and professionally. Responsibilities
Coordinate and implement tasks, perform analysis, and document response activities required during cyber security incident response, including containment measures, IP blocks, domain blocks, and disabling user accounts on the direction of the Government. Coordinate with the Security and Installations Directorate (SI) Office of Counterintelligence (SIC), Insider Threat Office (SIII), and other law enforcement and counterintelligence personnel to perform advanced investigation and triage of incidents. Collaborate with appropriate authorities in the production of security incident reports. Categorize incidents and events. Coordinate with other contracts, organizations, activities, and services to ensure incidents are properly reported, contained, and eradicated. De-conflict blue/red team activity with open incidents/events when applicable. Coordinate with NGA and other entities to support recovery from incidents/events. Build timelines, documents, briefings, and other products to inform stakeholders of incident response actions and impacts. Document actions and analysis in the authorized ticketing system to enable reconstruction of actions taken. Develop and, when approved, generate and update reports in JIMS, ICMS, and other authorized reporting systems. Develop, maintain, and, when authorized, execute custom scripts/tools to collect and analyze data and respond to incidents/events. Perform digital media analysis on host, server, and network data as required to analyze and respond to incidents, including volatile and non-volatile memory and artifacts. Develop indicators of compromise for Cybersecurity stakeholders and other Contract Services; provide adversary attribution; perform malware analysis and signature development. Coordinate with CSOC Tier 1 and 2 services to remediate discrepancies and provide recommendations to prevent recurrence. Clearance Required:
TS/SCI with the ability to obtain a CI Poly. Degree and Experience:
Bachelor's degree; 6 years of experience in Cyber Security (CSOS). Certifications
DoDD 8140.01 and DoD 8570.01-M IAT Level II. CSSP Incident Responder. Desired Skills/Certifications
Master’s degree. IAT III. Required Skills
Provide input to and coordinate with stakeholders to deliver CSOC Significant Activity Report, CSOC Operations Update, and Weekly CSOC Status Report. Serve as a C-IRT member as required and under the direction of the Government C-IRT Commander. Develop and coordinate courses of action with Government and contract stakeholders;, and, with authorization, execute Defensive Cyberspace Operations-Internal Defensive Measures on NGA networks and systems. Perform digital media analysis and malware reverse engineering as required to analyze and respond to incidents. Execute authorized scripts/tools to collect and analyze data and respond to incidents/events. Develop, document, and provide incident investigation reports detailing the entire lifecycle of the incident, adversary activity, host and network analysis, timelines, and recommendations within 30 days of C-IRT stand-down. Conduct quality control reviews of closed CSOC Tier 2 tickets to ensure proper analysis, categorization, documentation, and notification. Abile Group, Inc. was formed in July 2004 to partner with the Intelligence Community and their Contractors in Enterprise Analytics & Performance Management, IT & Systems Engineering, and Program & Project Management. We are an EDWOSB dedicated to our employees and clients. We are looking for high performing employees who provide advice, guidance, and solutions development and implementation support. Note:
Abile is committed to hiring the most qualified and best fit person for the job. Anyone requiring reasonable accommodations should email careers@abilegroup.com with requested details. A member of the HR team will respond within 2 business days. Please review our current job openings and apply for positions you believe may be a fit. If not an immediate fit, we will keep your resume for future opportunities.
#J-18808-Ljbffr