Clearance Jobs
UAM Analyst
PKH Enterprises is looking for a User Activity Monitoring (UAM) Analyst to support a federal client. This analyst will play a crucial role in detecting, analyzing, and mitigating potential security risks. This work will be onsite in Huntsville, AL. Responsibilities: Monitor & analyze user activity data to detect anomalous behavior and potential insider threats. Triage & investigate alerts, documenting findings and reporting them through case management systems. Develop & implement countermeasures against known adversarial tactics, techniques, and procedures (TTPs). Collaborate with cybersecurity, counterintelligence, and law enforcement teams to refine detection strategies. Conduct forensic analysis on network traffic, intrusion attempts, and data loss prevention technologies. Support insider threat programs by integrating multiple security data sources and refining detection triggers. Provide briefings & reports to leadership on trends, risks, and mitigation strategies. Required Experience: Education: Bachelor's degree in cybersecurity, information assurance, or related field (or equivalent experience). Experience: o 3 years relevant experience in UAM or insider threat detection, including ability to develop dashboards, filters, and audit policy triggers. Familiarity with network traffic analysis, intrusion detection, and forensic investigations. Certifications: CISSP, CEH, Security+, or DoD-8570 IAT Level II. Clearance: Candidates must hold an active TS/SCI clearance. Preferred Experience: Technical Skills: o Knowledge of Windows, Linux, Unix operating systems. Experience with Microsoft Purview. Experience with UAM tools. Ability to develop dashboards, filters, and audit policy triggers. Group id: 10451030
PKH Enterprises is looking for a User Activity Monitoring (UAM) Analyst to support a federal client. This analyst will play a crucial role in detecting, analyzing, and mitigating potential security risks. This work will be onsite in Huntsville, AL. Responsibilities: Monitor & analyze user activity data to detect anomalous behavior and potential insider threats. Triage & investigate alerts, documenting findings and reporting them through case management systems. Develop & implement countermeasures against known adversarial tactics, techniques, and procedures (TTPs). Collaborate with cybersecurity, counterintelligence, and law enforcement teams to refine detection strategies. Conduct forensic analysis on network traffic, intrusion attempts, and data loss prevention technologies. Support insider threat programs by integrating multiple security data sources and refining detection triggers. Provide briefings & reports to leadership on trends, risks, and mitigation strategies. Required Experience: Education: Bachelor's degree in cybersecurity, information assurance, or related field (or equivalent experience). Experience: o 3 years relevant experience in UAM or insider threat detection, including ability to develop dashboards, filters, and audit policy triggers. Familiarity with network traffic analysis, intrusion detection, and forensic investigations. Certifications: CISSP, CEH, Security+, or DoD-8570 IAT Level II. Clearance: Candidates must hold an active TS/SCI clearance. Preferred Experience: Technical Skills: o Knowledge of Windows, Linux, Unix operating systems. Experience with Microsoft Purview. Experience with UAM tools. Ability to develop dashboards, filters, and audit policy triggers. Group id: 10451030