DaVita Inc.
Mid Cyber Defense Analyst / Incident Responder
DaVita Inc. - Colorado Springs, Colorado, United States, 80920
Work at DaVita Inc.
Overview
- View job
Overview
Mid Cyber Defense Analyst / Incident Responder
Have you got what it takes to succeed The following information should be read carefully by all candidates. Cyber Security IV Schriever Space Force Base Colorado Springs, CO
HX5 is an award-winning provider of engineering, research and development, and technical services to clients such as NASA and the Department of Defense. Founded in 2004, HX5 is a fast-growing veteran- and woman-owned company with locations nationwide. HX5 is currently seeking a qualified Mid Cyber Defense Analyst / Incident Responder supports the Missile Defense Agency (MDA) on theIntegrated Research and Development for Enterprise Solutions (IRES) contract at Schriever Space Force Base in Colorado Springs, CO.
Essential Duties and Responsibilities: Perform Defensive Cyber Operations (DCO)/Cyber Security Service Provider (CSSP) duties outlined in Evaluator Scoring Metrics (ESM). Perform cybersecurity duties on customer networks (proactively and reactively) to improve enterprise-wide security posture. Perform preliminary analysis, identification, and response actions to detect, characterize, and respond to cyber incidents IAW CJCSM 6510.01B. Lead event/incident investigations from start to conclusion, to include gathering data, analysis, and reporting. Properly document all steps in the incident response process while taking care to preserve and protect incident artifacts, evidence, and chain of custody. Analyze correlated assets, threat, and vulnerability data against known adversary exploits and techniques to determine impact and improve network defensive posture. Support a Cyber Defense Analyst and Cyber Defense Incident Responder training plan by instructing, evaluating, and mentoring Junior Cyber Defense Analyst and Cyber Defense Incident Responders. Support the development, establishment, review and update of DCO procedures, processes, manuals, and other documentation. Leverage actionable Cyber Threat Intelligence data to search for indicators of compromise and develop SIEM content/ signatures to detect known attack patterns and make recommendations for improvements. Coordinate with CSSP-CERT subscribers to develop current configurations, rules, and signatures for cyber security related toolsets. Coordinate with CSSP-CERT subscribers to notify, investigate, and remediate discrepancies in security logging and CSSP-CERT alignment. Provide standardized and targeted training in support of CSSP-CERT subscriber cyber defense and incident response programs. Review data of ongoing intrusions or cybersecurity incidents and report, analyze, and document/report the findings in accordance with CJCSM 6510.01B guidelines. Provide support to internal and external Insider threat and law enforcement / counterintelligence (LE/CI) agencies during cyber incidents / investigations. The successful candidate will: Have experience with most MS Office applications (Word, Excel, PowerPoint, and Visio). Be able to multi-task and prioritize various projects and assignments in a dynamic work environment in order to meet scheduled/unscheduled customer requests. Be willing to travel 25% of the time. Be willing to work rotating shifts in a 24x7x365 operational environment and respond quickly to emergencies as needed. Salary:
This position is expected to pay $114,600 - $139,600 annually; depending on experience, education, and any certifications that are directly related to the position. Education and Experience: Must have one of the following combinations of education and experience:
HS Diploma (or GED) and six (6) years of general experience. Associate's degree and four (4) years of general experience. Bachelor's degree and two (2) years of general experience. Master's degree.
Must have 4 years of directly related experience in information security, physical security, cybersecurity, or a combination. Must have 1 year experience in management or leadership in a team environment. Must have a current DoD 8570.01-M IAT Level II certification with Continuing Education (CE) - (CySA+, GICSP, GSEC, Security+ CE, SSCP) Must have a DoD 8570.01-M CSSP Analyst, Incident Responder, and Auditor certification (CEH or CySA+ cover all three) Must have an active DoD Secret Security Clearance. Desired Requirements:
Have a Bachelor's degree, or higher, in Cybersecurity, Computer Science or related field Have experience with security analysis and solutions in a WAN/LAN environment to include Routers, Switches, Network Devices, and Operating Systems (e.g., Windows, and Linux) Have experience with other Security Operations Centers (SOC)/DCO tools/applications, such as Firewalls, Intrusion Detection Systems / Intrusion Prevention Systems, Network Security Manager, Forward Proxy, Spam Firewall, etc. Have experience analyzing security compliance scans performed across a WAN (ACAS/Nessus preferred) Have experience analyzing network and host-based threats (ESS preferred) Be able to mentor and train personnel in an evolving, high-paced environment Be familiar with DoD Security Operations Centers (SOC) Be familiar with DCO/Cybersecurity Service Provider (CSSP)-guiding security policies and procedures Have an active DoD Top Secret clearance Position Type/Expected Hours of Work: This is a full-time position requiring 40 hours per week and offers a flexiblework schedule Monday through Fridayduring core business hours. Other Position Requirements: Proof of U.S. Citizenship or US Permanent Residency is a requirement for this position. Must be able to complete a U.S. government background investigation. Must be able to obtain a Secret clearance by date of hire. Must be able to travel, including air travel. Must have a valid Drivers License. HX5 offers a competitive salary and benefits package to include: Medical/Dental/Vision Insurance 401(k) plan with Company Match Paid Holidays Paid Time Off Parental Leave Life Insurance Tuition Reimbursement Identity Protection Medical and Dependent Care Flexible Spending Accounts Commuter/Transit Spending Accounts Group Legal Coverage Options Pet Insurance HX5, LLC is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, age, national origin, ancestry, citizenship, disability, or veteran status. HX5, LLC is a Drug Free Workplace Employer. ACCESSIBILITY NOTICE: If you need a reasonable accommodation for any part of the employment process due to a physical or mental disability, pleasecall (850) 362-6551. CJ
#J-18808-Ljbffr
Have you got what it takes to succeed The following information should be read carefully by all candidates. Cyber Security IV Schriever Space Force Base Colorado Springs, CO
HX5 is an award-winning provider of engineering, research and development, and technical services to clients such as NASA and the Department of Defense. Founded in 2004, HX5 is a fast-growing veteran- and woman-owned company with locations nationwide. HX5 is currently seeking a qualified Mid Cyber Defense Analyst / Incident Responder supports the Missile Defense Agency (MDA) on theIntegrated Research and Development for Enterprise Solutions (IRES) contract at Schriever Space Force Base in Colorado Springs, CO.
Essential Duties and Responsibilities: Perform Defensive Cyber Operations (DCO)/Cyber Security Service Provider (CSSP) duties outlined in Evaluator Scoring Metrics (ESM). Perform cybersecurity duties on customer networks (proactively and reactively) to improve enterprise-wide security posture. Perform preliminary analysis, identification, and response actions to detect, characterize, and respond to cyber incidents IAW CJCSM 6510.01B. Lead event/incident investigations from start to conclusion, to include gathering data, analysis, and reporting. Properly document all steps in the incident response process while taking care to preserve and protect incident artifacts, evidence, and chain of custody. Analyze correlated assets, threat, and vulnerability data against known adversary exploits and techniques to determine impact and improve network defensive posture. Support a Cyber Defense Analyst and Cyber Defense Incident Responder training plan by instructing, evaluating, and mentoring Junior Cyber Defense Analyst and Cyber Defense Incident Responders. Support the development, establishment, review and update of DCO procedures, processes, manuals, and other documentation. Leverage actionable Cyber Threat Intelligence data to search for indicators of compromise and develop SIEM content/ signatures to detect known attack patterns and make recommendations for improvements. Coordinate with CSSP-CERT subscribers to develop current configurations, rules, and signatures for cyber security related toolsets. Coordinate with CSSP-CERT subscribers to notify, investigate, and remediate discrepancies in security logging and CSSP-CERT alignment. Provide standardized and targeted training in support of CSSP-CERT subscriber cyber defense and incident response programs. Review data of ongoing intrusions or cybersecurity incidents and report, analyze, and document/report the findings in accordance with CJCSM 6510.01B guidelines. Provide support to internal and external Insider threat and law enforcement / counterintelligence (LE/CI) agencies during cyber incidents / investigations. The successful candidate will: Have experience with most MS Office applications (Word, Excel, PowerPoint, and Visio). Be able to multi-task and prioritize various projects and assignments in a dynamic work environment in order to meet scheduled/unscheduled customer requests. Be willing to travel 25% of the time. Be willing to work rotating shifts in a 24x7x365 operational environment and respond quickly to emergencies as needed. Salary:
This position is expected to pay $114,600 - $139,600 annually; depending on experience, education, and any certifications that are directly related to the position. Education and Experience: Must have one of the following combinations of education and experience:
HS Diploma (or GED) and six (6) years of general experience. Associate's degree and four (4) years of general experience. Bachelor's degree and two (2) years of general experience. Master's degree.
Must have 4 years of directly related experience in information security, physical security, cybersecurity, or a combination. Must have 1 year experience in management or leadership in a team environment. Must have a current DoD 8570.01-M IAT Level II certification with Continuing Education (CE) - (CySA+, GICSP, GSEC, Security+ CE, SSCP) Must have a DoD 8570.01-M CSSP Analyst, Incident Responder, and Auditor certification (CEH or CySA+ cover all three) Must have an active DoD Secret Security Clearance. Desired Requirements:
Have a Bachelor's degree, or higher, in Cybersecurity, Computer Science or related field Have experience with security analysis and solutions in a WAN/LAN environment to include Routers, Switches, Network Devices, and Operating Systems (e.g., Windows, and Linux) Have experience with other Security Operations Centers (SOC)/DCO tools/applications, such as Firewalls, Intrusion Detection Systems / Intrusion Prevention Systems, Network Security Manager, Forward Proxy, Spam Firewall, etc. Have experience analyzing security compliance scans performed across a WAN (ACAS/Nessus preferred) Have experience analyzing network and host-based threats (ESS preferred) Be able to mentor and train personnel in an evolving, high-paced environment Be familiar with DoD Security Operations Centers (SOC) Be familiar with DCO/Cybersecurity Service Provider (CSSP)-guiding security policies and procedures Have an active DoD Top Secret clearance Position Type/Expected Hours of Work: This is a full-time position requiring 40 hours per week and offers a flexiblework schedule Monday through Fridayduring core business hours. Other Position Requirements: Proof of U.S. Citizenship or US Permanent Residency is a requirement for this position. Must be able to complete a U.S. government background investigation. Must be able to obtain a Secret clearance by date of hire. Must be able to travel, including air travel. Must have a valid Drivers License. HX5 offers a competitive salary and benefits package to include: Medical/Dental/Vision Insurance 401(k) plan with Company Match Paid Holidays Paid Time Off Parental Leave Life Insurance Tuition Reimbursement Identity Protection Medical and Dependent Care Flexible Spending Accounts Commuter/Transit Spending Accounts Group Legal Coverage Options Pet Insurance HX5, LLC is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, age, national origin, ancestry, citizenship, disability, or veteran status. HX5, LLC is a Drug Free Workplace Employer. ACCESSIBILITY NOTICE: If you need a reasonable accommodation for any part of the employment process due to a physical or mental disability, pleasecall (850) 362-6551. CJ
#J-18808-Ljbffr