Kratos Defense & Security Solutions, Inc. Cyber Incident Handler in Honolulu, Hawaii

Job Descriptions:

Looking for an experienced cybersecurity professional with experieince identifying threats within client environments through real time analysis of logs and alerts. Analyze all relevant Cyber event data and other data sources for indicators of attack and potential network compromise, produce reports, and assist with incident response. Apply knowledge of computer and network architecture to provide analysis during investigations, identifying adversarial activity and methods for future detection and prevention. Use a combination of Open Source research, network, and host forensic analysis, log review and correlation, and PCAP analysis to complete investigations. Operate intrusion detection and prevention systems and other point of presence security tools. Develop comprehensive security write-ups which describe security issues, analysis, and remediation techniques to client leadership. Must also be able to handle the following tasks:

• Experience with collecting, analyzing, and interpreting qualitative and quantitative data from multiple sources for the purposes of documenting results and analyzing findings to provide meaningful products.• Ability to monitor and analyze logs and alerts from a variety of different technologies, including IDS/IPS, firewall, proxies, and antivirus across multiple platforms.• Ability to develop specific expertise, discern patterns of complex threat actor behavior, and communicate a comprehension of current and developing Cyber threats.• Ability to leverage online research tools to identify and navigate online forums, specialized Web sites, social media, and traditional sources.• Ability to coordinate and respond to events on all monitored networks and the systems on those networks.• Other duties as documented in the Statement of Work (SOW).

Required Experience:

Candidate must also have from four to seven (4 - 7) years of Cybersecurity experience in DoD or comparable US Government security.Possession of excellent oral and written communication skills in a professional consulting environment.*Candidate must have Experience with:

• Cybersecurity analysis, incident response, or a related field• Experience with leveraging all source intelligence analysis• Experience with HBSS, Splunk, or ArcSight

*Candidates must have one of the following approved DoD 8570 Information Assurance Technician (IAT Level III) certification:

• CompTIA Advanced Security Practitioner (CASP) Continuing Education (CE)• Cisco Certified Network Professional-Security (CCNP-Security)• Certified Information Systems Auditor (CISA)• Certified Information Systems Security Professional (CISSP) (or Associate)• GIAC Certified Enterprise Defender (GCED)• GIAC Certified Incident Handler (GCIH)

*Candidate must also have one of the following valid Computer Network Defense Service Provider (CNDSP) certifications:

• Certified Computer Security Incident Handler (CSIH)• Certified Ethical Hacker (CEH)• Certified Information Systems Auditor (CISA)• GIAC Certified Forensic Analyst (GCFA)• GIAC Certified Incident Analyst (GCIA)• GIAC Certified Incident Handler (GCIH)• GIAC Systems and Network Auditor (GSNA)

*Security+ CE and CEH are Mandatory

Keyword: Incident Handler, cyber, security incident, intrusion detection,

From: Kratos Defense