Cyber Defense Analyst

DeMase Technical Service, LLC is seeking qualified candidates for a Cyber Defense Analyst position

Work Location: Amarillo, TX area

Number of Positions:  1         

Part-Time/Full-Time:  Full Time

Start Date:  October 2024

Salary Range:  TBD based on experience and education

Experience:  Bachelors degree in a technical field and 5 to 10 years of related experience or Associates degree in a technical field and 10 to 15 years of related experience.  Requires demonstrated in-depth knowledge and skills in a technical specialty.

Clearance Requirement: Candidate must possess an active US Department of Energy (DOE) Q security clearance.

Education: Bachelors degree in a technical field and 5 to 10 years of related experience or Associates degree in a technical field and 10 to 15 years of related experience.  Requires demonstrated in-depth knowledge and skills in a technical specialty.

Job Description:  Candidate will serve as a Cyber Defense Analyst serving a DOE NNSA facility in the Amarillo, TX area.  Candidate may work a combination of remote and on-site but must live in the Amarillo, TX area for onsite support.  Candidate will use data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats. 

 Required Skills:  The candidate must have experience with and be able to perform the following tasks:

1. Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources; develop content for cyber defense tools.
2. Document and escalate incidents (including event’s history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment.
3. Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack; perform cyber defense trend analysis and reporting.
4. Provide daily summary reports of network events and activity relevant to cyber defense practices.
5. Receive and analyze network alerts from various sources within the enterprise and determine possible causes of such alerts.
6. Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities.
7. Use cyber defense tools for continual monitoring and analysis of system activity to identify potential malicious activity.
8. Analyze identified malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information.
9. Identify applications and operating systems of a network device based on network traffic.
10. Reconstruct a malicious attack or an activity utilizing network traffic.
11. Notify designated managers, cyber incident responders, and cybersecurity service provider team members of suspected security incidents and communicate the event’s history, status, and potential impact for further action in accordance with the organization’s cyber incident response plan.

If you are interested in being considered for this position, please follow the application steps via our website: www.demase-tech.com/apply

DeMase will not submit your resume without first having detailed discussions with you and obtaining your permission to do so.

EQUAL OPPORTUNITY EMPLOYER
DeMase is an equal opportunity employer and all qualified applicants will be considered for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, protected veterans, or individuals with disabilities.