Description
Description
SAIC is seeking a skilled and motivated Cyber Network Defense (CND) Analyst to join our team in support of an on-premises enterprise IT environment. As part of a subcontract supporting a critical customer, the candidate will perform assessments of systems and networks to identify deviations from acceptable configurations, enclave policy, or local policy, while evaluating incident response procedures and capabilities. Responsibilities include exploiting system and network vulnerabilities to gather data from target systems. This role involves working within a complex environment of virtualized Windows and Linux servers, SQL Server databases, Oracle databases, and comprehensive networking layers to protect mission-critical systems and infrastructure.
All work must be performed on-site in Springfield, VA.
Key Responsibilities:
- Perform assessments of systems and networks within the networking environment or enclave to identify deviations from acceptable configurations, policies, or security standards.
- Evaluate incident response procedures and capabilities to ensure readiness for detecting, responding to, and mitigating cyber threats.
- Exploit system and network vulnerabilities and misconfigurations for the purposes of gathering data from target systems or adversary networks to enable operations and intelligence collection capabilities.
- Leverage computer networks to disrupt, deny, degrade, or destroy information resident in computers and networks, or the computers and networks themselves.
- Identify, evaluate, and report cybersecurity vulnerabilities, providing actionable mitigation recommendations.
- Review and validate system configurations, changes, and security controls for compliance and effectiveness.
- Provide monitoring and analysis to detect signs of exploitation, unauthorized activity, or suspicious patterns.
- Maintain detailed documentation, including incident investigations, security findings, compliance reports, and remediation plans.
- Collaborate with stakeholders, such as Systems Administrators, Network Engineers, and Cybersecurity personnel, to assess and address risks effectively.
Qualifications
Education:
- Bachelor's Degree
Certifications (CWF Requirements):
- Candidates must satisfy Cybersecurity Workforce Framework (CWF) ID 511 (Cyber Defense Analyst) or 531 (Cyber Defense Auditor, Intermediate Level) requirements, as outlined by Navy COOL.
This requirement can be met by possessing one or more of the following qualifying certifications: CompTIA Security+ CE
Certified Information Systems Auditor (CISA)
Certified Ethical Hacker (CEH)
GIAC Certified Incident Handler (GCIH)
Certified Information Systems Security Professional (CISSP) (or a similar advanced-level certification).
OR This requirement can be met through:
- A Bachelor's Degree in Cybersecurity, Computer Science, IT, or a related field.
Experience:
- 2-5 yearsof experience performing security audits, compliance assessments, or Cyber Network Defense-related (CND) functions in an enterprise IT environment.
Technical Skills:
- Proficiency in cybersecurity frameworks (e.g., NIST 800-53, RMF, ICD 503).
- Experience with CND tools and technologies (e.g., Splunk, Nessus, ACAS).
- Solid understanding of Windows/Linux security configurations and enterprise network concepts.
- Familiarity with incident response procedures and database security for platforms like SQL Server and Oracle.
Clearance Requirement:
- Active TS/SCI clearance with the ability to obtain and maintain a TS/SCI with Poly.
Work Environment and Notes:
- On-site Work: All work must be conducted on-site in Springfield, VA.
- Program Scope: Supports on-premises enterprise IT environments, including virtualized Windows/Linux servers, databases, and comprehensive networking layers.
- Subcontractor Role: Roles and responsibilities are defined per the subcontract agreement, with salary based on competitive market rates and role-specific requirements.
Apply on company website
Find Connections via Linkedin
