EDUCATION AND EXPERIENCE REQUIRED:

• Bachelor of Science in Information Technology and 2 years of experience in computer security incident response.
• Experienced in languages including Python, SQL, and PHP.
• Experienced with VMware, FireEye, Cisco, Zimperium, AirWatch, Palo Alto, Wireshark, and Snort.

• Responsible for assessing intentions of adversary groups to conduct CNE and CNA against ARNG.
• Skilled in reviewing ingest of cyber news feeds, signature updates, incident reports, threat briefs, vulnerability alerts, and Government threat intelligence feeds (e.g., DISA, Army, RCC-NG, US-CERT, ARCYBER, NETCOM, and CYBERCOM) up to TS/SCI levels.
• Interprets potential threats to hardware and software and recommend RCC-NG risk mitigations, countermeasures, and detection activities as part of the overarching CND.
• Performs work under supervision, as necessary.
• Works as part of a 24/7/365 team proactively delivering ways to mitigate risk and responding to incidents within the environment.
• Investigates and carries out triage on a diverse range of security events, elevating when necessary.
• Responds to incidents in order to prevent or limit damage to assets, and reports on them.
• Implements indicators of compromise into the environment security tools found via open source, investigations, or intel.
• Performs daily, hands-on work with all aspects and steps of information assurance and security, including involving different teams within the organization.