ERC Incorporated Network Security & Incident Response Analyst - ERC (914) in Colorado Springs, Colorado
Qualified applicants may apply online on theERC Careers page at:https://ercincorporated.hua.hrsmart.com/hr/ats/JobSearch/viewAll . Wage isnegotiated as part of the hiring process and is based on relevant experience.Company Website: http://www.erc-incorporated.com/Description of Duties: This position requires a Network Security &Incident Response Analyst to proactively and reactively analyze and guideremediation for vulnerabilities on customer networks to improveenterprise-wide security posture.Candidate will: Perform and analyze vulnerability scans without impacting network operations Perform network security threat/impact assessments and provide thoseassessments to various levels of leadership. Recommend, review, and report on corrective actions for identified risks Draft Cyber Task Orders directing remediation of vulnerabilities Oversee the Information Assurance Vulnerability Management (IAVM)program; to include dissemination, monitoring, and tracking of IAVMnotifications to customers; review of IAVM Plan ofAction and Milestones; provide technical assistance Oversee host-based security across the enterprise, to include: antimalware, host-based intrusion protection, data loss prevention, androgue system detection Respond to customer malware reports and assist in implementingprotective/anti-malware measures. Interpret higher-headquarters guidance to assist in the development ofagency-wide policy Support the development, establishment, review and update of CNDprocedures, processes, manuals, and other (CERT) documentation.Requirements: High School Diploma (or GED), plus 14 years general experience*,including 8 years experience in the information security field andpractical experience in an incident response role. Higher education may besubstituted for years of experience. Cybersecurity experience is preferred, but IT experience/ expertisewith servers, routers, firewalls, system patching, system hardening,tool/script development, advanced hardware/ software troubleshooting,COMSEC protocols/ procedures, and/or VDI is considered for cybersecurityexperi Must have a current DOD 8570.01-M IAT Level II certification withContinuing Education (CE) Must be able to obtain a DOD 8570.01-M CNDSP-Auditor certification(CEH, CFR, CSIH, GCFA, GCIH, SCYBER) within 30 days of hire Candidate must have an active DOD Secret security clearance to start;must have or be able to obtain a DoD Top Secret clearance Advanced experience with security analysis and solutions in a WAN/LANenvironment Proven aptitude in oral and written communications, with excellenttechnical writing skills Experience with most MS Office applications (Word, Excel,PowerPoint, and Visio) Must be willing to work rotating shifts in 24x7 operational environmentand respond quickly to emergencies as needed. Must be willing to travel - infrequent and less than two weeks Must be willing to provide training to other analysts, as needed Desired: Experience with Tier 2 CSSP or CERT, network, and system securitypolicies and procedures Experience with correlating security events across a WAN using SIEMtools, Arc Sight preferred Experience with other CND tools/applications, such as Network SecurityManager, Bluecoat, Barracuda Current DoD Top Secret clearance GCIH, or GCFA certified preferred.