BAE Systems Cyber Analyst in Reston, Virginia

Job Description

Function as a junior to mid-level intrusion analyst on the back-end day shift (8am-8pm) for the BAE Global Security Operations Center. Work with a large team of Security Analysts and Engineers to support a global security operations capability.

Typical Education & Experience

Typically a Bachelor's Degree or equivalent experience

Required Skills and Education

Required education: Associates Degree or higher

Preferred Skills and Education

Basic Requirements

-Technical-

*Understand contemporary security architectures/devices such as firewalls, routers, switches, load balancers, remote access technologies, anti-malware, SIEM and AV

*Understand common attack vectors and exploitation

*Familiarity with web based attacks and the OWASP Top 10 at a minimum

*Familiarity with SANS top 20 critical security controls

*Ability to read and interpret pcap data

*Understand common network protocols

*Familiarity with web based exploit kits and their exploitation vectors

*Familiarity with concepts associated with Advanced Persistent Threats

*Covert channels, egress and data exfiltration techniques

*Understand root causes of malware infections and methods of proactive mitigation

*Understand propagation of malware in enterprise environments

*Understand covert channels, egress and data exfiltration techniques

*Understand the foundations of enterprise Windows security including:

-Active Directory

-Windows security architecture and terminology

-Privilege escalation techniques

-Common mitigation controls and system hardening

*Knowledge of Anti-Virus (AV) and Host Based Intrusion Prevention (HIPS) tools

*Experience in monitoring at least one commercial AV solution such as McAfee

-Other-

*Ability to follow process documentation and use analytical skills to interpret varied events and situations

*Ability to generate comprehensive written reports and recommendations

*Ability to write professional emails

*Ability to identify common false positives and make suggestions on tuning

*Ability to write and tune Sourcefire/Snort rules.

*Use of Burp suite/related tools to assist in writing IDS and WAF signatures

*Experience with ticketing systems such as Remedy, JIRA

*Industry Certifications such as A , Network , Security , CEH, SANS (GCIA, GCIH, GREM, GPEN), OSCP

*Experience working in a Security Operations Center (SOC), Managed Security Service (MSS), or enterprise network environment

Other Requirements:

*Eligibility to obtain security clearance

*Shift flexibility, including the ability to provide on call support when needed

*Ability to work greater than 40 hours per week as needed

About BAE Systems Intelligence & Security

BAE Systems is a premier global defense and security company with approximately 90,000 employees delivering a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support and services. Information Solutions, based in Reston, Virginia, is among the 10 largest IT providers to the U.S. government, serving most of the federal defense and civilian marketplace. It provides network-centric command, control, computing, and intelligence (C3I) solutions; wideband networking radio systems; information systems for the U.S. intelligence community; geospatial information services; and information technology services. Leveraging its knowledge of signals and data derived from signals, Information Solutions has attained a market-leading position in advanced information technology research, intelligence analysis and production, and geospatial exploitation software. Equal Opportunity Employer. Minorities . females . veterans . individuals with disabilities . sexual orientation . gender identity . gender expression

Cyber Analyst

BAE1US12206

EEO Career Site Equal Opportunity Employer. Minorities . females . veterans . individuals with disabilities . sexual orientation . gender identity . gender expression