Jobs at Sharp Solutions, Inc.

View all jobs

345 Tier 2 Insider Threat Analyst

Asburn, VA
SSi has principals that are an integral part of the organizations characteristic and are fundamentally essential to the shaping of everyday activities that connect to our broader mission and vision. As an organization SSi is committed to:
Foster a culture of innovative and out of the box thinking: 
We fundamentally understand that each employee has something unique to offer to the organization.  We foster a culture that nourishes innovation by empowering staff, leverages their passions, and encompasses a circle of trust where it’s all about thinking of new ideas and getting good feedback.
Invest in our Resources
Employees are essential, their physical and mental well-being are pivotal to the growth of our organization.  Our company culture, productivity, and overall employee happiness stem directly from how much training, responsibility, and empowerment they have within our organization. Our focus is on improving the growth of individual through education, allowing them to play central roles, so they can grow and add value to the company.
Provide solutions that are in the best interest of the customer and improve their strategic posture
We are in business to serve our customers and do what is in their best interest. Our philosophy is to offer services that are complete.  We strive to provide services that do more than meets the eye, to achieve more than superficial results and to help the business improve in areas that they may not have considered.
Give thoughtful considerations to our actions and their affects
We give thoughtful consideration to each other’s differences and opinions. We must give our individual best to get the job done right. Everyone is accountable for their behaviors, exercising rational judgment, and giving thoughtful consideration to their professional activities and decisions.

Currently we have an immediate need to add an experienced professional to our staff:

Primary Responsibilities:
The ideal candidate will have an advanced understanding of multiple Operating Systems, monitoring and detection techniques and methods, and Incident Response Lifecycle. The candidate must be familiar with the operation of common protocols, network intrusion detection systems, and endpoint detection and response tools. Experience using PowerShell, Python, or Bash to automate common tasks is highly preferred.
Duties and Responsibilities:
• Conduct investigations by analyzing and verifying information utilizing log analysis, digital evidence collection and forensic procedures.
• Use Network and Host based tools to monitor and detect potential threats and unauthorized activity across Windows, Unix, Cloud, and Mobile devices.
• Perform forensic and memory analysis on Windows, Unix, Mobile, and Cloud devices and infrastructure.
• Develop and update security content such as IDS signatures. SIEM queries, alerts, and dashboards, Standard Operating Procedures, and other detection and mitigation measures.
• Identify network visibility and technology gaps to make recommendations to improve the organizations overall security posture.
• Automate procedures and develop code to eliminate repetitive manual tasks.
• Collaborate and coordinate with other entities within and outside the SOC.
• Identify network visibility and technology gaps to make recommendations to improve the organizations overall security posture.

Requires BS degree and 3 or more years of relevant experience or Masters Degree with less than 3 years of relevant experience. Four years of related experience may be considered in lieu of a BS degree, with preference toward cyber experience/certs.
Minimum of a current Top Secret Clearance. In addition to specific clearance requirements all Department of Homeland Security CBP SOC employees are required to have or be able to favorably pass a 5 year (BI) Background Investigation.
Must have at least one of the following certifications:
Tier 2 Response: GCIH – Incident Handler GCFA – Forensic Analyst GCFE – Forensic Examiner GREM – Reverse Engineering Malware GISF – Security Fundamentals GXPN – Exploit Researcher and Advanced Penetration Tester GWEB – Web Application Defender GNFA – Network Forensic Analyst OSCP (Certified Professional) OSCE (Certified Expert) OSWP (Wireless Professional) OSEE (Exploitation Expert) CCFP – Certified Cyber Forensics Professional CISSP – Certified Information Systems Security CCNA Security CCNP Security CEH – Certified Ethical Hacker CHFI – Computer Hacking Forensic

SSi is an equal opportunity employer regardless of race, color, religion, creed, sex, marital status, national origin, disability, age, veteran status, on-the-job injury, sexual orientation, political affiliation or belief. Employment decisions are made without consideration of these or any other factors that employers are prohibited by law from considering. Any discriminatory action can be a cause for disciplinary action. SSi also prohibits discrimination against individuals with disabilities and will reasonably accommodate applicants with a disability, upon request, and will also ensure reasonable accommodation for employees with a disability.
Powered by