The Cybersecurity Network Analyst (CNA) performs systems and data threat analysis and monitoring of systems and networks for insider threats.
Performs baseline audits of usage of all automated information systems and provides feedback in the form of written and oral reports and metrics.
Performs focused monitoring capabilities on a case-by-case basis.
Performs testing of new software releases/upgrades and policies to ensure compatibility with applications.
Performs network maintenance checks on requisite insider threat monitoring software and third party architecture.
The CNA creates policies, performs data analysis, product configuration support, network and database support, and maintenance of the operating server, agent baseline, and database repository; performs software policy analysis, generation, refinement, and testing.
Reviews and recommends additional resources required to meet customer requirements.
Assists in building and deploying software enhancements.
Participates in customer program and technical exchange meetings.
Provides product specific training on-site and off -site as required.
Requirements
TS/SCI with poly required
A Bachelor of Science (BS) degree in Computer Science, Cybersecurity, Engineering, or related field from an accredited college or university is required.
Five (5) years of Cybersecurity Threat Analysis experience in the following disciplines:
Cybersecurity techniques and Network Analysis, Insider Threat Analysis software, TCP/IP fundamentals, Windows Operating Systems and supporting Office applications, real-world incident management and incident response.
Information Technology Experience creating knowledge objects and robust queries/searches, along with creating reports and generating charts from the resulting queries/searches using Splunk.