THE CENTECH GROUP

Network Intrusion Dectection/Protection Analyst (TS/SCI)

US-TX
Job ID
2021

Overview

THE CENTECH GROUP, Inc. (CENTECH®) is seeking a Network Intrusion Detection/Protection Analyst to serve in support of U.S. Air Force (AF) Cryptologic and Cyber Systems Division, Technical Operations and Infrastructure (TONTO) services contract. The person in this position will be responsible for gathering information necessary to validate system security accreditations and to validate functioning security measures internal to these information systems. They will define, create and maintain the required certification and accreditation (C&A) documentation for each information system in accordance with requirements. They will also assess the impacts of system modifications and technological advances on program project associated information systems.

This is a bid opportunity, contingent upon award and the qualified candidate may be selected as key personnel. Work location is Lackland Air Force Base (AFB), Texas and requires Top Secret (TS)/Sensitive Compartmented Information (SCI) clearance.

 

Responsibilities

  • Ensure that all services meet the requirements of the U.S. Department of Defense (DoD) Cyber Security Risk Management Framework (RMF) and DoD Instruction (DoDI) 8500.2, Intelligence Community directive (ICD) 503, or the most current standards and guidance that are applicable. This includes C&A activities
  • Assist in defining user and registration requirements to Local Registration Authorities (LRAs)
  • Evaluate and report all Cryptologic and Cyber Systems Division systems in compliance with the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIG) and Computer Network Defense (CND) directives, and a Web Penetration Test to identify vulnerabilities as directed
  • Support user creation (identity confirmation, credentialing, and enrollment), user management (provisioning across single or multiple systems and services, automated provisioning workflow and self-service), user access (identification, authentication and authorization) and user revocation (de-provisioning and disablement). Provide access controls with rights, roles and privileges. Authorize access to data based on groups and roles as approved in DD Form 2875 and other approved methods
  • Enable the de-provisioning process through automated account disablement and token revocation
  • Provide on-call support
  • Performs other duties as assigned

 

 

Qualifications

  • Bachelor’s degree and a minimum of six (6) years of experience or equivalent combination of education and experience
  • Must meet DoD 8570 certification eligibility requirements (e.g. Security+ CE or higher)
  • Candidate must possess a current TS/SCI clearance as a minimum
  • Required:
    • Experience in testing and describing system security implementations for cross domain solutions
    • Extensive technical knowledge of database and operating system security
    • Awareness of the capabilities of or direct experience with system security tools, including but not limited to firewalls, intrusion detection systems, anti-virus software, access validation systems, identification & authentication systems, audit log management, content filtering, information flow enforcement, and incident response procedures
    • Experience with network technologies and with system, security, and network monitoring tools
    • Thorough understanding of the latest security controls, testing techniques, and implementation of these controls

In addition to the required skills one must also have one or more of the following certifications:

  • Desired:
    • Intel Security Certified Security Professional – McAfee Host Intrusion Prevention system (HIPs)
    • Intel Security Certified Security Professional – McAfee ePolicy Orchestrator (ePO)
    • Certified Information Security Manager (CISM)
    • Systems Security Certified Practitioner (SSCP)
    • F5 Certified Technology Specialist (F5-CTS) Application Security Manager (ASM) Certification
    • F5 Certified Technology Specialist (F5-CTS) Access Policy Manager (APM) Certification
    • Experienced with administering & setting up Cisco VTC systems
    • Experienced with administering & operating ActiVu Data Walls
    • Other Cisco / Microsoft certification (CCENT, CCNA, CCNP, MCSA, MCSE, etc.)

THE CENTECH GROUP, Inc. is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. EOE M/F/Disabled/Veteran

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed