Job Description

Description:

Lockheed Martin Enterprise Operations is seeking a Cyber Incident Responder to join our team on a highly visible enterprise environment that provides security operations center (SOC) support, cyber analysis, application development, and an extended hours support staff with the mission of defending the enterprise’s computing assets. The Classified Cybersecurity Operations (C2Ops) Center is an Enterprise Operations team responsible to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity across multiple Enterprise environments.

Duties include supporting, coordinating and acting as the initial point of contact for security operations floor activities. Will assist with developing, maintaining, tuning, and monitoring cyber security content for detection and prevention capabilities. Will support investigating computer and information security incidents to determine the extent of compromise to information and automated information systems. Will provide network forensic and intrusion detection support to high technology investigations in the form of researching and maintaining proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption. In addition, the Analyst will lead and mentor other SOC Support Staff and will communicate with executive leadership regarding matters of significant importance to the enterprise environments. The Analyst should have expertise in monitoring and detection, and incident response to support detection, containment, and eradication of malicious activities targeting customer networks.

The ideal candidate for this position has proven experience working both independently and as part of a team.

The responsibilities of this role include, but are not limited to:

• Provide support in the detection, response, mitigation, and reporting of cyber incidents
• Thorough documentation of cyber incident analysis at an operational level
• Support cyber defense initiatives, analytical research and hardening across the enterprise
• Consistent and effective communication across the team, with stakeholders, and leadership
• Manage priorities and workloads with established accountability to deliverables

Basic Qualifications:

• Minimum of current Top Secret clearance with ability to obtain a Counterintelligence Polygraph.
• Bachelor's degree from an accredited college in a related discipline, or equivalent experience/combined education.
• Ability to successfully complete additional enhanced security review in accordance with Government contract requirements and it is a condition of employment that individuals hired into positions requiring program clearance obtain and maintain such clearance within sufficient time to allow Lockheed Martin to meet its business needs.
• Must meet DoD 8140 certification and training standards as directed by policy and/or contractual agreements
• Understanding of malware functionality, static and dynamic analysis, and detection signatures
• Understanding of operating systems: file structures, processes, services, and application execution
• Ability to perform focused research and analysis to write complete, accurate, relevant and timely cyber incident reports to support network defense
• Knowledge of Host and Network Forensics
• Knowledge of cyber defensive tools and technologies to include: Firewalls, Data Loss Prevention (DLP), Intrusion Detection/Prevention Systems (IDS/IPS), Endpoint Detection and Response (EDR)
• Strong Communication skills are essential
• Able to support first or second shift schedule and provide periodic surge/shift work to support extended hours SOC as required

Desired Skills:

- Previous experience working in DoD/Government environments
- Holds DoD 8570 IAT – level 2 or higher certification and CSSP-A certification
- Experience with Cloud Security (AWS/Azure)
- Experience with Security Incident and Event Management (SIEM) tools (e.g. Splunk/ELK)
- Understanding of basic usage of languages such as Python, Powershell, Bash for automation and data analysis
- A working understanding of cyber threat intelligence platforms to collect and correlate cyber threat information
- Understanding of threat models and attacker tactics, techniques, and protocols

Security Clearance Statement:This position requires a government security clearance, you must be a US Citizen for consideration.
Clearance Level:Top Secret with Investigation or CV date within 5 years