Sr Cyber Analyst (Remote)

Responsibilities

National and international actors continually target the US infrastructure, and the US Internal Revenue Service is a frequent target.  The Internal Revenue Service (IRS) Cybersecurity organization High Value Asset (HVA) Continuous Monitoring Program provides monitoring and cyber threat detection to the IRS.   The mission of the HVA program is to provide risk assessment, monitoring and detection of cyber risk to the IRS HVA’s.  

 

At Noblis, our team of dedicated, innovative, and knowledgeable cybersecurity professionals leveraging current cybersecurity and data analytics strategies, approaches and innovative technologies.  Join our team of dedicated professionals to protect the US Taxpayers, US Businesses and the IRS from cybersecurity attacks.

 

We are looking for Sr. Cyber Analysts to join ou team. 

 

Responsibilities:

• Provide Cyber Security Analytics expertise to the Insider Threat Team at IRS government agency
• Identify Cyber Security threats and anomalies in OS, Network, Security SEIMs, and Application logs
• Provide Forensic Review of Logs
• Develop Insider Threat related Cyber Security Use Cases
• Collaborate with a multi department team with computer scientist, data scientist and cyber analyst
• Respond to incidents and anomalous events
• Document findings and be able to write reports
• Demonstrate independent analysis ability and be able to piece together various threat with incomplete data 

Qualifications

Required minimum skills and knowledge:

• Bachelor’s Degree with a minimum of 5 years of related experience OR Master’s degree with 3 years of related experience
• Familiar with incident response frameworks
• Recognize patterns in logs and be able to tie these patterns together for detection and identification of activities on endpoints and servers
• Computer security expertise with ability to identify solutions to problems and guide teams to develop solutions

Desired skills and knowledge:

• Able to work with relational databases and familiar with SQL
• Familiar with Splunk and SPL
• Familiar with Machine Learning Concepts and Anomaly Detection Methods
• Familiar with mainframe operations and logging and how various security incidents and events may appear within mainframe logs
• Understand and apply MITRE ATT&CK framework to observed activity
• Able to consider how a user could circumvent security measures
• Detect activity manually and transfer detection to automated analytic
• Must possess ability to demonstrate knowledge of the OSI layer and threats associated with each layer
• Technical experience with multiple fields of study including network security and engineering, digital forensics and incident response and familiar with tools related to those activities
• Evaluate datasets to devise meaningful transformations to data that solve customer problems
• Understand log aggregation and analysis
  • Familiar with Windows and/or Linux logs
  • Familiar with Network, security, and application logs

#nowhiring

Client Engagement

· Support and lead evolving business development efforts by applying technical and functional expertise to develop business solutions. · Lead proposal sections for small or limited competition proposals and actively participate in teaming strategy discussions

Overview

With the continuing impacts of COVID-19 around the world, we are taking action to protect the health and well-being of our colleagues and maintain the safety of the communities where we operate. Noblis seeks an environment free from COVID-19 and prefers all employees to be fully vaccinated for COVID-19.  Attestation of vaccination status will be required for employment with Noblis.  Unvaccinated employees may be subject to additional health and safety requirements to include any federal, state and/or client restrictions.

 

Noblis and our wholly owned subsidiaries, Noblis ESI, Noblis MSD and Noblis Mikros Systems tackle the nation's toughest problems and apply advanced solutions to our clients' most critical missions. We bring the best of scientific thought, management, and engineering expertise together in an environment of independence and objectivity to deliver enduring impact on federal missions. Noblis works with a wide range of government clients in the defense, intelligence and federal civil sectors. Learn more at Noblis -About Us

 

Why work at a Noblis company?

Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public. Noblis has won numerous workplace awards. Noblis maintains a drug-free workplace.

 

Noblis is an Equal Opportunity Employer. Employment decisions are made without regard to race (as well as because of or on the basis of traits historically associated with race, including hair texture, hair type, and protective hairstyles such as braids, locks, and twists), color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, pregnancy, childbirth, lactation and related medical conditions, genetic factors, military/veteran status, or other characteristics protected by law.

 

Noblis is committed to the full inclusion of all qualified individuals. As part of this commitment, Noblis will ensure that persons with disabilities are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact employee-relations@noblis.org.