DSD Laboratories Inc. has an exciting opportunity for a Sr. Security Technical Analyst to work at Scott AFB, Illinois.

Candidates must be able to provide Computer Network Defense (CND) services to the network. Candidates will provide integrated support to agency staff, perform compliance self-assessment / audit functions to help maintain a robust security program, documentation, and support Government reporting requirements.  Candidates will be the liaison for all independent audits and remediation efforts to ensure a centralized focal point of contact is available for external auditors. Candidates will perform network vulnerability scans in accordance with DoD guidance using the approved centralized management utility to verify the results documented in VMS. Candidates will perform risk assessments reviews on all systems, to determine if the risk to confidentiality, integrity, availability, and accountability is being maintained at an acceptable level. Candidates will identify and evaluate all residual risks, and document the results of its evaluation and provide rationale as to why the risk should be accepted or rejected, and the operational impacts associated with these risks. Candidates will perform boundary security management to include:

·         Manage firewalls – Process firewall requests and document authorized rule changes.

·         Manage Internet Proxies – Review, approve and implement changes to proxy servers.

·         Manage content filtering devices – Review, approve, and implement changes to content management devices. Provide weekly reports illustrating anomalies, high-volume filtering statistics, and new filters.

·         Identify security weaknesses in daily operations to IT system management

·         Conduct forensic examinations of laptop and desktop PCs, hard disk, memory contents, PDAs, and removable media

·         Conduct analysis on potentially malicious code, emails and attachments

·         Perform analytical reviews of Network Packet Capture files in support of incident investigations.

·         Monitor anomalies in system behavior

·         Respond to uncommon system failures

·         Inform senior management of unresolved concerns

·         Provide impromptu briefings associated with security concerns

Candidates will administer the software vulnerability patch management processes for all managed systems. Candidates will monitor antivirus activity and antivirus configurations using the centralized management product, and provide daily, monthly, and annual reports illustrating virus activity. Candidates will manage incident response to include data spills (i.e., sensitive, personal, and classified information) and threats (system attacks, malicious code, and system user activities which are considered to be in violation of policy). Responsibilities include identifying trends and the scope of the problem, notifying the COR, safeguarding the evidence, remediating and reporting the incidents in accordance with approved procedures. The following reports are required for incident response:

•          Monthly data spill and threat reports shall be generated for tracking purposes and trend analysis.

•          Weekly reports shall be generated for data spills

•          Weekly reports shall be generated for threats

                Candidates will respond to attack related incidents

Non-Technical Requirements:

Candidates must have excellent writing skills and will review IA Policies, providing updates, revisions, and developing new polices as required. Candidates will support integrating existing IA products with new hardware and software introduced into the network. Candidates will provide support for existing and new security stack products and services for the network.

Candidates must have experience with DIACAP C&A processes.

Required Qualifications:

         IAT I/II/III ( A+, Network+, GSEC, SCNP, SSCP, SCNA, GSE, CISA)

         Active Top Secret U.S. Government Security Clearance

         Bachelors Degree: MIA, ITM, MIS, CIS, CS, or other technical discipline

         Strong interpersonal and communication skills

         Must possess a minimum of 5 years technical experience within multiple  security disciplines/domains (7 years without an Advanced Degree)

Desired Qualification:

         Masters Degree: MIA, ITM, MIS, CIS, CS, or other technical discipline or Graduate Certificate in Information Assurance.

         IAM Level III Certified (CISSP, CISM, or GSLC)

         Other Certifications (ISSMP, ISSEP, ISSAP, CAP, CCNA, CCNP, LINUX, Security+, GLSC, GISF, PMP, etc.)

         Prior Military/Coast Guard Experience (Active Duty, Guard, Reserve or Civilian)

DSD is an independent company with excellent benefits and opportunity for growth. DSD is an AA and EOE. Qualified candidates please submit resume via email tomailto:humres@dsdlabs.com or fax to 978 443 1725