Cyber Security Hunt and Incident Response Team (HIRT) Analyst-Nationwide job 6/7/2018
Battelle Energy Alliance
JOB DESCRIPTIONAPPLY JOB INFORMATION
Job Title: Cyber Security Hunt and Incident Response Team (HIRT) Analyst
Org: Cyber R&D
Work Location: Idaho Falls, ID
******This is a multi-level posting******
Securing the Nation Bit by Byte and Addressing the Threats of Tomorrow, Today
MISSION: Discover, demonstrate and secure innovative nuclear energy solutions, other clean energy options and critical infrastructure.
VISION: INL will change the world's energy future and secure our critical infrastructure.
Idaho National Laboratory (INL) is seeking a Cyber Security Hunt and Incident Response Team (HIRT) Analyst.
Participates in the real or post-time detection and preliminary diagnosis to determine the extent of the compromise of anomalous and malicious software. Provides on-site incident response services to conduct vulnerability, malware, and digital media analysis. Shares and coordinates vulnerability information and threat analysis through information products and alerts. Determines mitigation techniques, works with others to provide assistance and technical solutions for defensive resolution. Organizes and participates in the development and maintenance of custom code used to analyze network traffic and proprietary protocols, develops attack and defense methodology and code on high risk computer networks.
Works with customers as part of a team to respond to time sensitive and evolving threats in multiple capacities to analyze threat and forensic data. Uses findings and analysis results to design custom mitigation strategies for the customer. The ability to support operational tempo, perform technical work in the field, and effective communication skills (verbal, written) are required skills.
Participates in the development of significant new concepts or novel approaches to Cyber Security.
Implements and maintains high standards for safety, security, environmental compliance and Mission Delivery, and oversees successful project/program execution consistent with INLs standards and procedures to identify and mitigate risk (cost, schedule and quality).
PR01/PR02: Bachelors degree and 0-2 years of experience or an Advanced degree and 0-1 years of experience.
Preferred degree disciplines are: Computer Science/Engineering, Math, or other technical degree with a strong Computer Science background.
Must be a US Citizen and have the ability and willingness to obtain and maintain a Q clearance. Ability to obtain and maintain a "Q" clearance with appropriate sigmas and SCI clearance.
Experience with Cyber Security Incident response analysis. Enhances technical proficiency through peer interaction, continuing education and participation in relevant forums. Capable of representing the INL in national working groups, public forums and media interviews. Skill in establishing and developing customer rapport.
1. Strong understanding of methodologies with Zero Day exploits, advanced cyber security concepts, attack vectors, vulnerabilities and mitigation techniques.
2. Strong understanding of data recovery, information security assurance, network forensics, digital forensics experience, and malware analysis.
3. Solid understanding of advanced persistent threat tools, tactics, and procedures.
4. Experience with Intrusion response, mitigation and intrusion detection methodologies and tools.
5. Experience leveraging tools such as Splunk, Elk, FTK, Encase, Volatility, Bro and other system/network incident response tools
6. Strong understanding of Windows based operating systems and development toolsets.
7. Strong background in networking and computer security concepts, searching and sorting algorithms, decision trees, and/or memory management.
8. Familiarity with packet level programming.
9. Experience with Python, C, C , and/or Java programming languages and ability to pick up other languages as needed.
10. Bash, sh, and/or other *nix and Windows scripting language experience
11. Familiarity of database (MySQL, SQL, Oracle) architectures and toolsets
12. Must be willing to travel 20-50% to perform on-site incident response and forensic analysis.
13. Proficient C programming skills with the ability to code in multiple commonly used languages and assembly as necessary.
SELECTIVE SERVICE REQUIREMENTS
To be eligible for employment at INL males between ages 18 and 25 must register (or must have registered) with the Selective Service System (SSS). This includes U.S. born and naturalized citizens, parolees, undocumented immigrants, legal permanent residents, asylum seekers, refugees, and all males with visas of any kind which expired more than 30 days ago. The few individuals who are exempt from this requirement are those on current non-immigrant visas. For more information see www.sss.gov.
EMPLOYEE JOB FUNCTIONS
Employee Job Functions are physical actions and/or working conditions associated with the position. These functions may also constitute essential functions for the job position which the employee must be able to fulfill, with or without accommodation. Information provided below is to help describe the job so that the applicant has a reasonable understanding of the job duties/expectations. An applicant's ability to perform and/or tolerate these actions and conditions will be discussed and workplace accommodations may be made on a case-by-case basis following an individualized assessment of the applicant and other considerations, including but not limited to any governing safety standards.
MOTOR ABILITIES: Upper Body: Fine motor control (hands), Combined Upper/Lower body: Lifting ability- 35 lbs. max, exertion-moderate, repetitive work-intermittent.
SPECIAL SENSES: Eyes: Visually demanding work, near vision, Ears: Audio alarms.
WORK CONDITIONS: Facility: Stairs, Equipment: Typing/keyboard, Personnel Requirements: Rotating shift work, 8 Hrs/day, overtime/irregular hours, working alone.
CERTIFICATION EXAM(S): Testing designated position (TDP)
PLEASE APPLY BEFORE:
August 31 2018 (Midnight, MST)
ENVIRONMENTAL, SAFETY AND HEALTH STATEMENT
Must be familiar with, and comply with all relevant health and safety requirements. Must be knowledgeable of emergency action policies and procedures, methods for reporting/resolving work practices or conditions to available cognizant professionals.
When applying to positions please provide a resume and answer all questions on the following screens. Applicants, who fail to provide a resume or answer the questions, may be deemed ineligible for consideration.
INL is a science-based, applied engineering national laboratory dedicated to supporting the U.S. Department of Energy's mission in nuclear energy research, science, and national defense.
Idaho National Laboratory (INL) is an Equal Employment Opportunity (EEO) employer. It is the policy of INL to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.
#Idaho National Laboratory Job