Cyber Threat Technician (IMC00591)

The cyber threat technician will work as a member of the Security Operations Center (SOC) team and will be responsible for collecting and analyzing network and computing events, presented via numerous sources, to identify and document malicious or unauthorized activity on the enterprise network. The cyber threat technician will conduct initial, formal incident reporting and use appropriate skills and techniques in scoping, containing, and eradicating incidents based on the processes outlined in CJCSM 6510.01B, Cyber Incident Handling Program.

Duties/Responsibilities: This position will include, but is not limited to, the following tasks:

• Provide 24x7x365 support to conduct real-time analysis of ongoing IA/CND events on the RCC-NG network, identifying incidents and making recommendations to protect the network. 
• Lead efforts in collecting and analyzing network and computing events presented via numerous sources to identify and document malicious or unauthorized activity on the RCC-NG network. 
• Conduct initial, formal incident reporting (outlined in CJCSM 6510.01B, Cyber Incident Handling Program, dated 10 Jul 2012 or later) and documenting technical details in the incident tracking system. 
• Resolve daily incidents tracked in the incident tracking system, quickly and accurately. 
• Use appropriate skills and techniques in scoping, containing and eradicating incidents based on the processes outlined in CJCSM 6510.01B. 
• Support the transition of network defense configurations, as informed by resolved incidents, to prevent future occurrences. 
• Provide continuity of services as data sources, analysis tools, and techniques will evolve to changes in the Army National Guard technical computing environment as well as by mandates from Army Cyber Command and US Cyber Command. 

Basic Required Qualifications and Skills: Note: These are mandatory items that all candidates must have when making application to IMC for this position. Please ensure that your submission addresses each of these requirement items. Candidates without these required elements will not be considered.

• Bachelor’s degree from an accredited institution in a related field (experience considered in lieu of degree).  
• 2+ years of applicable network experience.
• 1+ years of Computer Network Defense (CND) experience.
• Must have a CompTIA Security+ CE certification in ACTIVE status.
• Must have one of the following certifications at start date in ACTIVE status: CSSP or CYSA+
• Basic Packet analysis experience.  
• Familiarity with ,and ability to investigate, Intrusion Detection System alerts.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Self-motivated and ability to stay focused.
• Pursuant to a government contract, this specific position requires U.S. Citizenship.
• All applicants must have current DoD Secret clearance.