Tier 3 Cyber Analyst

TCI has an immediate need for a

• Identification of Cybersecurity problems which may require mitigating controls.
• Analyze network traffic to identify exploit or intrusion related attempts.
• Recommend detection mechanisms for exploit and or intrusion related attempts.
• Provide subject matter expertise on network-based attacks, network traffic analysis, and intrusion methodologies.
• Escalate items which require further investigation to other members of the Threat Management team.
• Execute operational processes in support of response efforts to identified security incidents.

• Bachelors Degree in Computer Science, Information Technology or Information Security preferred or a technically related field OR equivalent related work experience.
• 3+ years IT security experience.
• 2+ years of experience in network traffic analysis.
• 3-5 years of related experience on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC).
• Strong working knowledge of: Boolean Logic, TCP/IP Fundamentals, Network Level Exploits, Threat Management, Regular Expressions.
• Knowledge of Control Frameworks and Risk Management techniques.
• Excellent oral and written communication skills.
• Excellent interpersonal and organizational skills.
• Strong understanding of IDS/IPS technologies, trends, vendors, processes and methodologies.
• Strong understanding of common IDS/IPS architectures and implementations.
• Strong understanding of IDS/IPS signatures, content creation and signature characteristics including both signature and anomaly-based analysis and detection.
• CERTIFICATIONS: (One or more desired) CompTIA Security +, CPTE - Certified Penetration Testing Engineer or CEH - Certified Ethical Hacker, GCIH - (GIAC Certified Incident Handler) or ECIH - (EC-Council Certified Incident Handler), CISA - Certified Information Systems Auditor.
• Must be able to obtain a Position of Public Trust Clearance