Network Design Engineer - Senior Incident Response Analyst

Network Design Engineer - Senior Incident Response Analyst

Unisys is a worldwide information technology services and solutions company. Our people combine expertise in systems integration, outsourcing, infrastructure, server technology and consulting with precision thinking and relentless execution to help clients, in more than 100 countries, quickly and efficiently achieve competitive advantage.

Day to Day Work Analyzes and develops specifications for computer security systems.  Analyzes interfaces, security maintenance hardware/software, performance, workload, usage, downtimes, and interfaces with outside systems.  Analyzes and proposes system modifications, upgrades and new COTS products to meet systems security requirements.  Works closely with engineers to support design and implementation of systems security specifications. Demonstrated skills:   Experience (6 years) in the detection, collection, analysis, response, mitigation and reporting process/procedures within Department of Defense (DoD) and the Department of the Navy (DoN) IT environments affecting computing environments.  Must have an understanding of and experience with the DoD and DON IA policy, DoD IA Implementation (DoD 8500.2), DON DIACAP Handbook, and DoD Information Assurance Certification and Accreditation Process (DoDI 8510.01).  Must have current hands on knowledge of DISA Security Technical Implementation Guides (STIGs) and Check Lists, Gold Disk (Windows), and Security Readiness Review (SRR -scripts) for UNIX.   â?¢ Must have advanced experience with host/network CVEs, hacker methodologies and tactics, and the tools used. Should have an understanding of chain of custody and basic security incident evidence gathering. Must have advanced experience in the use of tools such as Trace Route, Visual Route, Ethereal, and Nessus. â?¢ Experience with packet captures, TCP dumps, and the use and function of other commonly used security tools. Must have advanced experience with the TCP/IP protocol suite, TCP/IP headers and packets, the OSI model, and commonly used TCP/user datagram protocol (UDP) ports and associated services. Must have advanced experience with the monitoring and the analysis of server event logs, firewall logs, router syslogs, Database server logs, Web Server logs, DNS logs, etc and network/host-based IDS/IPS logs â?¢ Skill in common operating system (OS) and domain structures (Windows 2000, 2003, 2008, UNIX/Linux, Active Directory, Domain Controllers, etc.), servers, services, and associated vulnerabilities; Linux, Red Hat, etc.; hosts, operating systems, and applications â?¢ Hands on experience in computer intrusion analysis and incident response; intrusion detection; computer network surveillance/monitoring â?¢ Hands on experience in cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks. â?¢ Hands on experience in computer evidence seizure, computer forensic analysis, and data recovery â?¢ Must have experience with network protocols, network devices, multiple operating systems, and secure architecturesMust have experience with DoD and DoN IA policy as well as IAVA management policy and procedures.  Must have experience (6 years) applying knowledge of a variety of IA concepts, best practices, and procedures to secure integration and operation Incident Response processes and procedures.  Must have experience (4 years) with DISA STIGS and SRR (scripts).    IA Certification Requirement:  Must have CCSIP, SCNA, CISA, or GSE Certification Must have one of the following: MCSA, MCSE, MCITP-SA MCITP_EA or MCP Desired skills:  ITIL v3 Foundation certified. CISA certification, IT Navy Background, Prior Military, Knowledge of MSCâ?Ts IA policy, COMSCINST 5239.3b and DON DIACAP Handbook.  Possess other security, operating system or IA-enabled device certification.  Prior experience with data visualization products such as Analyst Notebook is desired.  Prior experience working in one of the following highly desired:  â?¢ Security Operations Center (SOC/NOSC) â?¢ Computer Emergency Response Team (CERT/CIRT) â?¢ DOD/FED Cyber Intel organization â?¢ DCIO/MCIO, with Cyber Counterintelligence focus  Knowledge of MSCâ?Ts IA policy and COMSCINST 5239.3b. EDUCATION: Bachelors Degree in a related discipline. U.S. citizens required Clearance: Contractor personnel in IT-II positions must have completed a successful background investigation and have a Secret clearance. Work Location: Washington D. C.

We offer a fully competitive total rewards programs in a Pay for Performance environment, including opportunities for growth and development through Unisys University, an above market vacation policy, tuition reimbursement, competitive health and welfare benefits including medical, dental, life, disability, 401K (featuring immediate eligibility) and a developing array of work/life benefits.

If you are interested in applying for this employment opportunity or exploring similar opportunities, please Apply Online

Unisys is an Equal Opportunity Employer. M/F/D/V.