Incident Handler
Computer World Services (CWS)Corporation

Job Info

---

Job Description 

Computer World Services, Corporation (CWS) is seeking an exceptional candidate to serve as Incident Handler-Senior for the US Army Regional Cyber Center – Continental United States (RCC-CONUS) program responsible for performing non-personal Information Technology (IT) Services and support requirements. RCC-CONUS is responsible to operate, manage, and defend the Army’s NIPRNet and Secure Internet Protocol Router Network (SIPRNet) CONUS portion of the GIG, and the NIPRNet and SIPRNet DoDIN-A.  The RCC-CONUS functions as part of a larger joint environment, responding to the Theater Combatant Commanders, the ARCYBER, and the Army Cyber Command’s Army Cyberspace Operations and Integration Center (ACOIC), which operates the GIG in support of Department of Defense (DoD) operations around the world.  Services include Network and System Modernization, Cyber Defensive Operations, Defensive Cyber Assessments, Defensive Cyber Infrastructure Support, Threat & Data Analytics, DoDIN Operation Support, Network Management, Systems Management, IT Lifecycle Management, IT Service Management (ITSM), Portfolio/IT Investment Management, and Theater Operations and Service Desk support. 

 

The candidate will develop procedures for performing incident handling and reporting, while setting guidelines for communicating with various parties regarding the incidents.  Responsible for leading security event monitoring and correlation within a tiered Security Operations Center. Proven experience and ability to leverage CND analyst toolsets to detect and respond to IT security incidents. 

 

Key Tasks and Responsibilities 

• Proven experience and ability to leverage CND analyst toolsets to detect and respond to IT security incidents. 
• Ability to implement standard procedures for incident response interfacing with Information Security Officer and IT staff.  
• Conducts research and document threats and their behavior to include monitoring external CSIRTS/CERTs. 
• Provide recommendations to threat mitigation strategies. 
• Employ effective web, email, and telephonic communications to clearly manage security incident response procedures. 
• Perform routine event reporting over time including trend reporting and analysis. 
• Experience required in security or network technology (Unix/Windows OS, Cisco/Juniper Routing-Switching) within a hands-on design/Implementation/Administration role.  
• Demonstrates in-depth knowledge of TCP-IP protocol implementations for all common network services in addition to demonstrated capability to perform network packet analysis and anomaly detection.  
• Responsible for leading security event monitoring and correlation within a tiered Security Operations Center. 
• Proven experience and ability to leverage CND analyst toolsets to detect and respond to IT security incidents. 
• Ability to implement standard procedures for incident response interfacing with Information Security Officer and IT staff. 
• Conducts research and document threats and their behavior to include monitoring external CSIRTS/CERTs.  
• Provide recommendations to threat mitigation strategies.  
• Employ effective web, email, and telephonic communications to clearly manage security incident response procedures. 
• Perform routine event reporting over time including trend reporting and analysis.  
• Experience required in security or network technology (Unix/Windows OS, Cisco/Juniper Routing-Switching) within a hands-on design/Implementation/Administration role.  
• Demonstrates in-depth knowledge of TCP-IP protocol implementations for all common network services in addition to demonstrated capability to perform network packet analysis and anomaly detection.  
• Professionally certified, within a CND discipline, as Technical Level III as defined by DODI 8570 is a requirement. 

Education & Experience  

•   BA /BS or an MA/MS preferred from an accredited university (required)   
• Minimum of 12+ years of related IT experience (required) 
• Substitution Allowance (MA/MS with 10+ years’ experience can be substituted for above requirements) 

Certifications  

•  GIAC Certified Incident Handler, and IAT Level II Baseline Certification  

Security Clearance  

• Top Secret clearance (Required)   
• US Citizen or permanent resident 

Other (Travel, Work Environment, Administrative Notes, etc.) 

• Travel to CONUS and OCONUS locations to meet mission requirements and undergo training maybe required.  The support outside Fort Huachuca, AZ including OCONUS if required, will be designated as TDY. 

 

EOE AA M/F/Vet/Disability 

EEO is the Law:  http://www1.eeoc.gov/employers/upload/eeoc_self_print_poster.pdf 

DoD 8570.01.M: http://www.dtic.mil/whs/directives/corres/pdf/857001m.pdf  

This job has expired.