Cyber Security Analyst

Full Job Description

Marine Corps Community Services (MCCS) is looking for the best and brightest to join our Team!

MCCS is a comprehensive program that supports and enhances the quality of life for Marines, their families, and others in the Marine Corps Community.

We offer a team oriented environment comprised of military personnel, civilian employees, contractors and volunteers who keep the organization functioning smoothly and effectively.

Bachelor's Degree in Information Technology or Business related field appropriate to the work of position AND three years of experience performing specific tasks for digital information and/or incident handling: OR an appropriate combination of education and experience that demonstrates possession of knowledge and skill equivalent to that gained in the above, OR appropriate experience that demonstrates the applicant has acquired the knowledge, skills, and abilities equivalent to that gained in the above.

Knowledge of specific operational impacts of cyber security lapses, cyber threats and vulnerabilities. Understand business continuity and disaster recovery continuity of operations plans.

Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.

Understanding of risk management processes, secure configuration management techniques, encryption algorithms, host/network access control mechanisms, vulnerability information dissemination sources, Payment Card Industry (PCI) data security standards, Personally Identifiable Information (PII) data security standards, incident categories, incident responses, timelines for responses, intrusion detection methodologies and techniques for detecting host and network-based intrusions.

Skill in preserving evidence integrity according to standard operating procedures or national standards, protecting a network against malware, using security event correlation tools, performing damage assessments, design incident response for cloud service models, identifying, capturing, containing, and reporting malware, running Security Content Automation Protocol (SCAP) content and Security Technical Implementation Guides (STIGS) based tools for benchmark and security configuration reviews.

Ability to identify systemic security issues based on the analysis of signatures and indicators from use cases, design incident response for cloud service models, apply cybersecurity and privacy principles to organizational requirements, conduct audit log analysis, and translate results into evaluative conclusions.

As an authorized and privileged user of Department of Defense Information Systems must fulfill the requirement to complete Cyberspace Workforce Qualification and Management Program (DoDM 8140.03) as a condition of access within six months of employment.

This position has been determined as a Cybersecurity Analyst with proficiency level of Intermediate. This position had been determined as Moderate Risk.

As a condition of employment, the incumbent must be able to obtain and maintain an Access National Agency Check and Inquiries (ANACI/Tier 3) Secret Clearance to access classified information.

Major Duties:

The position serves as a Cybersecurity Analyst for the Information Technology Directorate (MRI), NAF Business and Support Services Division (MR), Manpower and Reserve Affairs Department, Headquarters Marine Corps.

The incumbent will provide vulnerability management, intrusion prevention, and security information and event management services to the Marine Corps installations worldwide.

- Collaborate with various teams within the MRI directorate to ensure security is embedded in all aspects of Marine Corps Community Services (MCCS) systems and networks.

- Proactively monitor the MCCS network to identify, isolate, remediate and report cyber incidents. - Identify trends and emerging threats through real-time security monitoring and data analytics.

- Analyze identified malicious activity to determine weaknesses exploited, exploitation methods, and effects on systems and information.

- Perform vulnerability scans across the MCCS network to confirm patch levels and remediation status. Research and test remediations for identified vulnerabilities and weaknesses.

- Conducts security testing and validation of IT systems to detect misconfigurations and potential threats. - Track and report compliance metrics for systems within the MCCS network infrastructure.

- Use various cyber defense tools for continuous monitoring and analysis.

Monitor external data sources to maintain currency of cyber defense threat conditions and determine which security issues may have an impact on the enterprise.

Provides World Class Customer Service with an emphasis on courtesy. Assists customers and communicates positively in a friendly manner. Asks questions to determine, verify and solve problems.

Checks for satisfaction with the quality of goods and services. Takes action to solve problems quickly. Alerts the higher-level supervisor, or proper point of contact for help when problems arise.

Adheres to safety regulations and standards. Uses required safety equipment and observes safe work procedures.

Promptly reports any observed workplace hazards, and any injury, occupational illness, and/or property damage resulting from workplace mishaps to the immediate supervisor.

Occasional travel to complete work assignments, conduct training or attend conferences and meetings may be required. Perform other related duties as assigned.

This is a white-collar position where occasional lifting up to 20 lbs. may be required.