Sr Com Sys Sec Tchnlgst I (112216BR)

  • Raytheon
  • Palm Beach, Florida, United States
  • 07/02/2018
U.S. Citizen / Must Be Clearable

Job Description

Location: Palm Beach Florida Security Clearance: None / Not Required Raytheon Intelligence and Information Services (IIS) – Cyber Security & Special Missions (CSM) – Raytheon Cyber Services (RCS) has an immediate opening for a Cyber Security Analyst located in Juno Beach, FL. The candidate will be able to effectively analyze all relevant cyber security event data and other information sources for suspicious network traffic, attack indicators and potential security breaches; produce reports, assist incoordination during incidents.

These positions will be in 24x7x365 Security Operations Center. This position can be either a G08 or G09 level. Candidates may have designated shifts but must have flexibility with the schedule as a whole.
Responsibilities will include:
• The qualified candidate will assess network threats such as computer viruses, exploits, and malicious attacks;
• Determining true threats, false positives and network system mis-configurations and provide solutions to issues detected in a timely manner;
• Monitor for potential compromise, intrusion, deficiency, significant event or threat to the security posture and security baseline;
• Update and maintain standard operating procedures and other technical documentation;

Security Monitoring / Threat Detection
Analyzing alerts and correlations
Alert, correlation and event annotation within security tools
Escalating events, alerts, correlations or other actionable data
Daily reporting of activities either through SIEM or manual report
Monitor health of security systems
Incident Management / Response
Submitting tickets to incident management systems
Commenting or closing tickets assigned to Raytheon Analysts
Handling and working escalations
Reporting incidents as a result of alerts, correlations or other Security Services
Threat Hunting Content Management
Creation of SIEM rules, reports, dashboard and filters; tuning of rules and alerts; event correlation for various use cases; and custom threat hunting content that is unique to Customer environment
Management of patches and updates to the SIEM system
of requests from customer for custom content for security use cases/rules/reports
Facilitation of requests for tuning SIEM threat hunting content

Required Skills:
• Concentration security operations and analysis (2-4 years depending on level)
• Prior experience working in one of the following:
• Security Operations Center(SOC)/Network Operations Center (NOC)
• Computer Incident Response Team(CIRT)
• Experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks and one or more of the following:
• Experience in computer intrusion analysis and incident response
• Working knowledge of Intrusion detection/protection systems
• Knowledge and understanding of network devices, multiple operating systems, and secure architectures
• Working knowledge of network protocols and common services
• System log analysis.
• Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)
• Experience responding to and resolving situations caused by network attacks
• Ability to assess information of network threats such as scans, computer viruses or complex attacks
• Working knowledge of WAN/LAN concepts and technologies
• SIEM content Analysis, Development and Testing
• Familiarity with packet analysis to include:
• HTTP Headers & Status codes
• SMTP Traffic & Status codes
• FTP Traffic & Status Codes
• Speaks English fluently
Excellent written and verbal communication skills.
• Personality traits: Naturally curious and inquisitive nature; persistent and determined; loves solving problems and puzzles; analytically rigorous; uncompromising integrity.

Experience with:
IDS/IPS appliances
Proxies
Firewalls
VPN
Endpoint Protection
DLP
Certificate Authority services
Two factor authentication services

Desired Skills:
• At least 1 security certification as stated below
• Sec +
• CEH
• GSEC
• Or related advanced IT certification

Education
• G08: Bachelor’s degree and 2+ years of related work experience.
• G09: Bachelor’s degree and 4+ years of experience.
• Additional experience will be considered in lieu of degree. 112216

Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.


Raytheon Intelligence, Information and Services delivers innovative technology to make the world a safer place. Our expertise in cyber, analytics and automation allow us to reach beyond what others think is possible to underpin national security and give our global customers unique solutions to solve the most pressing modern challenges -- from the cyber domain to automated operations, and from intelligent transportation solutions to creating clear insight from large volumes of data. IIS operates at nearly 550 sites in 80 countries, and is headquartered in Dulles, Virginia. The business area generated $6.1 billion in 2017 revenues. As a global business, our leaders must have the ability to understand, embrace and operate in a multicultural world -- in the marketplace and the workplace. We strive to hire people who reflect our communities and embrace diversity and inclusion to advance our culture, develop our employees, and grow our business. Cyber, Information and Knowledge Systems, Warfighter Support Services, All Cyber Jobs, Information and Knowledge Systems
JBRaytheon ICJBMeta