Location: Palm Beach Florida
Security Clearance: None / Not Required
Raytheon Intelligence and Information Services (IIS) – Cyber Security & Special Missions (CSM) – Raytheon Cyber Services (RCS) has an immediate opening for a Cyber Security Analyst located in Juno Beach, FL. The candidate will be able to effectively analyze all relevant cyber security event data and other information sources for suspicious network traffic, attack indicators and potential security breaches; produce reports, assist incoordination during incidents.These positions will be in 24x7x365 Security Operations Center. This position can be either a G08 or G09 level. Candidates may have designated shifts but must have flexibility with the schedule as a whole. Responsibilities will include:• The qualified candidate will assess network threats such as computer viruses, exploits, and malicious attacks;• Determining true threats, false positives and network system mis-configurations and provide solutions to issues detected in a timely manner;• Monitor for potential compromise, intrusion, deficiency, significant event or threat to the security posture and security baseline; • Update and maintain standard operating procedures and other technical documentation; Security Monitoring / Threat DetectionAnalyzing alerts and correlationsAlert, correlation and event annotation within security toolsEscalating events, alerts, correlations or other actionable dataDaily reporting of activities either through SIEM or manual reportMonitor health of security systemsIncident Management / Response Submitting tickets to incident management systemsCommenting or closing tickets assigned to Raytheon AnalystsHandling and working escalations Reporting incidents as a result of alerts, correlations or other Security ServicesThreat Hunting Content ManagementCreation of SIEM rules, reports, dashboard and filters; tuning of rules and alerts; event correlation for various use cases; and custom threat hunting content that is unique to Customer environmentManagement of patches and updates to the SIEM systemof requests from customer for custom content for security use cases/rules/reportsFacilitation of requests for tuning SIEM threat hunting content Required Skills:• Concentration security operations and analysis (2-4 years depending on level)• Prior experience working in one of the following:• Security Operations Center(SOC)/Network Operations Center (NOC)• Computer Incident Response Team(CIRT)• Experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks and one or more of the following:• Experience in computer intrusion analysis and incident response• Working knowledge of Intrusion detection/protection systems• Knowledge and understanding of network devices, multiple operating systems, and secure architectures• Working knowledge of network protocols and common services • System log analysis. • Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)• Experience responding to and resolving situations caused by network attacks• Ability to assess information of network threats such as scans, computer viruses or complex attacks• Working knowledge of WAN/LAN concepts and technologies• SIEM content Analysis, Development and Testing• Familiarity with packet analysis to include:• HTTP Headers & Status codes• SMTP Traffic & Status codes • FTP Traffic & Status Codes • Speaks English fluentlyExcellent written and verbal communication skills.• Personality traits: Naturally curious and inquisitive nature; persistent and determined; loves solving problems and puzzles; analytically rigorous; uncompromising integrity.Experience with:IDS/IPS appliancesProxiesFirewallsVPNEndpoint ProtectionDLPCertificate Authority servicesTwo factor authentication servicesDesired Skills:• At least 1 security certification as stated below• Sec +• CEH• GSEC• Or related advanced IT certificationEducation• G08: Bachelor’s degree and 2+ years of related work experience.• G09: Bachelor’s degree and 4+ years of experience.• Additional experience will be considered in lieu of degree.
Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.
Raytheon Intelligence, Information and Services delivers innovative technology to make the world a safer place. Our expertise in cyber, analytics and automation allow us to reach beyond what others think is possible to underpin national security and give our global customers unique solutions to solve the most pressing modern challenges -- from the cyber domain to automated operations, and from intelligent transportation solutions to creating clear insight from large volumes of data. IIS operates at nearly 550 sites in 80 countries, and is headquartered in Dulles, Virginia. The business area generated $6.1 billion in 2017 revenues. As a global business, our leaders must have the ability to understand, embrace and operate in a multicultural world -- in the marketplace and the workplace. We strive to hire people who reflect our communities and embrace diversity and inclusion to advance our culture, develop our employees, and grow our business.
Cyber, Information and Knowledge Systems, Warfighter Support Services, All Cyber Jobs, Information and Knowledge Systems