Cyber Security Operations Controller III

About The Position

Requirements

• 5+ years experience in cyber and network operations.
• Bachelor’s degree in a related field. Additional years of experience may be substituted for degree requirements.
• Must be Security+ certified.
• Must be Network+ or CCNA certified.
• Must hold the ITIL v3 or v4 Foundations certification or be able to obtain the certification within 60 days of hire.
• Must have firewall, ACAS, and HBSS experience.
• Able to communicate complex programmatic cyber security planning information and elicit understanding and support from professional peers and non-specialists.
• Experience evaluating an adversary's network profile of physical location of assets, architectures, security policies, baseline activity, peculiarities and vulnerabilities, and capabilities.
• Must be a US citizen and hold a current Secret clearance.
• Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.

Responsibilities

• Conduct network security monitoring and incident triage using the AFCENT/USCENTCOM selected security tools to include but is not limited to IDS/IPS, firewall, proxy, router, Microsoft Windows, Fidelis, and HBSS logs.
• Enter event data into mission support systems according to operational procedures and reports to meet AFCENT mission/tasking; and produce security reports.
• Perform trend analysis of authorized and unauthorized activity on AFCENT/USCENTCOM selected security tools.
• Correlate unusual and suspicious network activity across AFCENT/USCENTCOM; and validate unusual network activity unique to a geographical region and sensor location.
• Assist in completion of network defense/cybersecurity statistical and trend data and operational event reporting when requested.
• Assist in the development of countermeasures to isolate, contain and prevent intrusive actives and secure AFCENT/USCENTCOM networks (to include IDS/IPS signature development and correlation rule sets).
• Track, document, and report all security related events, including, but not limited to, Discharge of Classified Information and Cross Domain Violations IAW USCENTCOM/AFCENT policy.
• Coordinate and track Information Assurance Vulnerabilities Alerts (IAVA). Review and report AFCENT compliance to USCENTCOM and develop Plans, Objectives, Actions and Milestones (POA&M) if unable to complete task.
• Provide LAN/WAN support.