Computer Network Defense Job Description
Computer Network Defense Duties & Responsibilities
To write an effective computer network defense job description, begin by listing detailed duties, responsibilities and expectations. We have included computer network defense job description templates that you can modify and use.
Sample responsibilities for this position include:
Computer Network Defense Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Computer Network Defense
List any licenses or certifications required by the position: III, CE, IAM, IAT, DOD, CSSP, CISSP, II, GCIH, GIAC
Education for Computer Network Defense
Typically a job would require a certain level of education.
Employers hiring for the computer network defense job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Computer, Technical, Education, Electrical Engineering, Management Information Systems, Information Systems, Cyber Security, Technology, Engineering
Skills for Computer Network Defense
Desired skills for computer network defense include:
Desired experience for computer network defense includes:
Computer Network Defense Examples
Computer Network Defense Job Description
- Develops a network defense visibility display and directs/executes time sensitive adjustments to the network security posture to minimize or counter operational risk
- Provide Daily reports
- Attend daily, weekly and/or monthly VTCs
- Provide training to Junior CND Analysts
- Assisting in incident response
- Receive and analyze network alerts from various sources with the customer’s Information Systems (IS) and determine possible causes of such alerts
- Coordinate within the customer’s IS CND staff to validate network alerts
- Perform analysis of log files from a variety of sources with the customer’s IS, to include individual host logs, network traffic logs, firewall logs, and intrusion detection system logs
- Monitor external data sources
- Assist in the construction of signatures which can be implemented on the CND network tools in response to new or observed threats
- Conduct incident handling & provide required reporting in accordance with Policy
- Communicate incident handling requirements, procedures, & directives to all CNDSP subscribers
- Establish & maintain safeguards against unauthorized access, destruction, loss or alteration of data
- Experience with incident/event correlation tools such as ArcSight - Candidate must have advanced communication and presentation skills (verbal and written) enabling precise conveyance of information across all CC/S/A/FA with command and proper enunciation of the English language
- Candidate must have an active TS clearance (or TS/SCI)
- Experience performing IA user training
Computer Network Defense Job Description
- Perform initial, forensically sound collections of images and inspect to discern possible mitigation/remediation
- Coordinate with and provide expert technical support to CND technicians to resolve CND incidents
- Track and document CND incidents from initial detection through final resolution
- Perform CND incident triage to include determining scope, urgency, and potential impact
- Correlate incident data and perform CND trend analysis and reporting
- Serve as technical experts and liaisons to law enforcement personnel and explain incident details, provide testimony
- Perform real-time CND Incident handling
- Write and publish CND guidance and reports on incident findings to appropriate constituencies
- Perform CND vulnerability assessments with the customer’s IS
- Perform CND risk assessments within the customer’s IS
- Must currently possess a SECRET Level and be able to obtain a Top Secret /SCI Level security clearance
- Provide information/recommendations for the development of custom IDS signatures, detection capabilities, & tuning of IA tools for the purpose of identifying unauthorized activity based on analysis of network & host level activity & ensure information is tracked
- Must have experience with SIEM, log analysis, vulnerability analysis, and some scripting experience
- 6 years’ systems/network experience
- 4 years’ experience in Microsoft systems administration and VMWare
- Minimum 6 years with BS/BA in Engineering, Computer Science, Math or Information Systems
Computer Network Defense Job Description
- Conduct authorized penetration testing of the customer’s IS network assets
- Analyze site IS CND policies and configurations and evaluate compliance with regulations and customer’s IS directives/instructions
- Maintain deployable CND audit toolkit
- Create, edit, and manage changes to network access control lists on specialized CND systems (e.g., firewalls and intrusion prevention systems)
- Perform system administration on specialize CND applications and systems (e.g., anti-virus, or Audit/Remediation) to include installation, configuration, maintenance, and backup/restore
- Implement C&A requirements for specialized CND systems and document and maintain records for them
- Coordinate with CND-A to manage and administer the updating of rules and signatures (e.g., IDS/IPS, anti-virus, and content blacklists) for specialized CND applications
- Identify potential conflicts with implementation of any CND tools with the customer’s IS (e.g., tool/signature testing and optimization)
- Administer CND test bed and test and evaluate new CND applications, rules/signatures, access controls, and configurations of CND managed platforms
- Implement and enforce CND policies and procedures reflecting applicable laws, policies, procedures, and regulations
- Must meet DoD 8570.01-M minimum of IAT Level II Certification
- Bachelor’s or Master’s degree in business management or related field
- Analyze, contain, eradicate malicious code
- Prepare and disseminate AS&W to enterprise and the CND-SP community • Conduct cyber trend analysis malware analysis
- Tests, implements, deploys, maintains, and administers the infrastructure systems which are required to effectively manage the cyber, IA, and CND networks and systems (e.g., routers, firewalls, intrusion detection/prevention systems)
- Bachelor’s degree in Computer Science, Information Assurance, Cybersecurity, or a related discipline or equivalent work experience
Computer Network Defense Job Description
- Provide incident reports, summaries, and other situational awareness information to higher headquarters
- Manage an incident
- Manage threat or target analysis of CND information and production of threat or target information within the customer’s IS
- Mange the monitoring of external CND data sources to maintain the customer’s IS situation awareness
- Lead risk analysis and management activities for the customer’s IS environment
- Leading and managing service desk tasks for a large-scale enterprise service desk
- Execution of IT service management
- Implementing service improvement processes
- Responding to corporate requests as required
- Leading, directing, and evaluating project task execution and performance
- Bachelor's Degree in technical discipline or equivalent and 2+ years related experience
- Candidate must have strong communication skills, ability to lead teams of technical cybersecurity professionals advise clients on technical design and implementation of cybersecurity technology
- Experience in the Air Force is a huge plus
- Consulting and Air Force experience a plus
- Advanced IT certifications--managerial or technical certifications such as PMP, CISSP, RHCE, CCIE, SANS
- Must currently possess a TS/SCI and be able to obtain a CI Poly
Computer Network Defense Job Description
- Utilize BlackStratus LogStorm SIEM, WireShark, McAfee IDS/IPS, and other toolsets to identify, triage, and investigate anomalies
- Maintain and update (signature and system updates) SIEM and IDS/IPS systems
- Create technically detailed reports based on intrusions and events
- Recommend mitigation activities and provide after action reports to remediate vulnerabilities and reduce the chance of further exploitation
- Perform high-level gap analysis with regard to the customer's current solution and the existing JRSS CND tools
- Administers and supports systems and devices in support of Computer Network Defense
- Ensures proper performance of tasks necessary to ensure the correct operation of all Army Computer Network Defense components in Europe
- Administers multiple systems including Firewalls, Intrusion Detection Systems (IDS), and Intrusion Protection Systems
- Is responsible for administering complex Computer Network Defense systems
- Supports Computer Network Defense system component on unclassified NIPRnet, and classified SIPRnet networks
- Proficiency in word processing, spreadsheet, and presentation creation tools, Internet research tool
- Candidate must be extremely technical and have an understanding of core cyber tools to include SIEM, vulnerability assessment, infrastructure (firewall, IPS/IDS, proxy, network capture), host based security, penetration testing/external assessment tools
- Requires Both DoD 8570 IAT-II and CNDSP Specialty Incident Responder Certifications to start work
- Experience with providing expert guidance and direction to government and senior level technicians and managers
- Knowledge of DoDI 8530 compliance standards
- Ability to receive, acknowledge, disseminate, track, report, and update vulnerability management (VM) alerts, vulnerability assessments, red or blue team events, and security incidents