Cybersecurity Analyst, Mid Job Description
Cybersecurity Analyst, Mid Duties & Responsibilities
To write an effective cybersecurity analyst, mid job description, begin by listing detailed duties, responsibilities and expectations. We have included cybersecurity analyst, mid job description templates that you can modify and use.
Sample responsibilities for this position include:
Cybersecurity Analyst, Mid Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Cybersecurity Analyst, Mid
List any licenses or certifications required by the position: II, IAT, CE, GCIA, CEH, CSSP-A, CISSP, CISM, CASP
Education for Cybersecurity Analyst, Mid
Typically a job would require a certain level of education.
Employers hiring for the cybersecurity analyst, mid job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's Degree in Engineering, Information Assurance, Computer Science, Technical, Technology, Systems Engineering, Computer Engineering, Science, Design, Architecture
Skills for Cybersecurity Analyst, Mid
Desired skills for cybersecurity analyst, mid include:
Desired experience for cybersecurity analyst, mid includes:
Cybersecurity Analyst, Mid Examples
Cybersecurity Analyst, Mid Job Description
- Analyzes software static code analysis results
- Supports statement-of-work and technical performance specification development
- Understands applicable contract requirements and supports development of system requirements
- Works with suppliers to ensure cybersecurity requirements are understood and met
- Utilize alerts from endpoints, IDS/IPS, netflow, and custom sensors to identify compromises on customer networks/endpoints
- Review massive log files, pivot between data sets, and correlate evidence for incident investigations
- Triage alerts to identify malicious actors on customer networks
- Document analysis, findings, and actions in a case/knowledge management system
- Create and distribute incident reports to customers and higher headquarters
- Provide IA measures, controls, and support services for local and extended networks from denial of service, unauthorized disclosure, and modification of data or destruction of the networks or the information processed on them
- Industry Certification aligned to DoD Manual 8570, 01-M for IAT II, including Security+ CE required
- Experience with leveraging eMASS, DRS, and ERS tools
- Industry Certification aligned to DoD Manual 8570, 01-M for IAM II preferred
- Knowledge of industry-standard frameworks ing to Cybersecurity policy and compliance
- Knowledge of industry–standard frameworks for Cybersecurity policy and compliance
- DoD 8570.01–M IAT Level II Certification required, including CompTIA Security+
Cybersecurity Analyst, Mid Job Description
- Provide knowledge of cybersecurity best practices, Risk Management, Risk Assessments, Federal Risk and Authorization Management Program (FedRAMP), the Federal Information Security Management Act (FISMA), and Risk Mitigation
- Produce weekly reports and communicate status on tracking of incidents
- Provide comprehensive reviews of Incident Response activities, identify realms of improvement, and engage resources to implementation
- The ability to take lead on incident research when appropriate and be able to work well with in a team environment
- Identify cyber security issues and concerns, develop recommendations, and draft supporting correspondence
- Experience with Incident Management tracking tools (Remedy, RSA Archer) and reporting ( Excel, PowerPoint)
- Ability to fully coordinate Incident Response activities across a team of multiple analysts with little to know supervision from management
- Supports SOC analysis as requested
- Participate in helping to develop Standard Operating Procedures (SOPs), Privacy Impact Statements, standards and guidance’s
- Ability to work on assigned ATO or ATC packages from the Marine Corps, including some overseas USMC agencies are overseas and being available during nonstandard hours
- Information Assurance Technician (IAT) Level II or III Certification or Information Assurance Security Architecture Engineer (IASAE) Levels I, II or III Certification
- 3+ years of experience in IT environments
- 1+ years of experience with information security and information assurance
- Knowledge of federal environments
- Knowledge of vulnerability remediation management
Cybersecurity Analyst, Mid Job Description
- Knowledge of the DoD, IC, and national level system security initiatives and secure information and local area network or wide area network technologies
- Knowledge of working with the Operational Designated Authorizing Official (ODAA) or Navy Authorizing Official (NAO) and the Office of Naval Intelligence (ONI) business processes, including with the A&A specific processes for ONI collateral systems
- Knowledge of DoD, Naval Network Warfare Command (NNWC), Fleet Cyber Command (FCC), DoD Intelligence Information Systems (DoDIIS), and IC tools, systems, and reporting mechanisms and requirements for A&A
- Experience in working with the Intelligence Community (IC), intelligence systems, and IC system requirements
- Knowledge of Navy and Marine Corps IA and Cybersecurity policies
- Experience with HBSS and configuration reviews, wireless and mobile security, database security, cross domain solutions, vulnerability scanning, VoIP, exchange services, traditional or physical security, different operating systems, including UNIX, Windows, and Linux, Web servers, domain name systems (DNSes), internal and external network infrastructure, releasable networks, and compliance directives, including CTO - 07-015, TASKORD 12-0863, OPORD 12-1016, TASKORD 13-0651 or 14-0185
- Knowledge of Authorization and Accreditation (A&A) processes and standards
- 1+ years of experience with performing technical security assessments, including vulnerability assessments, security control reviews, and system configuration checks to support DIACAP or RMF
- 1+ years of experience in working with NIST RMF for A&A
- Experience with performing Cybersecurity risk assessments and mitigation
- Experience with testing Navy systems
- CompTIA IAT 8570 (Sec+ or CISSP preferred)
Cybersecurity Analyst, Mid Job Description
- Experience with implementing supply chain risk management activities within the DoD
- Experience with international Cybersecurity and IT standards
- Experience with DoD and NIST Cybersecurity policies
- Experience with HBSS and configuration reviews, wireless and mobile security, database security, cross domain solutions, vulnerability scanning, VoIP, exchange services, traditional or physical security, different operating systems, including UNIX, Windows, and Linux, Web servers, domain name systems (DNS), internal and external network infrastructure, releasable networks, and compliance directives
- Experience with HBSS and configuration reviews, wireless and mobile security, database security, cross domain solutions, vulnerability scanning, VoIP, exchange services, traditional or physical security, different operating systems, including UNIX, Windows, or Linux, Web servers, domain name systems (DNSes), internal and external network infrastructure, releasable networks, and compliance directives
- Experience with HBSS and configuration reviews, wireless and mobile security, database security, cross domain solutions, vulnerability scanning, VoIP, exchange services, traditional or physical security, operating systems, including UNIX, Windows, or Linux, Web servers, domain name systems (DNSes), internal and external network infrastructure, releasable networks, and compliance directives
- 5+ years of experience in certification and accreditation for RMF or DIACAP
- Experience with the RMF process, NIST SP 800-37, NIST SP 800-53, and CNSSI 1253
- 8570.01-M IAM DoD Level 2 Certification, including CAP, GSLC, CISM, and CISSP
- 3+ years of experience with supply chain risk management and risk management or risk mitigation
- 3+ years of experience with Cybersecurity policies and regulations
- 2+ years of experience with hardware or software assurance
Cybersecurity Analyst, Mid Job Description
- 5 years of experience with managing networks supporting DoD LMS, KMS, or DLS
- 5 years of experience with providing network support to efforts of similar size and scope to a NOC
- 5 years of experience with migrating and maintaining assets in a Cloud or large virtualized environment
- Experience in working with and enforcing DoD directives, STIGS, and IAVMs
- Experience with system administration, operations, procedures, and troubleshooting
- 1+ years of experience with planning and executing comprehensive Cybersecurity test events, including identifying applicable security controls and analyzing assessment procedures, and identifying and using required tools, including Retina, Nessus, Assured Compliance Assessment Solution (ACAS), or Security Content Automation Protocol (SCAP)
- 4+ years of experience with operational security, including Security Operations Center (SOC), incident response, malware analysis, or IDS and IPS analyses
- Knowledge of the TCP/IP networking stack and network IDS technologies
- GCFA, GCFE, GREM, GNFA, or OSCP Certification
- Knowledge of Windows operating system and PowerShell or command line
- Knowledge of Endpoint Incident Response and Forensics
- Ability to provide onsite client support