Jobs search

Incident Analyst

BTAS, Inc. • united states, united states, us • 1m ago

POSITION: Cybersecurity Intrusion Analyst and Incident Response Specialist

LOCATION: Scott AFB, IL

REQUIRED SECURITY CLEARANCE: TS/SCI

POSITION TYPE/STANDARD WORK HOURS: Full-time/40 hours per week/On-site

WHO WE ARE:

BTAS is a woman-owned small business founded in 1995, located near Wright Patterson Air Force Base in Beavercreek, OH. We have earned national and regional awards in the Department of Defense for our proven IT, Engineering, and Program Management Capabilities.

We are committed to working with exceptional quality and professionalism to deliver excellence to our customers, while providing our employees a stimulating and satisfying work environment, as we collaborate with teammates to achieve common goals.

POSITION SUMMARY:

The Cybersecurity Intrusion Analyst and Incident Response Specialist (Intrusion Detection Monitoring and Incident Management) role is critical to supporting USTRANSCOM's Cyberspace Operations Forces (COF) at Scott Air Force Base, IL. This role is essential for executing intrusion detection, analysis, and incident management across all USTRANSCOM networks and information systems. The position involves developing and enhancing intrusion detection capabilities, identifying malicious activities, and initiating incident response actions to ensure mission assurance on USTRANSCOM's NIPRNet, SIPRNet, and cloud environments.

PRIMARY RESPONSIBILITIES:

Daily Operations and Maintenance:

Execute day-to-day intrusion detection monitoring and incident management.
Review audit data, network traffic, and e-mails for security violations.
Analyze and correlate data from security systems (IDS/IPS, routers, firewalls).
Identify and respond to potential network-based threats and advanced persistent threats.
Optimize and enhance intrusion detection systems and develop new analytics.
Investigate and report security incidents using DoD-approved processes (e.g., JIMS).
Develop and deploy countermeasures, document root causes, and provide after-action reports.
Maintain log data inventories and daily activity logs for continuous event management.

Tool Suite Operation and Maintenance:

Maintain and configure intrusion detection monitoring tools.
Develop and update intrusion detection signatures and security analysis scripts.
Ensure compliance with cybersecurity standards and log aggregation requirements.
Collaborate with system administrators to centralize log data.
Operate and maintain service assurance for monitoring tools, ensuring compliance with DoD orders.
Document and manage changes to monitoring tools in accordance with USTRANSCOM policies.

Metrics and Documentation:

Provide monthly metrics on intrusion detection and incident management, including service availability, incident statistics, and log availability.
Maintain up-to-date documentation on processes and procedures, delivering SOPs and checklists as required by USTRANSCOM.

MINIMUM QUALIFICATIONS:

Five or more years of relevant Cybersecurity experience.
IAT-II Baseline Certification: Sec+ CE.

DESIRED QUALIFICATIONS:

CSSP Analyst Certification** (must obtain within 6 months of hire date). ** CYSA+ covers the requirement.

SUPERVISORY RESPONSIBILITIES:

This position does not supervise the work of others.

WORK ENVIRONMENT:

This job operates in a professional office environment. This role routinely uses standard office equipment.

PHYSICAL DEMANDS:

Must be able to operate a computer and other standard office equipment. Must be able to remain in a stationary position, 80%.

TRAVEL:

Very little.

OTHER DUTIES:

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and/or activities may change at any time with or without notice.

BTAS BENEFITS:

A comprehensive benefits program, including paid time off, federal holidays, health coverage, 401K plan with generous company match is offered to all full-time employees.

AAP / EEO STATEMENT: