Cyber Analyst – Tier I, II, III

Enhance the organization's cybersecurity posture by performing comprehensive risk assessments, improving incident response protocols, and ensuring compliance with industry standards.  

• Monitor network traffic & security events to detect potential threats utilizing Splunk and SCOM. 
• Conduct vulnerability scans and risk assessments utilizing Tenable and Nessus. 
• Analyze logs utilizing Splunk, Panorama and Syslog to reconstruct timelines of security incidents. 
• Engage other cybersecurity experts frequently to share relevant knowledge, opinions, and recommendations, working to fulfill deliverables as a team.  
• Support and enhance incident response strategies and threat detection capabilities. 
• Apply network operations knowledge to predict potential attack vectors. 
• Recommend improvements for threat data collection to support cybersecurity and IT operations. 
• Analyze large datasets to identify risks and communicate findings to decision-makers. 
• Conduct requirements analysis, feasibility assessments, and develop change proposals for application solutions. 
• Design technical solutions independently, participate as a member of a multidisciplinary team to analyze sponsor requirements and designs, and implement software and perform analyses to address these requirements. 
• Manage multiple parallel tasks and priorities of customers and stakeholders to ensure deadlines are met 
• Provide solutions requiring analysis and creative use of innovative methods to complex problems by collaborating with subject matter experts and program managers in one or more of the following areas: critical infrastructure and industrial control system cyber security, information security. 
• Prepare documentation, including testing plans, implementation guides, and research records. 
• Generate reports on security posture, incidents, and compliance. 
• Manage security vendor relationships and ensure contractual compliance. 
• Develop and give cybersecurity training to domestic and international partners 
• Provide cybersecurity expertise as part of multi-disciplinary teams providing assessments of sites and facilities and consulting to DOE/NNSA’s DNN 
• Preferred familiarization with RSA 
• Perform other duties as assigned 

Non-Negotiable Requirements:  

1. Top Secret with investigation current within the last 5 years  

2. On-site, no remote  

Technical Environment: Microsoft, Linux, Splunk, Ansible, Tenable, GEMS 

 A notification to prospective applicants that reviews, and tests for the absence of any illegal drug as defined in 10 CFR 707.4, will be conducted by the employer and a background investigation by the Federal government may be required to obtain an access authorization prior to employment, and that subsequent reinvestigations may be required. If the position is covered by the Counterintelligence Evaluation Program regulations at 10 CFR part 709, the announcement should also alert applicants that successful completion of a counterintelligence evaluation may include a counterintelligence-scope polygraph examination.  

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.