Cyber Defense Analyst II

Inova Cybersecurity is looking for a Cyber Defense Analyst II to join the Team. This hybrid role will be full-time day-shift from Monday – Friday.

The Cyber Defense Analyst 2 monitors security event and detection systems. Evaluates vulnerability and threat indicators for relevance and impact. Analyzes system configurations and data to identify system intrusions, unauthorized accesses and disclosures, misconfigurations, or policy violations. Alerts and communicates potential security incidents. Works as part of extended team across all functional IT areas. Responsible for maintaining and supporting Information Security in the areas of detection, prevention, audit, IT change management control, management of protected health information, segregation of duties and provisioning & deprovisioning of users. 

Inova is consistently ranked a national healthcare leader in safety, quality and patient experience. We are also proud to be consistently recognized as a top employer in both the D.C. metro area and the nation.

Featured Benefits:

• Committed to Team Member Health: offering medical, dental and vision coverage, and a robust team member wellness program.
• Retirement: Inova matches the first 5% of eligible contributions – starting on your first day.
• Tuition and Student Loan Assistance: offering up to $5,250 per year in education assistance and up to $10,000 for student loans.
• Mental Health Support: offering all Inova team members, their spouses/partners, and their children 25 mental health coaching or therapy sessions, per person, per year, at no cost.
• Work/Life Balance: offering paid time off, paid parental leave, flexible work schedules, and remote and hybrid career opportunities.

Cyber Defense Analyst II Job Responsibilities:

• Triages security events and offenses upon receipt across cybersecurity operations platforms. Escalates security events and security incidents based on established criteria including those that may cause ongoing and immediate impact to the environment. Coordinates incident response functions. Analyzes and reports organizational and system security posture trends.
• Triages cyber defense incidents, determining scope, urgency, and potential impact, identifying the specific vulnerability, and making recommendations that enable expeditious remediation. Performs real-time cyber defense incident handling (e.g., forensic collections, intrusion correlation and tracking, threat analysis, and direct system remediation) tasks to support deployable Incident Response Teams (IRTs). Tracks and documents cyber defense incidents from initial detection through final resolution. Writes and publishes cyber defense techniques, guidance, and reports on incident findings to appropriate constituencies and develops content for cyber defense tools.
• Provides timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities. Determines tactics, techniques, and procedures (TTPs) for intrusion sets. Recommends computing environment vulnerability corrections.
• Characterizes and analyzes network traffic to identify anomalous activity and potential threats to network resources. Provides daily summary reports of network events and activity relevant to cyber defense practices. Performs cyber defense trend analysis and reporting. Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack.
• Performs analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats to network security.
• Coordinates with intelligence analysts to correlate threat assessment data. Conducts research, analysis, and correlation across a wide variety of all source data sets (indications and warnings) and documents after-action reviews.
• Specializes in one or more of the following: incident response, threat modeling, vulnerability management, forensic collection and examination, cyber investigation, cyber intelligence fusion, other cyber discipline.

Cyber Defense Analyst II Additional Requirements:

• Work Schedule: Monday – Friday; Day-Shift
• Education: Bachelor's degree; or Associate’s degree and 2 years relevant professional experience in addition to the minimum experience required; or HS Diploma/GED and 4 years relevant professional experience in addition to the minimum experience required
• Experience: 3 years in cybersecurity or information security or 5 years in system or network administration

Cyber Defense Analyst II Preferred Qualifications:

• Previous experience working in a healthcare environment preferred.

We are Inova, Northern Virginia’s leading nonprofit healthcare provider. Every day, our 25,000+ team members provide world-class healthcare to the communities we serve. Our people are the reason we're a national leader in healthcare safety, quality and patient experience. And from best-in-class facilities to professional development opportunities, we support them at every step. At Inova, we're constantly striving to be ever better — to shape a more compassionate future for healthcare. 

Inova Health System is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to age, color, disability, gender identity or expression, marital status, national or ethnic origin, political affiliation, pregnancy (including childbirth, pregnancy-related conditions and lactation), race, religion, sex, sexual orientation, veteran status, genetic information, or any other characteristics protected by law.