Watch Analyst

    • Charleston, SC

Overview

AbleVets, AbleVets, A Cerner Company, provides healthcare information technology services and resources to help the VA and DoD improve the lives of the people they serve. AbleVets has an opportunity for an experienced Ops Watch Analyst to support information technology projects for our customers. The position will be based on site at our customer’s facility in either Pearl City, HI or Charleston, SC.

Responsibilities

The candidate will identify, isolate, investigate, inform, and implement measures to detect and protect data across a wide spectrum of sources and locations. The candidate is required to validate suspicious events or reports and determine if the event constitutes an incident. The candidate will ensure incidents are properly entered into the appropriate reporting system and determine the severity of the incident. Reporting and response measures will be taken immediately in order to satisfy the Chairman of the Joint Chiefs of Staff Manual (CJCSM) 6510.01B reporting requirements.  Duties and responsibilities include, but are not limited to:

  • Maintain familiarity with CJCSM 6510.01B
  • Compile and maintain internal standard operating procedure (SOP) documentation
  • Ensure associated documentation and capabilities remain compliant with CJCSM 6510.01B and other applicable policy directives
  • Provide network intrusion detection and monitoring, correlation analysis, incident response and support for the client and its subscriber sites
  • Validate suspicious events or reports and determine if the event constitutes an incident and properly enter associated data into the appropriate reporting systems
  • Coordinate with USCYBERCOM and supported entities regarding significant incidents to ensure proper analysis is performed and timely and accurate reporting of the incident is completed
  • Provide 24x7 support for the client’s Incident Response capability during non-core business hours consistent with client requirements as needed
  • Perform network and host-based digital forensics on Microsoft Windows based systems and other operating systems as necessary to enhance response to, support of, and investigation into significant network incidents
  • Posses working knowledge of full packet capture PCAP analysis and accompanying tools (Wireshark, etc.)
  • Explore patterns in network and system activity via log correlation using Splunk and supplemental tools
  • Possess understanding of IDS/IPS solutions to include signature development and implementation
  • Participate in program reviews, product evaluations, and onsite certification evaluations
  • View alerts for IDS/IPS
  • View Audit Records on Central Log Server

Qualifications

  • Bachelor’s degree and zero (0) years of experience. An additional three (3) years of relevant experience may be substituted for degree requirement.
  • Active DoD Top Secret Clearance required
  • DoD or DoN Cybersecurity Workforce Certification or compliance (DoDD 8140 or SECNAV M-5239) within 90 days of hire
  • Expert knowledge of Incident Response Procedures
  • Extensive knowledge of Packet Analysis
  • Extensive knowledge of IDS/IPS solutions
  • Extensive familiarity with various Host-Based Tools
  • Experience with Log Aggregation Tools
  • Logical thinking and analytical ability
  • Excellent written and verbal communication skills
  • Excellent analytical and problem-solving skills as well as interpersonal skills to interact with customers, team members and upper management
  • Self-starter that can work under general direction in a highly collaborative, team-based environment

Preferred qualifications

  • Knowledge of CJCSM 6510.01B
  • Experience with Digital Forensics
  • The ability to solve problems independently

EEO Statement

AbleVets LLC appreciates your interest in our company as a place of employment.  We are proud to be an equal opportunity/affirmative action employer and are committed to hiring and retaining a diverse workforce.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability, veteran status, or any other protected class.  AbleVets is a VEVRAA Federal Contractor.


Back to top