Cyber ​​Network Defense Analyst III at RTX – VA543: 22270 Pacific Blvd, Dulles 22270 Pacific Boulevard Building CC5, Sterling, VA, 20166-6924 USA

Date posted:

2024-04-05

Country:

United States of America

Location:

VA543: 22270 Pacific Blvd, Dulles 22270 Pacific Boulevard Building CC5, Sterling, VA, 20166-6924 USA

Position Role Type:

HybridJob Description

You have been directed to the RTX careers page because we recently transitioned RTX to a standalone company, which provides us with greater autonomy and growth opportunities. As a future Nightwing employee, you will have the opportunity to contribute to our continued success and shape the future of our cybersecurity, intelligence, and service offerings.

Nightwing provides technically advanced full-spectrum cyber, data operations, systems integration, and intelligence mission support services to address our customers’ most demanding challenges. Our capabilities include cyber space operations, cyber defense and resilience, vulnerability research, pervasive technical monitoring, data intelligence, lifecycle mission enablement, and software modernization. Nightwing delivers disruptive technologies, agility, and competitive offerings to customers in the intelligence community, defense, civil, and commercial markets.

Nightwing supports a U.S. Government customer to provide on-site incident response support to civilian government agencies and critical asset owners experiencing cyberattacks, providing immediate investigation and resolution. Contract personnel conduct investigations to characterize the severity of breaches, develop mitigation plans, and assist in restoring services. Nightwing is seeking a Cyber ​​Network Defense Analyst to support this critical customer mission.

The CDNA uses information gathered from various sources to monitor and analyze network activity for evidence of suspicious behavior. Monitoring and analysis are performed to identify and report events that occur or may occur within the network, in order to protect information, information systems, and networks from threats.

Responsibilities:

– Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources

– Coordinate with cyber defense personnel across the enterprise to validate network alerts

– Document and escalate incidents (including event history, status and potential impact for further action) that may have an ongoing and immediate impact on the environment

– Perform analysis and reporting of cyber defense trends

– Perform event correlation using information collected from various sources across the enterprise to gain situational awareness and determine the effectiveness of an observed attack

– Provide daily summary reports on network events and activities relevant to cyber defense practices

– Receive and analyze network alerts from various sources within the enterprise and identify potential causes of alerts

– Ensure timely detection, identification and warning of potential attacks/intrusions, anomalous activities and misuse activities and distinguish these incidents and events from innocent activities

– Use cyber defense tools for continuous monitoring and analysis of system activity to identify malicious activity

– Analyze identified malicious activities to determine the vulnerabilities exploited, the methods of exploitation, and the effects on the system and information

– Identify and analyze anomalies in network traffic using metadata

– Validate Intrusion Detection System (IDS) alerts against network traffic using packet analysis tools

– Identify applications and operating systems of a network device based on network traffic

– Reconstruct a malicious attack or activity based on network traffic

– Identify network mapping and operating system (OS) fingerprinting activities

– Assist in the development of signatures that can be deployed to cyber defense network tools in response to new or perceived threats within the network environment or enclave

Required skills/qualifications:

– American citizenship

– Active TS/SCI approval

– Ability to obtain Department of Homeland Security (DHS) Entry on Duty (EOD) eligibility

– 5+ years of direct relevant experience in cyber defense analysis using advanced technologies and industry standard cyber defense tools-

– Experience in successfully developing and implementing signatures

– Experience detecting host and network-based intrusions via intrusion detection technologies (e.g. Snort)

– Experience in implementing incident handling methodologies

– Experience in implementing protocol analyzers

– Experience in collecting data from various cyber defense sources

– Experience in reading and interpreting signatures (e.g. snort)

– Experience in performing package level analyses

– Experience in performing trend analyses

Desired skills:

– Python programming experience

– Strong mathematical and scientific background

– Experience with the Carnegie Mellon SiLK tool suite

Required education:

Bachelor’s degree in Computer Science, Cyber ​​Security, Computer Engineering, or a related degree; or a high school diploma and 7+ years of network research experience.

Desired certifications:

• One or more of the following professional certifications: GNFA, GCIH, GCIA, GSEC, CASP+, CySA+, PaLMS, FedVTE, GSEC (SANS401), Arcsight (or other SEIM solution), Network+, Security+

Arlington, VA

Nightwing was previously part of a leading Fortune 100 company and was headquartered in Dulles, Virginia. In 2024, the company became independent, but it continues to support the country’s most important initiatives.

When we formed Nightwing, we brought with us a deep set of credentials and an unwavering commitment to the mission. For more than four decades, our team has delivered some of the world’s most technically advanced full-spectrum cyber, data operations, systems integration, and intelligence support services to the U.S. government on its most important missions.

At Nightwing, we value collaboration and teamwork. You will have the opportunity to work with talented individuals who are passionate about what they do. Together, we will leverage our collective expertise to drive innovation, solve complex problems, and deliver exceptional results for our clients.

Thank you for considering joining us on this new journey and shaping the future of cybersecurity and intelligence together with the Nightwing team.

The salary range for this position is $105,000 – $221,000. The salary range provided is a good faith estimate and is representative of all levels of experience. RTX considers several factors in making an offer, including but not limited to a candidate’s job title, position and responsibilities, work experience, location, education/training, and key skills. Accepted candidates may be eligible for benefits, including but not limited to medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible schedules, Employee Assistance Program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits may vary based on the specific business unit and whether or not the position is covered by a collective bargaining agreement. Successful candidates may be eligible for annual short-term and/or long-term incentive compensation programs, depending on the level of the position and whether or not it is covered by a collective bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or company performance. This position is a U.S.-based position. If the successful candidate resides in a U.S. territory, the appropriate salary structure and benefits will apply. RTX anticipates that the application period will close approximately 40 days from the date the notice is posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application period.

RTX is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age, or any other federally protected class.

Privacy Policy and Terms:

Click this link to read the policy and terms