AT&T Cyber Security Analyst Lead (Government) in Honolulu, Hawaii

A member of the Network Assurance (NA) Team (DISA GSM-O program) that leads NA Activities at DISA PAC.

Manages Information Systems Security personnel and provides oversight to security program(s) projects. Assesses configuration changes for security impacts; assists in the development of alternate courses of action or implementation of resultant measures. Performs system administration functions to include, but not limited to, documenting the security architecture and developing user security guidelines and SOPS. Performs functions as required in support of the Risk Management Framework (RMF).

Responsible for managing the integrity and security of enterprise-wide cyber systems and networks. Coordinates resources during enterprise incident response efforts, driving incidents to timely and complete resolution. Supports Cybersecurity initiatives through both predictive and reactive analysis, articulating emerging trends to leadership and staff. Performs network traffic analysis utilizing raw packet data, net flow, IDS, and custom sensor output as it pertains to the Cybersecurity of communications networks. Develops analytical products fusing enterprise and all- source intelligence. Be able to conduct malware analysis of attacker tools providing indicators for enterprise defensive measures, and reverse engineer attacker encoding protocols. Interfaces with external entities including law enforcement, intelligence community and other government agencies.

  • Candidate will assess CND reports, trends, responses, mitigations, analysis, and information dissemination.

  • Candidate will provide C2 support, situational awareness support, and provide leadership & support for all CND applicable activities within Protect, Detect, Respond, and Sustain.

  • Candidate will lead teams within a performance-based environment with pre-determined Acceptable Levels of Performance (ALP’s).

  • Candidate will support the development, documentation and tracking of measurements & metrics relevant to the ALP’s.

  • Candidate interfaces with Government counterparts, both CONUS & OCONUS, along with contract team members.

  • Candidate is responsible for maintaining the integrity & security of enterprise-wide systems & networks.

  • Candidate must possess a CompTIA Security+ with Continuing Education (CE) certification

  • Candidate must have experience supporting CND or related teams

  • Candidate must have experience working CND duties (e.g., Protect, Defend, Respond, and Sustain)

  • Candidate must have experience working with DoD / Government Leaders at all levels

  • Candidate must have strong communication skills (both written and verbal)

  • Candidate must have an in-depth understanding of TCP/IP protocols, ports, and services

  • Bachelor’s degrees from an accredited college in a related discipline, or equivalent experience/combined education, with 5 years of professional experience; or 3 years of professional experience with a related Master’s degree

Desired Experience, Education, and Certifications:

  • Candidate should have at least one other IA certification completed, i.e., SSCP, CSIH, GCIA, GCIH or CEH

  • Candidate should have UNIX Administrative skills

  • Candidate should have Command Line Scripting skills (PERL, python, shell scripting) to automate analysis task

  • Knowledge of hacker tactics, techniques, and procedures (TTP)

  • Ability to conduct malware analysis

  • Demonstrated hands on experience with various static and dynamic malware analysis tools

  • Knowledge of advanced threat actor tactics, techniques and procedures (TTP)

  • Understanding of software exploits

  • Ability to analyze packed and obfuscated code

  • Comprehensive understanding of common Windows APIs and ability to analyze shellcode

Required Clearance: Active TS

AT&T is an Affirmative Action/Equal Opportunity Employer and we are committed to hiring a diverse and talented workforce. EOE/AA/M/F/D/V