This job listing has expired and the position may no longer be open for hire.

Cyber Security Analyst at MIT Lincoln Laboratory in Lexington, Massachusetts

Posted in Other 30+ days ago.




Job Description:







Search by Keyword























O


Send me alerts every days

JOIN OUR TALENT NETWORK




form.emailsubscribe-form {
display: none;
}




O


Send me alerts every days









Cyber Security Analyst



Apply now


Date: Sep 23, 2021



Location:

Lexington, MA, US


#job-location.job-location-inline {
display: inline;
}


Company:
MIT Lincoln Laboratory



Our Cyber Security Team monitors and protects Laboratory research from IT threats. The team operates a security operation center which looks at network traffic to find and eliminate threats from malware, spear fishing, and other attacks against the Lab. The team also looks for any vulnerabilities in our current environment and helps identify and develop solutions to mitigate these risks.


Job Description


The Security Analyst II is responsible for performing operational support for network defenses, risk analysis on cyberthreats, security alerts, systems of interest, and other suspicious system or network activity. The Security Analyst II is part of the ISD Cyber Security Operations team. The Cyber Security Operations team is actively involved with health and configuration management of security tools and works closely with the other teams within ISD Cyber Security from the start to closure of an incident. Through knowledge of network defenses data analysis, the Security Analyst identifies methods to mitigate future risk to networked systems. Also as part of the Cyber Security Team the Security Analyst assists in the evaluation and testing of security tools and devices.


Primary Dyties


Cyber Security Operations


  1. Build and Administer Cyber protection tools to include creating and maintaining standard operating procedures (SOPs)

  2. Expand expertise in Cyber protection tools to become subject matter expert

  3. Ensure the Cyber protection tools are used to their fullest extent to protect the laboratory

Cyber Threat Analysis & Assessment

Rapid assessment and determination of active threats.


  1. Perform threat analysis on suspicious messages to determine if spam, phishing and or a targeted email.

  2. Analyze attachments and URL links for malicious content

  3. Investigate sensor detections and alerts to determine severity of threat or false positive.

  4. Through log and data analysis determine scope or extent at which other systems were exposed to the same threat.

  5. Coordinate efforts among analyst to enhance mitigation efforts and avoid duplication of efforts.

  6. Coordinate with Security Services Department on threat impact, nature and potential scope.

  7. Identify, implement or request solutions (e.g. blocks) to mitigate future risk to the Laboratory.

  8. Perform Data and System of Interest AV scans

Knowledge and Experience with Cyber Security in Cloud (AWS, Azure, etc.) and DevSecOps


  1. Infrastructure as code

  2. Scripting


Primary Duties cont.


External Awareness


  1. Research current malicious cyber activity at large.

  2. Research how vulnerabilities are being exploited and software affected.

  3. Proactively identify opportunities to mitigate potential threats based on research.

  4. Proactively identify any patterns within device and server logs based on research to potentially identify systems of interest through log analysis.


Security Projects


  1. Evaluate potential security software, tools or devices

  2. Test new network security systems and changes to existing network security devices.

  3. Develop technical project plans, requirement documentation, test plans, change requests, and communications to users.


Scope:

This position is under general supervision of the Threat Team Lead.

This position does not have any financial responsibility. However technical expertise may be required for assisting with product selection and annual product support renewals.

This position will maintain frequent contact with internal department and/or Laboratory user community as well as external vendors to maintain communications related to problem resolution, systems upgrades, services and product research. This position interacts frequently with the Security Services Department to maintain communication related to data recovery for forensics analysis based on request, and identification of policy violations, systems of interest putting the network at risk, threats of interest or messages of interest.


Qualifications


Knowledge and Skills: Required Minimum:




    • CompTIA Security+ Certification or equivalent.

    • Working knowledge of security tools and devices including SIEM and SOAR tools.

    • Working knowledge Cyber Security in Cloud / DevSecOps including scripting (Python preferred)

    • An understanding of TCP/IP network protocols and application layer protocols (e.g., HTTP, SMTP, DNS, etc.)

    • Analyze log data for signs of malicious activity and create detections and/or alerts.

    • Good understanding of Windows, Mac and Linux Operating Systems and Event logging.

    • Ability to work independently toward delivery of goals as well as collaborate in team efforts.

    • Skill in interviewing users to determine source of potential malware or suspicious activity.

    • Excellent customer service skills.

    • Excellent verbal and written communication skills.



Preferred:




    • - Bachelor's Degree in Computer Science, Information Technologies, Engineering or equivalent experience.

    • - SANS GCIH (GAIC Certified Incident Handler) or equivalent, which would include solid working knowledge of incident handling.

    • - Skill in organizing and managing projects.

    • Skill in building consensus among stakeholders and colleagues.



Experience:

4+ years' experience in various cyber security / SOC roles.


For Benefits Information, click http://hrweb.mit.edu/benefits

Selected candidate will be subject to a pre-employment background investigation and must be able to obtain and maintain a Secret level DoD security clearance.

To safeguard our health and well-being, MIT Lincoln Laboratory requires COVID-19 vaccination for all employees. Individuals may request exemption from the vaccine requirement for medical or religious reason.

MIT Lincoln Laboratory is an Equal Employment Opportunity (EEO) employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, veteran status, disability status, or genetic information; U.S. citizenship is required.

Requisition ID: 35407






Nearest Major Market: Boston




Job Segment:
Engineer, Cyber Security, Computer Science, Network Security, Security, Engineering, Technology






Apply now






Find similar jobs:





More jobs in Lexington, Massachusetts
Other
about 15 hours ago
Lab Technician

Actalent
Lexington, Massachusetts
Other
1 day ago
Quality Control Analyst

Eurofins Lancaster Laboratories Professional Scientific Services, LLC
Lexington, Massachusetts
Other
1 day ago
Quality Control Senior Scientist

Eurofins Lancaster Laboratories Professional Scientific Services, LLC
Lexington, Massachusetts
More jobs in Other
Other
9 minutes ago
Janitor

Federal Signal Corporation
University Park, Illinois
Other
30+ days ago
Janitor

Federal Signal Corporation
University Park, Illinois
Other
18 minutes ago
Program Coordinator II

University of Kentucky
Lexington, Kentucky

  • About
  • disABLEDperson, Inc. is a 501(c)3 non-profit organization whose mission is to reduce the high unemployment rate of individuals with disabilities.
  • "We are simply here to serve."
© 1999 - 2024 Disabled Person, Inc. | Terms and Privacy Policy