Mantech

ManTech seeks a motivated, career and customer-oriented Journeyman Cybersecurity Analyst (Countermeasures Cell) to join our Defensive Cyber Operations team in Doral, FL.

Responsibilities include but are not limited to:

• Analyzes and responds to security incidents within the Countermeasures Cell, identifying potential risks, vulnerabilities, and breaches to develop and implement mitigation strategies

• Contribute to the development and implementation of security policies, procedures, and configurations specific to the environment, ensuring compliance with relevant standards and regulations

• Participate in security audits and vulnerability assessments, focusing on systems and configurations within the Cyber Terrain and their resilience to threats

• Install, configure, and maintain security tools and technologies to protect sensitive information and systems within the Countermeasures Cell, including firewalls; intrusion detection/prevention systems (IDS/IPS); endpoint detection and response (EDR); security information and event management (SIEM) systems; vulnerability scanners; and data loss prevention (DLP) solutions

• Daily collaboration with Cyber Teams to:

  •  Integrate security controls into incident response and threat mitigation processes, ensuring alignment between security and countermeasure strategies

  • Monitor system logs and network traffic for security events and incidents across all cyber terrain, responding to and escalating security incidents as appropriate

  • Participate in the incident response process, collaborating with other teams to contain, investigate, and recover from security incidents

  • Some shift work may be required to accommodate the 24x7 operations

• Develop and maintain security documentation, including Incident Reports, risk assessments, and countermeasure strategies specific to the Countermeasures Cell

• Stay current with cybersecurity threats, vulnerabilities, and countermeasures, proactively identifying and mitigating emerging threats while contributing to the development and implementation of security automation tools and scripts to streamline security tasks within the Countermeasures Cell and receives guidance and direction from more senior staff

Minimum Qualifications:

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field, or an additional 4 years of experience in lieu of a degree

• 4+ years of experience with 2+ years of experience in a cybersecurity role

• Strong proficiency in firewall administration, incident detection, firewall architecture, and intrusion detection systems.

• Demonstrated knowledge of risk assessment tools, technologies, and methodologies.

• Experience in designing secure network, system, and application architectures.

• Familiarity with disaster recovery, computer forensic tools, technologies, and methods.

• Proven ability to plan, research, and develop security policies, standards, and procedures.

• Must possess DoD 8570.01-M IAT Level II certification.

Preferred Qualifications:

• Master’s degree in Information Technology, Cybersecurity, Computer Science, or related field. Experience supporting DoD programs and with cloud-based technologies. Basic familiarity with Government Security Regulations and Frameworks—understanding basic security procedures, policies, and frameworks used in Government environments, such as NIST Cybersecurity Framework, FedRAMP, and DoD STIGs.

• Basic understanding of common cybersecurity threats, vulnerabilities, and attack vectors. Familiarity with the role and functions of a SOC, including security monitoring, incident response, and threat intelligence.

• Knowledge of TCP/IP, network protocols, and common network devices is helpful for analyzing network security events. Familiarity with security tools and technologies, security information and event management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), firewalls, and other security tools.

• Professional certification (e.g., CISSP, CISA, CISM, CEH, etc.), ITIL Foundation certificate, GIAC Security Essentials Certification (GSEC), Cybersecurity Analyst+ (CySA+), and 8570 CSSP certification.

• Experience at a DoD Combatant Command (e.g., SOUTHCOM, NORTHCOM, CENTCOM, CYBERCOM, INDOPACOM, EUCOM, AFRICOM, STRATCOM, TRANSCOM, SOCOM, SPACECOM) or a component is desired.

Clearance Requirements: 

• Must have a current/active TS clearance with SCI eligibility.

Physical Requirements:

• Must be able to remain in a stationary position for up to 50% of the time.

• Must be able to work in an office environment and move within the space.

• Must be able to review, decipher, and understand program manuals, IT service requests, and work orders.

• Must be able to physically lift equipment weighing up to 50 lbs.

• Must be able to perform installation work in constrained spaces like under work desks, in small cubicles, and network/server rooms.