INTERIM OR ACTIVE SECRET CLEARANCE REQUIRED
Aquila is seeking a Cyber Security Analyst to support the operations and maintenance of computer network
defense (CND) tools along with network and host-level data sources in support of incident response and mitigation�processes. The right candidate will work as part of a team in completing vulnerability assessment scanning at the�network, system, and application levels, and support mitigations and communications within the organization.
This role will support Security Infrastructure Operations by providing day-to-day support in maintaining systems,�including system troubleshooting, vendor coordination, and OS patching and updating, (e.g Intrusion Prevention�Systems, Anti-Virus, Web Proxy Systems, Full Packet Capture, Online and Offline Malware- Analysis Systems and�SIEM platform) along with ensuring that devices under configuration management receive signature updates and�maintain operational readiness. Performance metrics and log data will also be monitored for continuous�improvement and tuning to match current threat. The position will also support Security Infrastructure through�the evaluation of potential security software, tools or devices, and testing of new network security systems and�changes to existing network security devices. This includes developing, publishing, and maintaining system�documentation (e.g. Requirements, Design/Build, Testing, and SOP),conducting log and data analysis, determining�the scope or extent to which other systems were exposed, as well as identifying and implementing or requesting
solutions (e.g. blocks) to mitigate future risk.
Aquila team members experience the opportunity to be part of a fast-paced, customer-focused, and technically�innovative work environment. Aquila strives to deliver the best of the best in technical services to customers.�Candidates that possess a love for technical challenges, a desire to continually learn, and the desire to establish�themselves as critical players within a team are strongly encouraged to apply.
Required Knowledge and Skills:
� Strong working knowledge of the Linux Operating system.
� Good understanding of the Windows Operating system (desktop and server).
� Experience with enterprise log management platforms (e.g., Splunk).
� Experience with IDS/IPS systems, Firewalls, Web Proxy and full packet capture systems.
� Proven ability to script in Perl or Python.
� Strong understanding of network routing and switching and TCP/IP protocols.
� Excellent customer service, written and oral communication skills.
� Demonstrated ability to work in a fast-paced environment at times with minimal supervision and execute
operations, project and administrative tasks with a high degree of quality, while following existing
processes and establishing new operational procedures and best practices where necessary.
� Demonstrated ability to work with members of other teams and staff to achieve department and
� Bachelor's Degree in Computer Science, Computer Engineering, Information Technology or similar course�of study OR combination of education and three years' related experience
� CompTIA Security+, SANS Certified Incident Handler (GCIH) or equivalent certification
� Knowledge of DoD and NIST security standards and procedures
� ITILv3 Foundations Certification