Follow the online directions, complete all the necessary fields, and provide all relevant information so your application is submitted correctly. When you click the 'Apply this Job' button (open in new window) you will be taken to the online application form. Here you will be asked to provide personal and contact details, respond to employment-related questions, and show how you meet the key selection criteria.
Incident Handling Mid. (PEN001628)
Position Summary: Conduct Defensive Cyber Operation – Internal Defensive Measures (DCO-IDM): Implement mitigation measures in response to general or specific Advanced Persistent Threats (APT), (attempted exploits/attacks, malware delivery, etc.) on the respective networks. This includes blocking and / or denying access by hostile sites or restricting access by specific ports, protocols, and/or applications.
Major Job activities: Develop, staff, coordinate, and execute Incident Response investigations for the operational environment unclassified and classified), based on guidance provided by DCO-D (and/or ARCYBER) leadership. Investigations shall address each pre-determined category of incident (IAW CJCSM 6510) detected (internally or externally reported); Address priorities and types of internal defensive measures and potential mitigation strategies to be employed (acceptable level of risk); include applicable aspects of the most current Cybersecurity Services Evaluator Scoring Matrix.
Minimum Qualifications: Bachelor's Degree in a related field, or 4 years of additional experience.
One or more of the following certifications must be held to achieve the required IA Category and Level, IAW DoD 8570.01-M and BBP 05-PR-M-0002: IAT Level II Baseline Certification; IAM Level II Baseline Certification; CSSP-A Baseline Certification; CSSP-IS Baseline Certification; Additional CE certifications as required for the operating system(s) and/or security related tools/devices.
Preferred: CSSP-IR and E: IAT III
Experience: Must have proficiency in conducting analysis of systems, signals, and underlying protocols to identify potential security issues and produce remedies to enhance security features. Will have good interpersonal skills to enable working, interfacing, and interrelating with diverse personnel and dynamic teams. Good demonstrated cyber security systems engineering, with requirements and interface management, risk management, change boards and change board environment. Will also be proficient in RMF technologies and processes, project integration, analysis and stakeholder processes. Experience developing transition to operations plans, supporting design reviews and engineering boards.
Tasks will be performed under general direction.
Primary Location: Kuwait
Job: Information Technology
Clearance Level required at Start Date: TS/SCI
Travel: Yes, 5 % of the Time
We are committed to an inclusive and diverse workplace that values and supports the contributions of each individual. This commitment along with our common Vision and Values of Integrity, Respect, and Responsibility, allows us to leverage differences, encourage innovation and expand our success in the global marketplace. Vectrus is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, protected veteran status or status as an individual with a disability. EOE/Minority/Female/Disabled/Veteran.