Cyber Security Technical Lead

ICF is currently seeking an ambitious Cyber Security Analyst Technical Lead to join our team.  The successful candidate will provide support for DoD customers.

Key Responsibilities:

• Constant monitoring and updating of Intrusion Detection Systems(IDS).
• Creation of technically detailed reports based on intrusions and events.
• Provide assistance in computer incident investigations
• Analyze and evaluate anomalous network and system activity.
• Take point in troubleshooting and problem solving a wide variety of client issues.
• Aid a team of analysts, technically, in performing deep packet analysis and log review
• Collaborate well with members of the IAM team on daily policy issues.
• Provide quality customer service with excellent communication skills.
• Recommend and perform modifications to Incident Detection Systems to detect and alert on possible intrusions.
• Perform Open Source Intelligence(OSINT) research to stay abreast of current malware, phishing and other malicious cyber trends.

Basic Qualifications:

• 5 or more years of IT experience.
• 5 or more years of IA/security experience
• 5 years of experience using network security analysis/IDS tools such as Snort, WireShark, Kibana and other Host or Network based Intrusion Detection Systems, network technologies and protocols
• 5 or more years of experience analyzing PCAP data via TCPDump and understanding of current threats and trends present in the Information Security and Technology field.
• 5 or more years of experience with different types of Malware including how to detect it, attack vectors and vulnerabilities used.
• 5 or more years of experience writing technical event reports
• DOD 8570 Compliant Certifications: CEH and Comptia Sec+ / Be 8570 compliant for IAT II
• Work Modified Panama shift (12 hours/day, 7 days/2 weeks, no more than 3 days in a row)
• Security clearance required

Preferred Skills/Experience:

• Bachelor's degree in IT
• Experience working with and writing Snort rules.
• Initiative and interest in Information Technology Security.
• People skills and the ability to communicate effectively with various clients with the ability to explain and elaborate on technical details.
• Experience with system vulnerability assessment.
• Familiar with computer forensic tools FTK, EnCase or other network forensic applications.
• Knowledge of Linux/UNIX and Windows OS security.
• Knowledge of computer programming languages and scripting languages. Previous scripting and coding experience is desired but not required.
• Experience with Kibana
• Experience with FireEye

Professional Skills:

• Excellent written and verbal communication skills.
• Excellent problem-solving skills.
• Excellent research skills.

Working at ICF

Working at ICF means applying a passion for meaningful work with intellectual rigor to help solve the leading issues of our day. Smart, compassionate, innovative, committed, ICF employees tackle unprecedented challenges to benefit people, businesses, and governments around the globe. We believe in collaboration, mutual respect, open communication, and opportunity for growth. If you’re seeking to make a difference in the world, visit www.icf.com/careers to find your next career. ICF—together for tomorrow.

ICF is an equal opportunity employer that values diversity at all levels. (EOE – Minorities/Females/ Protected Veterans Status/Disability Status/Sexual Orientation/Gender Identity). For more information, please read our EEO & AA policy.

Reasonable Accommodations are available for disabled veterans and applicants with disabilities in all phases of the application and employment process. To request an accommodation please email icfcareercenter@icf.com and we will be happy to assist. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. Read more about non-discrimination:  EEO is the law and  Pay Transparency Statement.

Maryland Client Office (MD88)