Live Incident Handling Analyst

Posted:
12/24/2024, 3:57:59 AM

Location(s):
Gyeonggi-do, South Korea ⋅ Pyeongtaek, Gyeonggi-do, South Korea

Experience Level(s):
Junior ⋅ Mid Level

Field(s):
IT & Security

At Accenture Federal Services, nothing matters more than helping the US federal government make the nation stronger and safer and life better for people. Our 13,000+ people are united in a shared purpose to pursue the limitless potential of technology and ingenuity for clients across defense, national security, public safety, civilian, and military health organizations.
 
Join Accenture Federal Services to do the work you love in an inclusive, collaborative, and caring community, where you can be empowered to grow, learn and thrive through hands-on experience, certifications, industry training and more.
 
Join us to drive positive, lasting change that moves missions and the government forward!
 

Job Description:

As the Live Incident Handling Analyst, you will be required to defend against unauthorized activity on all client assets residing on NIPRNet, SIPRNet, and CENTRIX-K. Your work will include current and new systems at various lifecycle stages, and any future applications/systems not currently identified. This includes activities from external hackers who may attempt to gain unauthorized access, insider threats attempts for unauthorized access, and policy violations that may impact network security and operations. You will be required to continue performance during peacetime, crisis, hostilities, and war operations. 

Responsibilities:

  • You will provide DCO Network Security Monitoring, Detection, and Analysis
  • coordinate, de-conflict, and employ internal defensive measures within the DoDIN
  • assess new technologies and devices relevant to DCO. 
  • You will conduct exploratory and in-depth analysis of network traffic from security evices, analysis of host-based audit logs, malware analysis, trending of incident reports, correlation of classified and open-source threat reporting, and linkages/integration with other DCO agencies. 
  • You will analyze and correlate anomalous events identified in Security Information Event Management (SIEM) systems, Big Data Analytics, and supporting devices/applications.
  • You will be required to recognize a cyber security incident, taking appropriate action to report the incident and preserve evidence, mitigating any adverse impact, and devising defensive measures.
  • You will perform initial analysis on captured volatile data, log data, captured network traffic data, etc. to identify any immediate intrusion related artifacts which in turn will allow immediate defensive countermeasures to be implemented. 
  • You will report incidents to law enforcement and counterintelligence agencies.
  • You will implement mitigation measures in response to general or specific Advanced Persistent Threats (APT) (attempted exploits/attacks, malware delivery, etc.) on the respective networks.
  • You will participate in Incident Response investigations for the operational environment (NIPRNet, SIPRNet, and CENTRIX-K). You will provide situational awareness of evolving network threats trends.
  • You will help synchronize DCO programs with ARCYBER personnel as required via working group participation to develop, research, publish, test, and annually update Deliverables, Standard Operating Procedures and Tools, Tactics, Techniques and Procedures (TTTP) related to Cyber Defense, Live Incident Handling Analysis, Cyber Threat Analysis, Threat Detection, Computer Defense Assistance Program (CDAP), and the Cyber Intrusion Analysis Program (CIAP). You will participate in ARCYBER Cyberspace Operations (CO) meetings, conferences, and working groups. You will support Disaster Recovery (DR) and Continuity of Operations (COOP) Capability.
  • You will support Cybersecurity Service Provider (CSSP) accreditation.
  •  You will participate, if tasked, in exercises and assist with the development, planning and support of exercises such as Gaining Cyber Dominance or other cyberspace defense engagements

Basic Qualifications:

  • 3 years of experience 
  • Bachelor’s degree or higher from an accredited college or university (Computer Science, Cyber Security, Information Technology, Software Engineering, Information Systems, or Computer Engineering degree; or a degree in a Mathematics or Engineering field) . 
  • Any of the following certifications can be substituted for a Bachelor’s degree: CCSP or CEH or CFR or Cloud+ or CySA+ or GCED or GICSP or PenTest+ • 3 or more years of experience in an equivalent position
  • Shift work is required

Clearance:

  • TS/SCI 

As required by local law, Accenture Federal Services provides reasonable ranges of compensation for hired roles based on labor costs in the states of California, Colorado, Hawaii, Illinois, Maryland, Minnesota, New York, Washington, and the District of Columbia. The base pay range for this position in these locations is shown below. Compensation for roles at Accenture Federal Services varies depending on a wide array of factors, including but not limited to office location, role, skill set and level of experience. Accenture Federal Services offers a wide variety of benefits. You can find more information on benefits here. We accept applications on an on-going basis and there is no fixed deadline to apply.

The pay range for the states of California, Colorado, Hawaii, Illinois, Maryland, Minnesota, New York, Washington, and the District of Columbia is:
$76,100$136,700 USD
 
What We Believe 
We have an unwavering commitment to diversity with the aim that every one of our people has a full sense of belonging within our organization. As a business imperative, every person at Accenture Federal Services has the responsibility to create and sustain an inclusive environment.
 
Inclusion and diversity are fundamental to our culture and core values. Our rich diversity makes us more innovative and more creative, which helps us better serve our clients and our communities. Read more here
 
Equal Employment Opportunity Statement
Accenture Federal Services is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion or sexual orientation. 
 
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.
 
Accenture is committed to providing veteran employment opportunities to our service men and women. 
 
 
Requesting An Accommodation 
Accenture Federal Services is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture Federal Services and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired.
 
If youare being considered for employment opportunities with Accenture Federal Services and need an accommodation for a disability or religious observance during the interview process or for the job you are interviewing for, please speak with your recruiter.
 
Other Employment Statements 
Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.
 
Candidates who are currently employed by a client of Accenture Federal Services or an affiliated Accenture business may not be eligible for consideration.
 
Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.
 
The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information.
 
California requires additional notifications for applicants and employees. If you are a California resident, live in or plan to work from Los Angeles County upon being hired for this position, please click here for additional important information.

Accenture Federal Services

Website: https://www.accenture.com/

Headquarter Location: Arlington, Virginia, United States

Employee Count: 5001-10000

Year Founded: 1989

IPO Status: Private

Industries: Consulting ⋅ Finance ⋅ Information Technology ⋅ Management Consulting ⋅ Online Portals ⋅ Professional Services