Cyber Security Analyst- Operations Watch Analyst
Pearl City, HI
Minimum of a Secret Clearance Required with ability to obtain TS/SCI
Position Description
As an Operations Watch Analyst, you will isolate, investigate, inform, and implement measures to detect and protect data across a wide spectrum of sources and locations. The candidate is required to validate suspicious events or reports and determine if the event constitutes an incident. The candidate will ensure incidents are properly entered into the appropriate reporting system and determine the severity of the incident. Reporting and response measures will be taken immediately in order to satisfy the Chairman of the Joint Chiefs of Staff Manual (CJCSM) 6510.01B reporting requirements.
Position Requirements and Duties
•Maintains familiarity with CJCSM 6510.01B.
•Compiles and maintains internal standard operating procedure (SOP) documentation.
•Ensures associated documentation and capabilities remain compliant with CJCSM 6510.01B and other applicable policy directives.
•Provides network intrusion detection and monitoring, correlation analysis, incident response and support for the Cybersecurity Service Provider (CSSP) and its subscriber sites.
•Validates suspicious events or reports and determine if the event constitutes an incident and properly enter associated data into the appropriate reporting systems.
•Coordinates with JFHQ-DoDIN and supported entities regarding significant incidents to ensure proper analysis is performed and timely and accurate reporting of the incident is completed.
•Provides 24x7 support for the CSSP's Incident Response capability during non-core business hours consistent with CSSP requirements as needed.
•Performs network and host-based digital forensics on Microsoft Windows based systems and other operating systems as necessary to enhance response to, support of, and investigation into significant network incidents.
•Possesses working knowledge of full packet capture PCAP analysis and accompanying tools (Wireshark, etc.).
•Explores patterns in network and system activity via log correlation using Splunk and supplemental tools
•Possesses understanding of IDS/IPS solutions to include signature development and implementation
•Participates in program reviews, product evaluations, and onsite certification evaluations.
•Overtime may be required as needed to support incident response actions (Surge)
•Due to the nature of the work required, operations are conducted 24/7/365 with three primary shifts. Choice of shifts will be made available with the understanding that placement is at the discretion of the CSSP Services Director and/or assigned manager.
•This position requires a shift of four (4) ten-hour days per week, which includes one weekend day. Example schedules may include Wednesday to Saturday or Sunday to Wednesday.
Minimum Qualifications
•US Citizen
•Bachelor's degree in a relevant discipline OR at least three years of directly relevant experience, preferably in a DoD environment.
•Up to 15% global travel may be required; emergency travel may be required with 72-hour notice for incident response and to support other program needs.
Preferred Qualifications
•At least five years of incident response experience
•The ability to solve problems independently
•Knowledge of Incident Response Procedures
•Knowledge of Packet Analysis
•Knowledge of IDS/IPS solutions
•Familiarity with various Host-Based Tool
•Experience with Log Aggregation Tools
•Logical thinking and analytical ability
•Verbal and written communication ability
•Highly Desired Skills
•Knowledge of CJCSM 6510.01B
•Experience with Digital Forensics
•The ability to solve problems independently
Required Certifications
•IATII and CSSP Compliant Certifications
Company Overview
Adapt Forward is a cybersecurity solutions provider for some of the nation's most valuable information systems. Leveraging advanced threat assessment technology and experience in building high-level information security infrastructure, we develop adaptive solutions uniquely tailored to our customers' business objectives to protect sensitive data against sophisticated threats in an increasingly complex security environment.
Summary of Benefits
Equal opportunity employer as to all protected groups, including protected veterans and individuals with disabilities.
Who referred you to this position? Enter their first and last name here.
Are you willing to relocate?
What's your citizenship / employment eligibility?*
Are you 18 years of age or older?
LinkedIn Profile URL:
Desired salary
In 150 characters or fewer, tell us what makes you unique. Try to be creative and say something that will catch our eye! 150
Do you have an active security clearance?*
If so, what level clearance?*
Do you have a Security+ or other DoD Approved 8570 Baseline certification (*refer to
*Check all that apply.* Security+ CEH Other (*refer to None
Please list / briefly describe your 8570 certifications here (N/A if none).*
Do you have ownership of any organizations within the Government Contracting Industry?*
Did/Do you provide consulting, advisory, or other services in your personal capacity to another entity that might, in good faith, present or appear to present a conflict of commitment?*
Are you or any of your affiliated persons involved in any business that is in direct or indirect competition with Adapt Forward?*
If you answered yes on any or all of the final three questions, please explain. If all answers are no, please state not applicable.*
The following questions are entirely optional. To comply with government Equal Employment Opportunity and/or Affirmative Action reporting regulations, we are requesting (but NOT requiring) that you enter this personal data. This information will not be used in connection with any employment decisions, and will be used solely as permitted by state and federal law. Your voluntary cooperation would be appreciated. Learn more .
Invitation for Job Applicants to Self-Identify as a U.S. Veteran
Voluntary Self-Identification of Disability
Voluntary Self-Identification of Disability Form CC-305
OMB Control Number 1250-0005
Expires 04/30/2026
Why are you being asked to complete this form?
We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualifiedpeople with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says wemust measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disabilityor have ever had one. People can become disabled, so we need to ask this question at least every five years.
Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one whomakes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If youwant to learn more about the law or this form, visit the U.S. Department of Labor's Office of Federal Contract CompliancePrograms (OFCCP) website at www.dol.gov/ofccp .
How do you know if you have a disability?
A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever hadsuch a condition, you are a person with a disability. Disabilities include, but are not limited to:
YES, I HAVE A DISABILITY, OR HAVE HAD ONE IN THE PAST NO, I DO NOT HAVE A DISABILITY AND HAVE NOT HAD ONE IN THE PAST I DO NOT WANT TO ANSWER
PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.
#J-18808-Ljbffr