Sr Cyber DefenseTechnologist- Tucson location

RTN 2 (Raytheon IDMS)
Tucson, AZ 85701
US Citizenship statues required as this position needs active US Security Clearance as of day one of employment

Missile Systems is looking for talented and qualified individuals to join our cyber protection team of Cyber Defenders working to actively assess and secure our Industrial Control Systems (ICS) and network environments. This position is part of the Defensive Cyber Operations group within IT Security charged with centralized global monitoring, proactive network defenses, with rapid incident response to mitigate threats against enterprise network. The Cyber Defenders first priorities are to determine Cyber Key Terrain within our Engineering and Manufacturing cyber environments and validate the cyber map in order to rapidly assess cyber key terrain accuracy and cyber risk level using tools and organizational relationships as force multipliers. Cyber Defenders will visualize where adversaries could attack, exploit and pivot and determine where mitigations are required. Cyber Defenders will direct, synchronize and coordinate implementation of these mitigations and build resilient Defense-in-Depth. Lastly, in terms of the actual mission sets, a Cyber Defender hunts for adversaries in our Operational Technology and Information Technology networks and executes countermeasures and defensive cyber operations to neutralize adversary activity. The Cyber Defender will adopt an evolving security operations model for crown jewel assets by applying advanced analytics with state-of-the-art cyber tools to quickly identify, investigate, respond and adapt to threats in dynamic, digital environments. This role will work closely with members of IT Security, other IT directorates, Engineering, and Operations to support large mission critical development, manufacturing, and sustainment programs.

Responsibilities

  • Understand/control the cyber landscape (e.g. physical and logical asset movement, processes, and resources) within the manufacturing and engineering environments
  • Validate the cyber map to identify key environments and critical assets
  • Quickly assess critical environments and determine cyber risk level
  • Leverage tools and organizational relationships to rapidly attain results (improve cyber posture)
  • Understand and identify indicators of attack and compromise
  • Utilize available tools and information to predict adversaries behaviors and defend against potential attacks
  • Verify where mitigations are required
  • Direct, synchronize and coordinate implementation of these mitigations
  • Design and implement processes to support and continuously improve the cybersecurity posture for Information Technology (IT), Operational Technology (OT) and Industrial Internet of Things (IIOT) devices within the development and production environments.
  • Off hours, weekends or holidays work may be required at times to support projects based on business need or requirements
  • < 10% travel required as needed (Domestic and International)

Minimum Required Qualifications:
  • Requires a degree in Science, Technology, Engineering or Mathematics (STEM) or IT and minimum of 6 years of prior relevant experience or a Master degree in IT or STEM and 4 years of relevant experience, or in lieu of a degree 8 years of additional related experience for a total of 14 years.
  • 4+ years of experience with incident management and response activities across the incident life cycle
  • 4+ years of experience supporting technology within Manufacturing or Engineering environments
  • Experience with scripting and automation experience (PowerShell or Python, Java, or a similar language)
  • Experience with security tools and techniques used by Cybersecurity teams
  • Experience with common cybersecurity elements such as network security, application security, information security, etc.
  • Experience with performing host and network forensics analysis across different log types to develop authoritative timelines of activity to find evidence of malicious activity
  • Experience with leading teams focused on anomaly or malware hunts using a common framework and standard methodology
  • Experience with Microsoft Windows and/or Linux administration
  • Must have one or more of the following industry certifications: Security+, CISSP, CISA, GIAC, CISM, or equivalent
  • Experience with NISPOM, JAFAN, JSIG, and/or DoD/RM
  • Must be a USA citizen-US Citizenship statues required as this position needs active US Security Clearance as of day one of employment

Highly Preferred Qualifications:

  • Demonstrated experience learning new technologies, methodologies, and processes quickly
  • Demonstrated experience to lead/influence others and achieve results through people
  • Strong collaboration skills and ability to work effectively/efficiently across multiple groups to achieve the same goal
  • Excellent communications skills and ability to influence up, across and down
  • Experience with Security Information and Event Management (SIEM), Host-based technologies (e.g. ArcSight, Splunk)
  • Hands-on experience securing Operational Technologies in a Manufacturing and/or Engineering environment

This position requires either a U.S. Person or a Non-U.S. Person who is eligible to obtain any required Export Authorization.174711

Categories

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Sr Cyber DefenseTechnologist- Tucson location

RTN 2 (Raytheon IDMS)
Tucson, AZ 85701

Join us to start saving your Favorite Jobs!

Sign In Create Account