ManTech Cyber Defense Solutions

ManTech Cyber Defense Solutions For more information regarding positions at ManTech Cyber Defesne Solutions, please contact us! Jess

Our valued staff members are encouraged to execute meaningful career goals that help to develop a winning business unit, where our top priorities are passion for the mission, dedication to our core values, and striving for excellence.

10/29/2013

66701-Senior IDS Analyst (Night Shift)
Become an integral part of a diverse team that leads the world in Mission, Cyber, and Intelligence Solutions. At ManTech International Corporation, you will help protect our national security while working on innovative projects that offer opportunities for advancement.

Responsibilities Include:
The Cyber Business Unit of ManTech MCIS is looking for highly motivated, qualified professionals to fill a Sr. IDS Analyst position in the DC Metro area. A wide range of knowledge and skills are needed. Sr. IDS Analyst will support detection team CERT/SOC operations in performing duties that include IDS event monitoring and analysis, security incident handling, incident reporting, and threat analysis. Candidate will monitor and analyze network traffic, IDS alerts, network and system logs, and available open source information to detect and report threats to customer networks. Analyst will determine appropriate response action(s) required to mitigate risk and provide threat and damage assessment for security threats which may impact the customer networks.
Analyst may also support the Incident Response Team during incident investigations, vulnerability assessments, malware analysis, and the development of new defensive security solutions.

Required Qualifications:
05-07 years w/Bachelors Degree, 02-04 years w/Masters Degree or equivalent of relevant experience, i.e.common Intrusion Detection Systems, virus and malware behavior, and intrusion methodologies.

Key words: Intrusion detection, malware analysis,
incident handling

Security Requirements:
Active Top Secret clearance with SCI eligibility

10/16/2013

66631-Senior Mobile Device and Forensics Engineer
(Washington, DC)
Become an integral part of a diverse team that leads the world in Mission, Cyber, and Intelligence Solutions. At ManTech International Corporation, you will help protect our national security while working on innovative projects that offer opportunities for advancement.
Responsibilities Include:
• Perform in-depth digital forensic examinations on various data and media types, with a concentration on mobile
devices through the application of advanced methods, tools, and research techniques
• Must be familiar with the Android and Blackberry Operating Systems and their Architecture
• Must be familiar with/conducting research on securing and/or manipulating security in Android mobile devices
• Should have experience in programming/developing/reverse engineering apps for Android and iOS
• Should be familiar with iOS, and Windows Phone 8 Operating Systems and their Architecture
• Identify and report on usage and methodology from the data
• Write a variety of short written products based on analysis of the data
• 6+ years computer forensics or in-depth technically related work
• Knowledge of the Intelligence Community mission, vision, goals, and values
Required Qualifications:
The candidate must provide Mobile Device & Intrusion Forensics support to high technology investigations in the form of mobile device forensic analysis, technical analysis reports, and security assessments of mobile devices in a “device agnostic” environment. Experience developing/securing/manipulating security in Android mobile devices is required. Experience with BES Servers and RIM BlackBerry devices is recommended. Ability to conduct Hard Disk Forensics and/or Enterprise Forensics is not required but recommended. Researches and maintains proficiency in tools, techniques, countermeasures, and trends in mobile device vulnerabilities and risk analysis.
Security Requirements:
Active Top Secret Clearance

08/20/2013

64558 Sr. Systems Administrator: SCOM/SCCM
Maintains data files and control procedures for a complex system of networked computers or for a single group of microcomputers linked to a host workstation, or mainframe. Responsible for system security and data integrity. Assigns passwords and monitors use of resources, backs up files as required and responds to management requests for information. Provides technical guidance to lesser-experienced systems administrators.
• Perform systems support within a Windows 7 environment running in VMware environment, and Microsoft Server 2008R2 or 2012
• Expertise in installing, configuring, administering and troubleshooting of System Center Configuration Manager (SCCM), System Center Operations Manager (SCOM), and other MS Windows management products.
• Perform operations and support activities. Assists with service administration, evaluate changes for operational impact, and prepare recommendations for system improvement. Debug performance management hardware and network issues.
• Manage and execute SCCM, SCOM agents, SCOM console and other performance management tools.
• Using SCCM perform remote administration, patch management, and software distribution
Provide SCOM integration support with other systems to include Exchange 2010, Compellent, MS-SQL, Remedy Incident /Problem Management. Provide recommendations to improve monitoring environment and assist in the definition of alert thresholds.
Administer relational databases, window services, network components, and storage devices with demonstrated work utilizing Microsoft SQL Server 2008. Under general direction, provide technical expertise in the design, implementation, operation and maintenance of database management systems.
Evaluates and recommends available DBMS products after matching requirements with system capabilities. Plans, recommends, and performs changes.
Previous responsibilities for providing customer support. Perform day-to-day database maintenance tasks including health monitoring, backups & restores, space management, resource utilization, and index & data management. Proficiency with Administering Windows Server, MSSQLServer, SQL, and scripting (PowerShell, AutoIT preferred)Experience working with IT service management toolset with demonstrated work using BMC Remedy
Willingness to learn new technologies and maintain industry knowledge. Excellent communication and interpersonal skills

08/20/2013

64832 Information Assurance Officer (IAO)
Become an integral part of a diverse team that leads the world in Mission, Cyber, and Intelligence Solutions. At ManTech International Corporation, you will help protect our national security while working on innovative projects that offer opportunities for advancement.
As the Information Assurance Officer, you will Support the organization Security Manager by:
(1) Ensuring all Information Systems (IS) are certified and accredited in compliance with DoD, SAP, and SCI security requirements; (2) Ensuring each network or system is operated and maintained, and disposed of in accordance with internal security policies and practices outlined in the System Security Authorization Accreditation (SSAA); (3) Ensuring all users have the requisite security clearance, authorization, and need-to-know, and are aware of their security responsibilities before granting access to Information System (IS); (4) Ensuring Audit Reviews and risk assessments are conducted periodically for each network or system to identify specific areas that require safeguards against deliberate or inadvertent unauthorized disclosure, modification, destruction of information, denial of service, and unauthorized use of IS. Initiate approval of IAM for protective and corrective measures when vulnerabilities are discovered; (5) Ensuring all security-related incidents are reported to the Information Assurance Manager (IAM); (6) Creating IS records and maintaining documentation for each network/system; (7) Develop and maintain SSP and related documentation; (8) Ensure configuration management for security related s/w, h/w and firmware is maintained and developed; (9) Ensure systems recovery process monitoring and ensure security features reinstated; (10) Document system access and correlate system events to authorized personnel; (11) Formally notify IAM and DAA when systems are no longer used to process intel or SAP info; (12) Notify IAM when system changes occur that effect accreditation; (13) Ensure that system security is implemented during all phases of system life-cycle; and (14) Follow evaluation and authorization process for h/w, s/w and firmware before importing onto system;
Position Requirements:
• Must be knowledgeable of the Department of Defense (DoD), Director Central Intelligence Directive (DCID), Joint Air Force, Army and Navy (JAFAN) compliance guidance.
• A minimum of 2 years experience in Information System Security.
• Working knowledge of IT systems function, security policies, technical security safeguards and operations security measures.
Security Requirements: U.S. Citizenship and an active DoD TS/SCI clearance based upon a SSBI completed within the last 5 years. Must be willing to submit to an initial and random polygraph.
Keywords: Information Assurance, JAFAN, SAP

07/29/2013

64832 – Information Assurance Officer (IAO)
(1) Ensuring all Information Systems (IS) are certified and accredited in compliance with DoD, SAP, and SCI
security requirements; (2) Ensuring each network or
system is operated and maintained, and disposed of in accordance with internal security policies and practices outlined in the System Security Authorization
Accreditation (SSAA); (3) Ensuring all users have the requisite security clearance, authorization, and need-to-know, and are aware of their security responsibilities
before granting access to Information System (IS); (4) Ensuring Audit Reviews and risk assessments are
conducted periodically for each network or system to identify specific areas that require safeguards against
deliberate or inadvertent unauthorized disclosure,
modification, destruction of information, denial of service, and unauthorized use of IS. Initiate approval of IAM for protective and corrective measures when vulnerabilities are discovered.
Required Qualifications:
-Must be knowledgeable of the Department of Defense (DoD), Director Central Intelligence Directive (DCID), Joint Air Force, Army and Navy (JAFAN) compliance
guidance.
-A minimum of 2 years experience in Information System
Security.
-Working knowledge of IT systems function, security
policies, technical security safeguards and operations security Measures.
Security Requirements:
U.S. Citizenship and an active DoD TS/SCI
clearance based upon a SSBI completed within the last 5 years. Must be willing to submit to an initial and random polygraph.

05/22/2013

62863– Security Engineer, Principal
Responsible for providing technical and security policy for the protection of automated information systems including Internet/Intranet systems. Designs, develops, engineers, and implements
solutions to various security requirements including firewalls, threat assessment, vulnerability
assessment, risk assessment, etc. Experienced with various security concepts, intrusion detection
strategies, products, protocols, strategies and methodologies. Primary duties and responsibilities include:
• Plans and performs network security research, design, development, and analysis in
accordance with customer guidelines, specifications, and policies.
• Gather and organize technical information about an organization's mission goals and needs, existing security products, and ongoing programs.
• Specialized experience in defining computer security requirements for high level applications, evaluation of approved security product capabilities, and developing information assurance solutions.
Tools Used:
Arcsight SIEM, Arcsight ConApp, McAfee IDS, Fidelis, Netwitness, Big Fix, Lancope, Fireeye

Required Qualifications:
Bachelor's Degree in related field or equivalent. Five (5) years of general experience is considered equivalent to a Bachelor s Degree or four (4) years of general experience and a technical certification such as a MCSE, CNE, or CCIE is considered equivalent to a Bachelors Degree.
CISSP, CISA, or other security related certifications are a plus
Security Requirements:
None

05/22/2013

63183– Cyber Security InfoSec Engineer
Become an integral part of a diverse team that leads the world in Mission, Cyber, and Intelligence Solutions. At ManTech International Corporation, you will help protect our national security while working on innovative projects that offer opportunities for advancement.

As a Cyber Security Infosec Engineer you will perform, overall network defense activities, provide
in-depth analysis of suspected malicious code and/or infected systems and network devices, perform necessary inspection and reverse-engineering activities to understand the behavior of the
software, the root cause for its presence, and develop recommendations on how to counter the threat.
Required Qualifications:
• A bachelor's degree in computer engineering, computer science, or other closely related IT
discipline. EnCase, GCFA, GREM, and other forensics certifications preferred, Security + or
other DoD-8570 IAT Level 2 certification required.

• Strong analytical and problem solving skills.

• Demonstrated experience using EnCase, FTK, and Open Source methods and tools to
perform Computer Forensic investigations.

• Minimum of two years of progressively responsible experience in cyber security,
incident response, forensic investigations.

• Good interpersonal, organizational, writing, communications, and briefing skills.

Security Requirements:
TS/SCI w/Poly

04/12/2013

61730-Senior Cyber Threat Analyst/Reverse Engineer
The Cyber Defense Solutions BU of ManTech MCTS is looking for a highly motivated, qualified professional to fill a Cyber Threat Analyst / Reverse Engineering position in Washington, DC.
As the Cyber Threat Analyst/Reverse Engineer, you will conduct research, binary analysis and reverse engineering of suspicious and malicious software to determine functionality, complexity, and impact of its implementation on victim/compromised systems of interest. You will also provide periodic updates
documenting the results of this research. In this role, you will be required to provide analysis of packet capture data and netflow data to recover malicious activity, commands/passwords; as well as identify software programs used, identify communication recipients, provide clear text chat conversations, and identify number of users on victim systems. You will also then provide periodic updates documenting the results of this analysis.
In this role, you will analyze and recover encrypted and plaintext passwords or secure keys, identify software programs, hidden rootkits activity, hidden or clear network traffic information, active registry hives, specific command lines, and other system activity. You will also provide intrusion analysis to determine who, what, when and how intrusions occurred.
As the Cyber Threat Analyst, you will provide research and analysis of complex national level cyber security breaches for our Federal customer. You will also be responsible for linking and correlating digital information, such as, threat data (Victim/Source Internet Protocol (IP) addresses, Uniform Resource Locators (URL), malicious software), actor contacts or personal data, system logs, obtained from single or multiple sources and develop correlation associations.
Required Qualifications:
5+ years experience in analysis on cyber intrusions, providing the detailed results of research, technical examination, and recommendations, including network and digital forensics and malicious code reverse engineering (RE). With a total of Eight (8) years of increasing responsibilities in Information Assurance.
Security Requirements:
Active TS/SCI with Poly

03/08/2013

59331 - IDS Analyst (South Carolina)
Provides alternating coverage, including holidays and weekends. Works independently, with very little supervision. Interfaces directly with clients to identify requirements and generate new business. Develops and applies advanced methods, theories and research techniques in the solution of security environment requirements and problems. Plans, conducts and technically directs projects or major phases of significant projects, coordinating the efforts of technical and support staff in the performance of assigned duties. Reviews information systems security environments to
include all aspects of physical, technical and administrative security issues. Develops
client-specific information system risk-management alternatives and implementation plans. Provides information system security training to other employees and performs oversight of all task-specific activities such as document preparation, writing, methodologies, etc. Evaluates government and commercial policies, manuals, regulations and other documents for relevance to information security management issues and ongoing efforts. Provide work leadership, guidance, and direction to lower level employees. Monitor RealSecure network- and host-based intrusion detection systems (IDS) to identify and report adverse system and network activity.
Required Qualifications:
Bachelor’s degree or equivalent
Current CISSP or SANS GCIA certification required
Current shift opening: 6pm-6am
Security Requirements:
Applicant must have an Active Secret clearance

12/20/2012

59136-Information Assurance Officer (IAO)
Become an integral part of a diverse team that leads the world in Mission, Cyber, and Intelligence Solutions. At ManTech International Corporation, you will help protect our national security while working on innovative projects that offer opportunities for advancement.

As the Information Assurance Officer, you will Support the organization Security Manager by:

(1) Ensuring all Information Systems (IS) are certified and accredited in compliance with DoD, SAP, and SCI security requirements; (2) Ensuring each network or system is operated and maintained, and disposed of in accordance with internal security policies and practices outlined in the System Security Authorization Accreditation (SSAA); (3) Ensuring all users have the requisite security clearance, authorization, and need-to-know, and are aware of their security responsibilities before granting access to Information System (IS); (4) Ensuring Audit Reviews and risk assessments are conducted periodically for each network or system to identify specific areas that require safeguards against deliberate or inadvertent unauthorized disclosure, modification, destruction of information, denial of service, and unauthorized use of IS. Initiate approval of IAM for protective and corrective measures when vulnerabilities are discovered; (5) Ensuring all security-related incidents are reported to the Information Assurance Manager (IAM); (6) Creating IS records and maintaining documentation for each network/system; (7) Develop and maintain SSP and related documentation; (8) Ensure configuration management for security related s/w, h/w and firmware is maintained and developed; (9) Ensure systems recovery process monitoring and ensure security features reinstated; (10) Document system access and correlate system events to authorized personnel; (11) Formally notify IAM and DAA when systems are no longer used to process intel or SAP info; (12) Notify IAM when system changes occur that effect accreditation; (13) Ensure that system security is implemented during all phases of system life-cycle; and (14) Follow evaluation and authorization process for h/w, s/w and firmware before importing onto system;

Position Requirements:

• Must be knowledgeable of the Department of Defense (DoD), Director Central Intelligence Directive (DCID), Joint Air Force, Army and Navy (JAFAN) compliance guidance.

• A minimum of 2 years experience in Information System Security.

• Working knowledge of IT systems function, security policies, technical security safeguards and operations security measures.

Security Requirements: U.S. Citizenship and an active DoD TS/SCI clearance based upon a SSBI completed within the last 5 years. Must be willing to submit to an initial and random polygraph.

Keywords: Information Assurance, JAFAN, SAP

10/16/2012

58210- Cyber Intelligence Analyst
The Cyber Business Unit of ManTech MCIS is looking for a highly motivated, qualified professional to fill a Cyber Intelligence Analyst position at Quantico.
As the Cyber Intelligence Analyst, you will be responsible for analyzing cyber data and producing intelligence reports and investigative and operational leads for a Federal Law Enforcement agency. This role will require fluency and familiarity with current operating systems and software and intelligence resources and tools to include TAC, HOT-R, and CENTAUR. You must have conversational knowledge about the TCP/IP protocol and Internet routing. You must have knowledge and understanding of Essential Elements of Information (EEI's) and Intelligence Information Reporting (IIR) and be able to draft and publish IIR's and investigative reporting in a fast-paced and dynamic work environment.
As the Cyber Intelligence Analyst, you must also have counterintelligence, counterterrorism and/or law enforcement experience and familiarity with cyber threats and computer network operations (CNO), including CND, CNE, and CNA.
Security Requirements: Must have an active TS/SCI

10/16/2012

57490 SOC Technical Lead
ManTech MCIS – Cyber (BU) is actively seeking a SOC Technical Lead to manage daily activities and resources of an Enterprise Security Operations Center (SOC). The Tech Lead provides daily direction and supervision for all ManTech Security Engineers and Analysts assigned to the SOC or other customer security teams. Plans, conducts or directs projects or major phases of significant projects, coordinating the efforts of technical and support staff in the performance of assigned duties. Technical programs include intrusion monitoring, incident response, security engineering, vulnerability assessment, and security program review and development. Develop and review processes, procedures, and standards to improve accuracy and efficiency of operations. Provide technical and management briefings as required for assigned projects, tasks, or daily activities for SOC operations. Provide input to customer management on best practices or recommendations for strategic security planning, operations, and technologies within the organization.
Evaluate and coordinate requests for additional resources needed to complete mission requirements. Review and assess the customers technical, program, or project requirements to determine appropriate technical approach and/or resources needed to successfully complete the objective. Evaluates new and existing technologies for the customer enterprise network environment or operations center. Performs task-specific activities such as document preparation, writing, methodologies, etc. Knowledge of multiple IDS/IPS platforms, secure architecture, SIEM tools, ArcSight, Remedy, computer forensics, malware analysis, vulnerability assessment, and security monitoring practices. Candidates should have specific experience and knowledge of Information Assurance, Security Policy, and Security Operations best practices. Candidates must have demonstrated expertise in Federal Incident Reporting Standards and requirements. Specific experience leading and coordinating teams of Security Engineers, Analysts, and Incident Responders in a security operations environment required. (SOC/CIRT/CSIRT/CERT).
Requires Bachelor's degree (in field mathematics, telecommunications, electrical engineering, computer engineering, and computer science) or equivalent experience.
Supervision Experience
CERT/SOC/CIRT/CSIRT experience
Intrusion Analysis
Incident Response
Incident Reporting and Coordination (Federal/DOD)
IDS Monitoring
Development and deployment of custom IDS Signatures
This position involves both technical (hands-on) and managerial (directing SOC tasks) tasks. Candidates must have a firm grasp of technical skills with a desire to advance into a management role.

Address

Vienna, VA

Website

Alerts

Be the first to know and let us send you an email when ManTech Cyber Defense Solutions posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Shortcuts

Share

Category