Cyber Defense Analyst - Real Time

Location: OWINGS MILLS, MD, United States
Organization: Exelon Business Servcs Co, LLC
Job ID: 226797
Date Posted: Jun 25, 2020

Share: mail

Job Description


Perform the security monitoring process and escalate relevant issues to the Cyber Defense Team Lead – Real Time.  Identify potential security incidents and forward to the appropriate  team for further analysis. Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs.) to analyze events that occur within their environments for the purposes of mitigating threats.


- Perform cyber security monitoring of Industrial Control/SCADA systems with established monitoring tools including Industrial Defender and Splunk
Perform tracking of cyber events as required for NERC CIP Compliance.
Interface with various business entities to determine nature of detected cyber events, perform detailed analysis on cyber events and advise entities on methods to improve security posture

- Create detailed documentation on use of monitoring systems, topology and details of business entity ICS/SCADA systems, and performance of NERC CIP logging monitoring and alerting processes

- Provide daily summary reports of network events and activity relevant to cyber defense practices. Use cyber defense tools for continual monitoring and analysis of system activity to identify malicious activity.

- Remain up-to-date on the latest security information in order to validate the security analysis & identification capabilities of the security operations technologies

- Participate in efforts to analyze & define security filters & rules for a variety of security parameters




- Bachelor’s Degree in Computer Science or a related 4-year technical degree and 2 - 5 years of IT or Cyber Security experience, or equivalent combination of education and work experience.  
- Knowledge of information technology (IT) security principles and methods, such as firewalls, demilitarized zones, and encryption.
- Knowledge of operating systems.
- Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).
- Knowledge of common network tools (e.g., ping, traceroute, nslookup) and interpret the information results.
- Knowledge of operating system command line/prompt.
- Knowledge of Windows/Unix ports and services.
- Knowledge of computer networking concepts and protocols, and network security methodologies. 
- Comprehensive knowledge of common networking protocols: HTTP, DNS, DHCP, SMTP, NTP, SSH, FTP. 

- Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
- Knowledge of cyber defense and vulnerability assessment tools, including open source tools, and their capabilities.
- Skill in performing packet-level analysis (e.g., Wireshark, tcpdump, etc.).
- Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.
- Knowledge of Intrusion Detection System (IDS)/Intrusion Prevention System (IPS) tools and applications.
- Knowledge of intrusion detection methodologies and techniques for detecting host and network-based intrusions via intrusion detection technologies.


Share: mail

Similar Jobs

Senior Cyber Threat Intelligence Analyst

OWINGS MILLS, MD, United States
Exelon Business Servcs Co, LLC

Cyber Defense Analyst - Real Time

OWINGS MILLS, MD, United States
Exelon Business Servcs Co, LLC

Sr OT Cyber Defense Systems Engineer

OWINGS MILLS, MD, United States
Exelon Business Servcs Co, LLC

Frequent Job Searches

Recently Viewed Jobs

Most Recent Job Searches

Relevant Jobs