Join Our Mission-Driven Team as a Cyber Case Manager at Farfield Systems
At Farfield Systems, we have proudly supported the government contracting community for over 23 years, consistently delivering impactful solutions that advance our customers’ most vital missions. Our philosophy, “employee driven…customer focused,” is the backbone of our culture and core values. We believe that by empowering our team members, we can exceed our customers’ expectations and make a meaningful difference together.
We are currently seeking a
Cyber Case Manager to join our dedicated team in supporting a critical U.S. Government mission. In this role, you will play a pivotal part in providing on-site incident response for civilian government agencies and critical asset owners facing cyber-attacks. You will be responsible for immediate investigation and resolution efforts, ensuring that our customers can maintain their essential services.
Key Responsibilities:
- Analyze incident data to identify trends and patterns in reported cybersecurity incidents.
- Recommend and implement defense-in-depth principles, including layered defenses and security robustness.
- Conduct triage of Computer Network Defense (CND) incidents, assessing their scope, urgency, and potential impact.
- Research and document known resolution steps or workarounds to facilitate the mitigation of CND incidents.
- Apply cybersecurity concepts to detect and defend against intrusions in both small and large-scale IT networks, and perform cursory log data analysis.
- Monitor external data sources to stay informed about the CND threat landscape and assess potential impacts on the enterprise.
- Identify the root cause of incidents and formulate key questions for external entities to gather relevant background information and potential infection vectors.
- Analyze network alerts from various enterprise sources to determine their possible causes.
- Track and document CND incidents from initial detection through to final resolution, collaborating with various organizational components to gather and coordinate information related to ongoing incidents.
- Provide dedicated support during assigned shifts (Monday through Friday, normal business hours).
Required Skills:
- U.S. Citizenship
- An active TS/SCI clearance
- Ability to obtain DHS Suitability
- 5+ years of relevant experience in cyber incident management or cybersecurity operations.
- Strong knowledge of incident response and handling methodologies.
- Familiarity with NIST 800-62 (latest revision) and FISMA standards related to incident reporting.
- Understanding of the NCCIC National Cyber Incident Scoring System to effectively prioritize incident triage.
- Comprehensive knowledge of general attack stages, including foot printing, scanning, gaining access, escalation of privileges, and network exploitation.
- Proficiency in recognizing and categorizing vulnerabilities and associated attacks.
- Familiarity with system administration and operating system hardening techniques, as well as CND policies, procedures, and regulations.
- Insight into different operational threat environments, from script kiddies to nation-state actors.
- Awareness of system and application security threats, including buffer overflows, mobile code vulnerabilities, and various forms of attacks.
Desired Skills:
- In-depth knowledge of operational threat environments and various system/application security vulnerabilities.
At Farfield Systems, we recognize that our people are our greatest asset. If you’re ready to contribute to meaningful work that supports critical missions while growing your career in a collaborative environment, we invite you to apply and embark on this rewarding journey with us!
Requirements:
Required Education:
BS Incident Management, Operations Management, Cybersecurity or related degree. HS Diploma with 7-9 incident management or cyber security experience
Desired Certifications:
GCIH, GCFA GISP, GCED, CCFP or CISSP
ECP-1 Position; On-site
Security Clearance Required: TS/SCI