Cyber Defense Shift Lead (80% Remote - Weekends & 2 Weekdays)

Description & Requirements

At Maximus, we're proud to be celebrating our 50th year in business, with strong financial performance - including $1.4B in revenue this quarter and 15% growth in our Federal services group.

We've also been recognized as a Washington Post Top Workplace and a VETS Indexes 5 Star Employer in 2024..

Maximus is seeking a Senior Level Cyber Defense Analyst/Intrusion Detection Team Shift Lead

Becoming part of Maximus means joining a team that offers:



* A generous annual allowance for education or professional certification



* Free access to robust certification and training programs to help you grow your career



* Strong career path with support for internal mobility



* A collaborative, respectful work environment with supportive leadership



* Comprehensive benefits, including medical/dental/vision, paid time off, and more

Maximus is seeking a Senior Level Cyber Defense Analyst/Intrusion Detection Team Shift Lead for an onsite position in Washington, DC (near Union Station).

This position is 80% remote with the following schedule: Saturday, Sunday (12 hour days working remotely), 1 weekday (8 hour day working remotely), 1 weekday (8 hour day working onsite in DC).

Maximus TCS (Technology and Consulting Services) Internal Job Profile Code: TCS058, T4, Band 7

Job-Specific Essential Duties and Responsibilities:

- Work with intrusion analysts to identify, report, and coordinate the remediation of cyber threats for the client.

- Deliver timely and actionable sanitized intelligence to cyber incident response teams.

- Apply technical knowledge of computer systems, networks, and cyber threat information to evaluate the client's security posture.

- Perform intelligence analysis to assess intrusion signatures, tactics, techniques, and procedures associated with cyber attacks.

- Investigate hackers, their methods, vulnerabilities, and exploits, and provide detailed briefings and intelligence reports to leadership.

Job-Specific Minimum Requirements:

- Bachelor's degree with 8+ years of experience in cybersecurity (or equivalent experience).

- 7 years of experience in security intrusion detection examination, involving various security technologies that generate logging data, such as:

- Wide area networks

- Host and network IPS/IDS/HIPs traffic event review

- Server web log analysis

- Raw data logs

- Hands-on experience with Splunk SIEM, including at least two years as a cybersecurity or security operations shift team leader.

- At least five years of senior-level experience in analyzing logs and console events, including:

- Advanced query methods in Splunk or advanced Grep skills

- Firewall ACL review

- Snort-based IDS event examination

- PCAP analysis

- Web server log review

- Working in a SIEM environment

- Certification: One or more advanced certifications including but not limited to: CISM, CISSP, GCIH, GCIA, CEH, SecurityX/CASP

- Clearance: Ability to obtain and maintain a Public Trust clearance

#tec...