Cyber Security Operations Controller III

• Conduct network security monitoring and incident triage using the AFCENT/USCENTCOM selected security tools to include but is not limited to IDS/IPS, firewall, proxy, router, Microsoft Windows, Fidelis, and HBSS logs.
• Enter event data into mission support systems according to operational procedures and reports to meet AFCENT mission/tasking; and produce security reports.
• Perform trend analysis of authorized and unauthorized activity on AFCENT/USCENTCOM selected security tools.
• Correlate unusual and suspicious network activity across AFCENT/USCENTCOM; and validate unusual network activity unique to a geographical region and sensor location.
• Assist in completion of network defense/cybersecurity statistical and trend data and operational event reporting when requested.
• Assist in the development of countermeasures to isolate, contain and prevent intrusive actives and secure AFCENT/USCENTCOM networks (to include IDS/IPS signature development and correlation rule sets).
• Track, document, and report all security related events, including, but not limited to, Discharge of Classified Information and Cross Domain Violations IAW USCENTCOM/AFCENT policy.
• Coordinate and track Information Assurance Vulnerabilities Alerts (IAVA). Review and report AFCENT compliance to USCENTCOM and develop Plans, Objectives, Actions and Milestones (POA&M) if unable to complete task.
• Provide LAN/WAN support.

5+ years experience in cyber and network operations. Bachelor's degree in a related field. Additional years of experience may be substituted for degree requirements. Must be Security+ certified. Must be Network+ or CCNA certified. Must hold the ITIL v3 or v4 Foundations certification or be able to obtain the certification within 60 days of hire. Must have firewall, ACAS, and HBSS experience. Able to communicate complex programmatic cyber security planning information and elicit understanding and support from professional peers and non-specialists. Experience evaluating an adversary's network profile of physical location of assets, architectures, security policies, baseline activity, peculiarities and vulnerabilities, and capabilities. Must be a US citizen and hold a current Secret clearance.

Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.