Overview Working across the globe, V2X builds smart solutions designed to integrate physical and digital infrastructure from base to battlefield. We bring 120 years of successful mission support to improve security, streamline logistics, and enhance readiness. Aligned around a shared purpose, our $3.9B company and 16,000 people work alongside our clients, here and abroad, to tackle their most complex challenges with integrity, respect, responsibility, and professionalism. We have a great opportunity and hiring for a Senior Computer Network Defense (CND) Analyst - active TS/SCI clearance. This position will be based in Springfield, VA and the position is required to be onsite. This position will require U.S. Citizenship and an active DoD TS/SCI clearance with the ability to obtain and maintain a Counterintelligence (CI) Polygraph. The Senior CND Analyst responsible for identifying, analyzing, and mitigating threats to hosted information systems. Uses Computer Network Defense tools, defensive measures, and information collected from a variety of sources to identify, analyze, and report events that occur or might occur within the enterprise network to protect information, Information Systems, and networks from threats. Responsibilities The Senior CND Analyst is responsible for investigating and analyzing response activities related to cyber incidents within the environment. The position is also responsible for correlating incident data and performing CND trend analysis and reporting. The Senior CND Analyst develops and provides CND activity/incident reports, summaries, and other situational awareness information, and presents to the CIO or designated representative(s). Develops and maintains documentation as it pertains to the use and operation of CND tools (SOPs, playbooks, incident reporting, incident response, etc.). The Senior CND Analyst will prioritize, direct, guide, and evaluate other CND Analysts through training, quality control, and feedback in coordination with the CND Manager. The Senior CND Analyst shall develop and execute a continuous monitoring and analysis strategy for host information systems to monitor and report on any indications of outsider and insider threats; watch for and report on unauthorized changes; and monitor the operational environment and report on any suspected intrusions. Shall utilize Splunk software to include Splunk Enterprise Security (ES) and Splunk User Behavior Analytics (UBA) for continuous monitoring, incident reviews, investigations, and event correlation. Qualifications Minimum Qualifications: Shall have 7 or more years of experience in Information Security (INFOSEC) operations and/or cybersecurity-related experience. Shall have 5 or more years of experience in operating a SIEM and/or vulnerability scanner product (Splunk, Tenable, etc.). Shall meet the minimum credential requirements for a Cyber IT/Cybersecurity Workforce (CSWF) position as defined in Section 6, Table 3. Education: Bachelor’s Degree from accredited university; or Certifications: Certified Computer Security Incident Handler (CSIH); or GIAC Certified Incident Handler (GCIH). Security Clearance Requirements: This position will require an active DoD TS/SCI clearance and the ability to obtain and maintain a Counterintelligence (CI) Polygraph. Desired Qualifications: 7 or more years of experience working in an operational Security Operations Center (SOC) as a cybersecurity professional, or amongst a team with responsibility for similar functionality and behavior. 7 or more years of hands-on experience working with industry standard solutions for some, or all, of the following: Security Information and Events Management (SIEM), Vulnerability Assessment and Management, Advanced Network Inspection/Analysis, Advanced Malware Detection, Data Loss Prevention (DLP), Incident Response, Forensics Tools, User Activity Monitoring (UAM), and User Behavioral Analytics (UBA) solutions. Skills & Technology Used: Experience in Information Security (INFOSEC) operations and/or cybersecurity-related experience. Experience in operating a SIEM and/or vulnerability scanner product (Splunk, Tenable, etc.). We are committed to an inclusive and diverse workplace that values and supports the contributions of each individual. This commitment along with our common Vision and Values of Integrity, Respect, and Responsibility, allows us to leverage differences, encourage innovation and expand our success in the global marketplace. Vectrus is an Equal Opportunity /Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, protected veteran status or status as an individual with a disability. EOE/Minority/Female/Disabled/Veteran. #LI-YG1 #clearance