At Agile Defense we know that action defines the outcome and new challenges require new solutions. That’s why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next. Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of advanced technologies, elite minds, and unparalleled agility—leveraging a foundation of speed, flexibility, and ingenuity to strengthen and protect our nation’s vital interests. Requisition #: 815 Job Title: Cyber Network Defense Analyst Location: 650 Massachusetts Avenue NW Washington, D.C, District of Columbia 20001  Clearance Level: Active DoD - Top Secret  SUMMARY Agile Defense is seeking a Tier 1 Cyber Network Defense Analyst (CNDA) to join our team on a highly visible cyber security single-award IDIQ vehicle that provides security operations center (SOC) support, cyber analysis, application development, and a 24x7x365 support staff.  JOB DUTIES AND RESPONSIBILITIES  · Duties include network security monitoring and detection. Proactively searching for threats. Inspect traffic for anomalies and new malware patterns. Investigate and analyze logs. Provide analysis and response to alerts, and document activity in SOC investigations and Security Event Notifications (SENs).  · Primary Responsibilities:  · List daily duties and/or specific job responsibilities.  · Utilize a SIEM for enterprise monitoring and detection  · Create Security Event Notifications to document investigation findings  · Perform critical thinking and analysis to investigate cyber security alerts  · Analyze network traffic using enterprise tools (e.g. Full PCAP, Firewall, Proxy logs, IDS logs, etc)  · Collaborate with team members to analyze an alert or a threat  · Stay up to date with latest threats  · Monitor shared email box for notifications and requests  · Utilize OSINT to aid in their investigation  · Contribute to content tuning requests  QUALIFICATIONS Education, Background, and Years of Experience  · Bachelor’s degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field AND a minimum of two (2) years professional experience  ADDITIONAL SKILLS & QUALIFICATIONS Required Skills  · The ideal candidate is a self-motivated individual in pursuit of a career in cyber security.  · Candidates should also demonstrate the following:  · Familiarity with a SOC’s purpose and role within an organization  · General understanding of common network ports and protocols (e.g. TCP/UDP, HTTP, ICMP, DNS, SMTP, etc)  · Familiarity with network topologies and network security device functions (e.g. Firewall, IDS/IPS, Proxy, DNS, etc).  · Familiarity with packet analysis tools such as Wireshark  · Able to perform critical thinking and analysis to investigate cyber security alerts  · Familiarity with common malware and attack vectors  · Familiarity with Windows operating systems and standard OS logging  · Familiarity with Antivirus, DLP, and host based firewalls  · Must have current TS/SCI. In addition to specific security clearance requirements, all Department of Homeland Security SOC employees are required to obtain an Entry on Duty (EOD) clearance to support this program.  · Candidates should also demonstrate the following:  · Familiarity with a SOC’s purpose and role within an organization  · General understanding of common network ports and protocols (e.g. TCP/UDP, HTTP, ICMP, DNS, SMTP, etc)  · Familiarity with network topologies and network security device functions (e.g. Firewall, IDS/IPS, Proxy, DNS, etc).  · Familiarity with packet analysis tools such as Wireshark  · Able to perform critical thinking and analysis to investigate cyber security alerts  · Familiarity with common malware and attack vectors  · Familiarity with Windows operating systems and standard OS logging  · Familiarity with Antivirus, DLP, and host based firewalls  · One of the following certifications:  CCFP – Certified Cyber Forensics Professional  CCISO – Certified Chief Information Security Officer  Cisco Certified Network Associate (CCNA)  CCNA Industrial  CCNA Security  Cisco Certified Network Professional (CCNP)  CCNP Security  CCSP – Certified Cloud Security Professional  CEH – Certified Ethical Hacker  CHFI – Computer Hacking Forensic Investigator  CISSP – Certified Information Systems Security  CNDA – Certified Network Defense Architect  CompTIA Advanced Security Practitioner (CASP)  CompTIA Cloud+  CompTIA Linux+  CompTIA Network+  CompTIA Security+  CSSLP – Certified Secure Software Lifecycle Professional  Cyber Analyst Course (DCITA)  ECES – EC-Council Certified Encryption Specialist  ECIH – EC-Council Certified Incident Handler  ECSA – EC-Council Certified Security Analyst  ECSP – EC-Council Certified Secure Programmer  ECSS – EC-Council Certified Security Specialist  EnCE  ENSA – EC-Council Network Security Administrator  GAWN – Auditing Wireless Networks  GCED – Certified Enterprise Defender  GCFA – Forensic Analyst  GCFE – Forensic Examiner  GCIA – Intrusion Analyst  GCIH – Incident Handler  GCWN – Windows Security Administrator  GICSP –Cyber Security Professional  GISF – Security Fundamentals  GISP – Security Professional  GMON – Continuous Monitoring Certification  GNFA – Network Forensic Analyst  GPEN – Penetration  GPPA – Perimeter Protection Analyst  GREM – Reverse Engineering Malware  GSEC – Security Essentials  GSNA – System and Network Auditor  GSSP – Secure Software Programmer  GSSP – Secure Software Programmer  GWAPT – Web Application Penetration Tester  GWEB – Web Application Defender  GXPN – Exploit Researcher and Advanced Penetration Tester  LPT – Licensed Penetration Tester  MCSE – Microsoft Certified Solutions Expert (Server)  OSCE (Certified Expert)  OSCP (Certified Professional)  OSEE (Exploitation Expert)  OSWP (Wireless Professional)  SEI (Software Engineering Institute)  SSCP – Systems Security Certified Practitioner  CompTIA Cyber Security Analyst (CySA+)  CompTIA Linux Network Professional (CLNP)  CompTIA PenTest+  CompTIA A+  CompTIA Server+  Microsoft 365 Fundamentals  Microsoft Certified Azure Fundamentals  MS 365 Certified: Security Administrator  Microsoft Certified Azure Security Engineer (Associate)  Splunk Core Certified User  Splunk Certified Cybersecurity Defense Analyst  Swimlane Certified Administrator  Swimlane Certified SOAR User  Swimlane Certified SOAR Developer  Tanium Essentials  Preferred Skills  · Familiar with SOC methodologies and processes  · Familiarity with scripting languages (e.g. Python, Powershell, Javascript, VBS etc)  WORKING CONDITIONS Environmental Conditions  · The front half shift will work 12 hour shifts from Sunday – Tuesday and alternating Wednesdays.  · Onsite in Washinton, D.C.  Strength Demands  · Light – 20 lbs. Maximum lifting with frequent lift/carry up to 10 lbs. A job is light if less lifting is involved but significant walking/standing is done or if done mostly sitting but requires push/pull on arm or leg controls.  Physical Requirements  · Stand or Sit; Walk; Repetitive Motion; Use Hands / Fingers to Handle or Feel; Stoop, Kneel, Crouch, or Crawl; See; Push or Pull; Climb (stairs, ladders) or Balance (ascend / descend, work atop, traverse).