Cyber Network Defense Analyst; CNDA – Cloud Forensics

Cyber Network Defense Analyst (CNDA) – Cloud Forensics

Join to apply for the Cyber Network Defense Analyst (CNDA) – Cloud Forensics role at ARGO Cyber Systems
.

3 days ago Be among the first 25 applicants

At Argo, you'll be part of a mission-driven, veteran-founded cybersecurity team protecting America's most critical systems. We combine hands‑on technical excellence with operational precision to outpace the threat. Join us to defend, detect, and innovate at the cyber edge.

Argo Cyber is supporting a U.S. Government customer on a mission‑critical cyber operations program. We are seeking a Service Now Sec Ops Business Process / Technical Consultant to design, develop, and implement Service Now Security Operations (Sec Ops) solutions that enhance the customer's ability to detect, respond, and remediate security threats.

This hybrid role combines Service Now Sec Ops development, integration engineering, and process consulting. The ideal candidate will work directly with security stakeholders, translate mission requirements into technical designs, and deliver scalable, secure, and automated Sec Ops capabilities within the Service Now platform.

• Designing, prototyping, and implementing Service Now Sec Ops applications, including:
• Security Incident Response (SIR): enrichment, correlation rules, and automated playbooks.
• Vulnerability Response (VR): scanner integrations, remediation workflows, patch group automation.
• Configuration Compliance (CC): policy exception handling, remediation tasks, compliance dashboards.
• Threat Intelligence (TI): ingestion of IOCs, sightings search, enrichment workflows.
• Supporting the customer's roadmap for Splunk integrations to enable alert ingestion, bi‑directional incident synchronization, and SIEM dashboards.
• Developing custom integrations with SIEM, scanner, and intel tools (e.g., Splunk, Tenable, Virus Total, Hybrid Analysis) using Integration Hub, REST/SOAP APIs, and MID Server.
• Building and maintaining orchestration playbooks, Flow Designer workflows, Business Rules, and Script Includes to automate enrichment and response actions.
• Documenting and maintaining policies, procedures, and technical designs aligned with Agile development practices and secure coding standards.
• Leading workshops with SOC, IR, and VR teams to capture mission needs, define business requirements, and translate them into technical solutions.
• Creating and maintaining Performance Analytics dashboards and KPIs to provide real‑time visibility into security posture.
• Supporting incident resolution, troubleshooting, and sustainment of the Service Now Sec Ops environment.
• Providing mentorship and knowledge transfer to client staff on best practices and solution sustainment.

• U.S. Citizenship required.
• Must be able to obtain DHS program suitability and a TS/SCI clearance.
• 8+ years of software development, IT security, or IT systems engineering experience.
• Minimum 4+ years of Service Now experience, with at least 2+ years focused on Sec Ops applications (SIR, VR, CC, or TI).
• Strong knowledge of Service Now administration, advanced configuration, and custom application development.
• Experience integrating Service Now with SIEM, vulnerability scanners, and threat intelligence platforms.
• Hands‑on experience with Flow Designer, Orchestration, Integration Hub, and MID Server.
• Strong technical skills in web technologies (JavaScript, HTML, XML, Angular, CSS) and integration technologies (REST, SOAP, LDAP, SSO).
• Familiarity with federal cybersecurity frameworks (NIST 800‑53, FedRAMP, CISA KEV, MITRE ATT&CK).
• Strong communication, presentation, and documentation skills for technical and business stakeholders.

• Experience supporting DHS, DoD, or Intelligence Community customers.
• Experience deploying future‑state Sec Ops processes including incident triage, vulnerability management, compliance automation, and threat intel workflows.
• Familiarity with Splunk use cases for security operations and event correlation.
• Experience with collaboration tools (MS Teams, Outlook, SharePoint, Atlassian Jira/Confluence).
• Strong problem‑solving, analytical, and consulting skills in…