×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Network Security

Cyber Defense Analyst

Job in Gaithersburg, Montgomery County, Maryland, 20883, USA
Listing for: CACI
Full Time position
Listed on 2026-06-26
Job specializations:
  • IT/Tech
    Cybersecurity, Network Security
Salary/Wage Range or Industry Benchmark: 86600 - 181800 USD Yearly USD 86600.00 181800.00 YEAR
Job Description & How to Apply Below

The Opportunity

CACI is seeking a skilled and experienced Cyber Defense Analyst (Level
2) to join our dynamic team to support a DoD client in Suitland, MD. The ideal candidate will possess a robust background in Computer Network Defense (CND), with a proven track record in monitoring, investigating, and responding to cybersecurity threats. This role requires a proactive individual with strong analytical skills, excellent communication abilities, and a comprehensive understanding of IT systems and networks.

Responsibilities
  • Monitor and investigate alerts from cybersecurity tools to identify potential threats and malicious activities.
  • Utilize Network Intrusion Detection/Prevention Systems (NIDPS) and Security Information and Event Management (SIEM) systems to analyze network traffic and detect anomalies.
  • Develop and implement computer network defense tactics, techniques, and procedures (TTPs).
  • Create and maintain best practices, manuals, and standard operating procedures in alignment with Federal, DoD, IC, and industry standards.
  • Participate in incident management lifecycle processes, including identification, categorization, eradication, response, recovery, and mitigation of cybersecurity incidents and breaches.
  • Conduct penetration testing and Red Teaming activities to assess and enhance the security posture of the organization.
  • Perform malware detection and analysis, IDS/IPS rule/signature writing, and countermeasure development.
  • Utilize scripting and coding languages to automate tasks and enhance security measures.
  • Collaborate with cross-functional teams to ensure the integrity and security of IT systems and networks.
  • Provide briefings, write reports, and disseminate intelligence related to cybersecurity threats and incidents.
Qualifications

Required:

  • BA/BS in Computer Science, Information Technology, Information Assurance, or a related field is desired.
  • TS/SCI Clearance
  • Alternatively, 8+ years of relevant professional experience in CND or related fields.
  • Must have 5+ years of concentrated experience in CND.
  • 3+ years of professional experience in monitoring and investigating alerts from cybersecurity tools.
  • Skills and Abilities:
  • Effective interpersonal, organizational, time management, writing/documentation, and briefing skills with strong attention to detail.
  • Strong analytical, conceptual, and problem‑solving skills.
  • Proven ability to communicate effectively and develop/present presentations.
  • Ability to think outside the box by utilizing IT knowledge and cybersecurity tool output to discover instances of malicious activity.
  • Proven ability to prioritize, execute, and complete tasks with little to no direction in a high‑pressure environment.
  • Moderate experience utilizing Federal, DoD, IC, and industry standards.
  • Moderate experience in the development and implementation of CND TTPs.
  • Moderate experience in the operational use of NIDPS (e.g., Cisco Fire Power, Palo Alto NGFW) and host‑based intrusion detection/prevention systems (e.g., Trellix ePO, Microsoft Defender, Tanium).
  • Moderate experience in the operational use of SIEM systems (e.g., Splunk, Elastic).
  • Moderate knowledge of policies and processes related to CND execution.
  • Moderate knowledge of incident management lifecycle processes.
  • Moderate knowledge of network security architecture concepts, including topology, protocols, and components.
  • Knowledge of common adversary TTPs in assigned areas of responsibility.
  • Moderate knowledge of common enterprise services such as domain controllers, print, email, DNS, and web servers.
  • Knowledge of network traffic packet captures with capabilities such as Wire Shark or NIKSUN.
  • Moderate knowledge in identifying and classifying attack vectors, malware detection and analysis, IDS/IPS rule/signature writing, and countermeasure development.
  • Moderate knowledge of firewall rules and routing rules.
  • Moderate knowledge of scripting and coding languages (e.g., Python, Perl, Ruby, JavaScript).
What You Can Expect

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high‑performing group dedicated to our customer’s missions and driven by a higher purpose – to…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search