Cybersecurity Analyst

Who We Are

Newberry Group is a performance-driven government services and solutions firm that provides security compliance program governance consulting and customized solutions for public sector clients nationwide.

The strength of our company is a direct reflection of our highly skilled and talented workforce.

Newberry Group’s Public Sector Division is seeking Cybersecurity Analysts with the expertise to support a 24/7 Cyber Network Defense (CND) Operation for Department of Defense networks in Whitehall, Ohio or Falling, Illinois. Responsibilities include performing real‑time cyber threat intelligence analysis, correlating actionable security events, conducting network traffic analysis using raw packet data, and participating in the coordination of resources during the incident response process.

• Current DoD 8570 IAT Level II certification (or higher) such as CompTIA Security CE, ISC2 SSCP or SANS GSEC (or equivalent).
• Ability to obtain DoD 8570 CSSP‑A Level Certification (e.g., CEH, CySA, GCIA or equivalent) within 180 days of hire.

The primary available shifts are: 7:00 AM – 3:00 PM, 3:00 PM – 11:00 PM, and 11:00 PM – 7:00 AM. Shift assignments will be based on program requirements and your preference, but some flexibility may be required.

$85,000 to $125,000

• Minimum active DoD Secret clearance with the ability to obtain TS/SCI.
• Current DoD 8570 IAT Level II certification (or higher) such as CompTIA Security CE, ISC2 SSCP or SANS GSEC (or equivalent).
• Ability to obtain DoD 8570 CSSP‑A Level Certification (e.g., CEH, CySA, GCIA or equivalent) within 180 days of hire.
• Strong foundation in networking including packet analysis of common ports and protocols and traffic flow.
• Knowledge of the OSI model, defense‑in‑depth security principles, and common security elements for effective threat detection, analysis and mitigation as a SOC Security Analyst.
• Education and experience requirements:
  • Level I:
    Bachelor’s degree and 1 year of relevant experience (equivalent work experience and/or military service may be considered).
  • Level II
    :
    Bachelor’s degree and 3 years of relevant experience (equivalent work experience and/or military service may be considered).
• Proven ability to work effectively both independently and as a collaborative team member, demonstrating initiative and a strong work ethic.
• Committed to continuous learning and self‑improvement in the cybersecurity domain, evidenced by ongoing pursuit of certifications, active participation in industry forums and dedication to staying ahead of emerging threats and technologies.
• Excellent problem‑solving skills, including the ability to collaborate effectively with cross‑functional teams to address complex security challenges in real‑world scenarios. This includes clearing technical information clearly, building consensus and driving solutions to completion.
• Reliable and flexible with a demonstrated willingness to work assigned shifts to support operational requirements and team objectives.
• Located within a commutable distance (within 2 hours) or able to self‑relocate to Scott AFB, IL; or Columbus, OH.

• Hands‑on experience analyzing large volumes of logs, network data (e.g., Net Flow, Full Packet Capture) and other attack artifacts during incident investigations.
• In‑depth experience using a SIEM/SOAR platform to analyze multiple log types and events across various data points, applying techniques such as behavioral analysis, statistical analysis and machine learning to detect and respond to advanced threats.
• Comprehensive understanding of the network threat lifecycle, attack vectors and methods of exploitation, including intrusion sets, tactics, techniques and procedures (TTPs).
• Experience with Anti‑Virus, HIPS/HBSS, IDS/IPS, Full Packet Capture and Network Forensics tools.
• Experience or knowledge in monitoring, defending or administering cloud networks (e.g., AWS, Azure, GCP) including cloud‑native security tools and strategies for protecting data in cloud environments. Experience identifying and mitigating cloud‑specific attacks.
• Experience managing, defending, administering or…