Responsibilities include, but are not limited to:
• Analyzes, maps, protects, or discovers vulnerabilities, intrusions, and threats in various computer network systems
• Conducts computer and/or network security, target development, and understands all aspects of computer/network security to include firewall administration, encryption technologies, and network protocols
• Reports events or incidents that occur to mitigate immediate and potential network and host threats
• Perform Incident Response through analysis of malicious data-sets and publicly known exploits or vulnerabilities for the creation of custom detection and prevention methods. Perform log analysis and event correlation to identify anomalous traffic. Upon discovery of anomalous traffic, initiate incident response in accordance with the Cyber Incident Response Plan (CIRP).
• Perform computer forensics to assistance with internal investigations in accordance with DoD standards and industry best practices
• Provide cyber threat summaries, to include all incident response activities directly affecting CND or supporting activities.
• Monitor other service, DOD, and industry Computer Emergency Response Teams (CERT) Alerts, Warnings and Advisories, and use information gathered to protect associated systems
