Cyber Analyst, Junior

CO Salary Range: USD 67,600.00 - 122,200.00 per year

Description

Looking for an opportunity to make an impact?

At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. The Leidos National Security Sector (NSS) combines technology-enabled services and mission software capabilities in the areas of cyber, logistics, security operations, and decision analytics to support our defense and intel customers' mission to defend against evolving threats around the world.

• Monitor and protect our organization's networks, systems, and data from security breaches and cyber threats.
• Work closely with senior analysts and security engineers to implement security measures, investigate incidents, and contribute to proactive threat mitigation. Apply strong analytical skills, technical expertise, and a proactive approach to safeguarding critical systems and sensitive data.
• Monitor network traffic, system logs, and security alerts to identify potential threats, anomalies, or suspicious activities.
• Use Security Information and Event Management (SIEM) tools (e.g., Splunk, Elastic) to correlate and analyze security events.
• Investigate and escalate security incidents, including malware infections, phishing attempts, and unauthorized access.
• Respond to and mitigate cybersecurity incidents following established incident response protocols.
• Perform root cause analysis of security breaches and recommend remediation strategies.
• Coordinate with internal and external stakeholders to contain and recover from incidents.
• Assist in conducting risk assessments and security audits of systems, applications, and networks.
• Document incident reports, threat analysis findings, and remediation steps.
• Prepare and deliver security metrics, reports, and dashboards for leadership and stakeholders.
• Maintain detailed records of security operations to support audits and compliance.
• Work closely with cybersecurity engineers, system administrators, and developers to implement security best practices.
• Collaborate with external organizations, such as government agencies, contractors, or threat intelligence providers, to enhance cybersecurity posture.

• Active Top Secret/SCI (TS/SCI) with Polygraph security clearance required. Must be U.S. Citizen.
• Bachelor's degree or equivalent and 2 to 4 years of prior relevant experience, or a Master's with less than 2 years prior relevant experience. Experience may be considered in lieu of degree.
• Understanding of the Incident Response lifecycle and Attack lifecycle (e.g., Cyber Kill Chain / ATT&CK)
• Ability to validate security alerts by gathering and analyzing logs, and information and correlating across large data sets and time periods.
• Understanding of OS (Windows / Linux) operations and system artifacts
• Understanding of Enterprise Network Architectures to include routing/switching, common protocols (DHCP, DNS, HTTP, etc.), and devices (Firewalls, Proxies, Load Balancers, VPN, etc.).

• Experience with scripting or automation tools (e.g., Python, PowerShell, SOAR).
• Have developed or contributed to Standard Operating Procedures (SOPs) and/or Playbooks.
• Proficiency with cybersecurity tools (e.g., SIEM, EDR/XDR).
• Ability to tune or author threat detection alerts and signatures.
• Ability to independently prioritize and complete multiple tasks with little to no supervision.
• Strong problem-solving abilities with an analytic and qualitative eye for reasoning.