Provide Engineering Support to the National Airspace Systems Cyber Operations.
Engineering Support Services
Cyber Threat & Advanced Analytics
- Internal and external cyber threat intelligence briefings
- Process acquired intelligence into actionable information to create unclassified cyber intel ticket
- Support NAS cybersecurity Tabletop Exercises (TTX) on-site and remotely
Vulnerability Assessment & Penetration Testing
- Cyber event and data flow information trend analysis
- Network traffic monitoring and analyses using intelligent and automated toolsets
- Network and system baseline modeling
- Creating SIEM alerts and dashboards to identify deviations from the system baseline
Technical Support Services
- Support for security engineering, and the integration and deployment of security technology to support advanced external threats, insider threat, and cyber operations.
- Develop, enhance, and deploy Information Technology (IT) systems to the JSOC
Engineering Support Services
- Security Event Information Management (SEIM) services
- Intrusion Detection/Intrusion Prevention (IDS/IPS) services
- Data Loss Prevention
- Data Management
- Workflow and task tracking
- Memory Integrity/Analysis Systems
- Endpoint Incident Response Systems
- Packet Capture and Analytics Systems
- Other specialized security systems including future capabilities
Cyber Threat and Advanced Analytics
- Incidents Analysis Reports and Presentations
- Defensive Posture Assessment
- Threat Monitoring, Detection, Event Analysis, and Incident Reporting
- Advanced Analytics
- Cyber Threat Intelligence
- Cyber Threat Analytics/Cyber Hunt Team
- Engineering Support
- Vulnerability Assessment and Penetration Testing
- External Threat – Monitoring, Detection, Event Analysis, and Incident Reporting