Cybersecurity Operations Center Analyst

About The Position

Requirements

• 3+ years of experience working in a professional environment
• Experience using endpoint tools to successfully hunt for adversarial behavior
• Knowledge of SIEMS and using content from SIEMS, including responding to alerts and creating or evaluating dashboards
• Knowledge of network data and analyzing full packet capture
• Ability to analyze network and endpoint logs
• Ability to conduct incident response
• Ability to effectively report incident information to leadership
• Ability to conduct threat hunting using network and host-based information
• TS/SCI clearance
• HS diploma or GED
• DoD 8570 IAT II+ Certification

Nice To Haves

• Experience working in a Security Operations Center (SOC) or Regional Cyber Center (RCC)
• Experience conducting digital forensics
• Bachelor's degree
• Splunk, Tanium, Trellix, Pentesting, Programming or Scripting, or MDE Certification
• DoD 8570 CSSP Analyst or Incident Responder Certification

Responsibilities

• Improve tier monitoring strategies
• Analyze threats using state-of-the-art tools and platforms
• Comprehend, mitigate, and respond to threats quickly
• Restore operations and limit the impact of threats
• Determine the number of systems affected by threats
• Assist recovery efforts
• Combine threat intelligence, event data, and assessments to identify patterns
• Understand attackers' goals to stop them from succeeding
• Conduct threat hunting using network and host-based information
• Analyze network and endpoint logs
• Conduct incident response
• Effectively report incident information to leadership

Benefits

• Health, life, disability, financial, and retirement benefits
• Paid leave
• Professional development
• Tuition assistance
• Work-life programs
• Dependent care
• Recognition awards program