Cybersecurity SOC-IR Analyst-Seaside CA (Onsite)

ASRC Federal Holding Company-posted about 1 month ago
$115,000 - $135,000/Yr
Full-time • Mid Level
Onsite • Seaside, CA
1,001-5,000 employees
Professional, Scientific, and Technical Services
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

ASRC Federal NetCentric Technology seeks a Cybersecurity SOC-IRAnalyst to support one of our Cybersecurity Support Services contracts. This is an onsite position located at Seaside, California responsible for containing, responding to, and eradicating threats and other malicious activity. This position will help maintain and improve cybersecurity incident response capabilities as well as coordinate or participate in high-priority investigations, identifying incident response improvements, and preparing reports for management. Work location is Seaside California. Sign-On Bonus Available

  • Monitor security tools for security alerts, anomalies, and suspicious activity, and triage those alerts to distinguish between false positives and potential threats
  • Conduct routine threat intelligence driven analysis for indicators of compromise (IOCs) and advanced persistent threats across the enterprise network and endpoints using threat intelligence and various detection methodologies
  • Collaborate with vulnerability management teams by analyzing security scan results and prioritizing vulnerabilities for remediation based on active threats and exploitability
  • Collect, normalize, and analyze security-related logs from various sources (endpoints, network devices, applications) to establish baselines, detect deviations, and support ongoing investigations
  • Create and maintain Incident Response (IR) and Security Operations Center (SOC) SOP in accordance with CJCSM 6510.01B, NIST SP 800-61R2, DoD regulations, and industry best practices
  • Perform technical incident response investigations into cybersecurity related events and incidents
  • Determine the nature, scope, and cause of incidents including root cause analysis
  • Identify corrective actions and aid in the containment, eradication, and recovery of a given event and incident
  • Track incident response, corrective measures taken, recommendations, and remediation activities; complete incident reports for investigations as needed; provide or contribute to weekly report of events and incidents
  • Respond to and investigate cyber events should an incident occur after regular business hours
  • Knowledge of Incident Response Handling Procedures (NIST SP 800-61)
  • Familiarity with cyber adversary tactics and frameworks (such as ATT&CK and D3FEND)
  • Knowledge of one or more of the following cybersecurity tools: Trellix/ESS, Tanium, Microsoft Defender Endpoint, BeyondTrust, Splunk
  • Bachelor's degree in computer scienceor related field
  • U.S. Citizenshipand an active Secret Clearance (required) with the ability to obtain and maintain a Top-Secret Clearance.
  • Active DoD 8570 IAT Level II certification or greater, including at least one of the following certifications in good standing: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP, CASP+CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, or CCSP.
  • 3+ yearsin performing Cybersecurity Incident Response and Security Operations Center (SOC) duties
  • Required to work onsite daily at our DoD customer office location in Seaside, California.
  • Active DoD 8570 CSSP Incident Responder certification a plus, including at least one of the following certifications in good standing: CEH, CFR, CCNA Cyber Ops, CHFI, CySA+, GCFA, GCIH, SCYBER, or PenTest+
  • Insurance Coverage: Comprehensive plans for medical, dental, vision, life insurance, and short-term/long-term disability
  • Paid Leave: Inclusive policies for bereavement, military obligations, and parental needs, along with 11 paid holidays annually
  • Retirement Savings: A 401(k) plan with a generous company match and immediate vesting to help secure your financial future
  • Incentives: Employee referral bonuses to reward you for helping grow the ASRC Federal Family
  • After 90 days of employment, regular full-time employees are eligible for our professional development program. This includes annual funding for: Pursuing Associate's, Bachelor's, or Graduate Degrees Obtaining industry-standard professional certifications Participating in professional certificate programs Covering registration fees for professional conferences
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service