Defensive Security Analyst - Washington, DC
SpecterOps
·
Posted:
June 2, 2023
·
Onsite
About the position
This job is for a Defensive Security Analyst at SpecterOps, where the candidate will be responsible for supporting Security Operations at a customer site in Washington, DC. The role involves independently managing and monitoring Security Operations Center (SOC) systems, as well as providing expertise in incident response activities and digital forensics. The ideal candidate should have strong technical skills in the security operations space, excellent soft skills, and experience working for a service-based information security organization. The salary range for this position is $110,000-$160,000 per year.
Responsibilities
- Support Security Operations at a SpecterOps customer site
- Work directly with client personnel and systems
- Independently support the client engineering, managing, and monitoring Security Operations Center (SOC) systems
- Have excellent technical skills focused in the security operations space
- Have impeccable soft skills
- Be a well-organized, self-directed individual
- Have familiarity working for a service-based information security organization
- Have Top Secret Clearance
- Have operating hours from Monday through Friday, 9AM - 6PM US Eastern Time on site at Washington DC location
- Be available for after-hours or weekend work in urgent incident response scenarios
- Have established experience in operating in SOC environment
- Have knowledge of operating and maintaining a SIEM
- Have knowledge of cloud architectures, particularly AWS
- Provide expertise in a supporting capacity for incident response activities and digital forensics state preservation
- Conduct host forensics, network forensics, log analysis, and malware triage in support of hunt operations
- Interface with client contact(s) and staff in a constructive and professional manner
- Utilize common forensic and incident response tools
- Develop comprehensive and accurate reports and presentations for both technical and executive audiences
Requirements
- Top Secret Clearance
- Availability for Monday through Friday, 9AM - 6PM US Eastern Time on site at Washington DC location, and after-hours or weekend work in urgent incident response scenarios
- Established experience in operating in SOC environment, either through relevant experience or qualifications
- Knowledge of operating and maintaining a SIEM
- Knowledge of cloud architectures, particularly AWS
- Expertise in supporting incident response activities and digital forensics state preservation
- Experience with programming or scripting languages such as PowerShell, Python, and Bash
- Ability to conduct host forensics, network forensics, log analysis, and malware triage
- Strong communication and interpersonal skills
- Familiarity with common forensic and incident response tools
- Ability to develop comprehensive and accurate reports and presentations for technical and executive audiences
Benefits
- Health/Dental/Vision: 100% covered for both the employee and their family
- A flexible and generous time off policy
- 401(k) with up to 4% company match
- Equity and a potential bonus based on company performance
- $225 monthly internet and cell phone stipend
- $1,000 annual technology / marketing budget
- $5,000 annual training/conference budget
- In person and virtual employee events throughout the year
- Company swag