Security Operations Center Analyst
About The Position
Security Operations Center Analyst The Opportunity: Are you ready to take an active role in the cyber defense of network assets within the federal intelligence community (IC)? Are you looking for an opportunity to protect critical infrastructure from the constant onslaught of cyber attacks? If you want to sharpen your skills by analyzing real-time threats, you want to be a cyber defense operations analyst. As a Security Operations Center Analyst on our SOC team, you’ll monitor and analyze threats, using state-of-the-art tools like Splunk, Trellix, HBSS, McAfee ePolicy Orchestrator, SolarWinds, Cisco FirePower, and FireEye, including NX, EX, or AX, and ACAS. You’ll work with the team to understand, mitigate, and respond to threats quickly, restoring operations and limiting the impact. You’ll analyze incidents to figure out just how many systems are affected and assist recovery efforts. You’ll combine threat intelligence, event data, and assessments from recent events, and identify patterns to understand attackers’ goals to stop them from succeeding. This is a great opportunity to build your cybersecurity skills with hands-on experience in threat assessment and incident response. Join us as we protect our nation's infrastructure from malicious actors.
Requirements
- 5+ years of experience with information security, including penetration testing, intrusion detection, incident response, threat analysis, or digital forensics
- Experience with cybersecurity systems, tools, platforms, or applications, including Splunk, Trellis EDR, Cisco FirePower, FireEye, NX, EX, AX, McAfee ePolicy Orchestrator, or ACAS
- Knowledge of cybersecurity and IT architecture design and tools
- Ability to troubleshoot an active security event from detection to containment and provide recommendations
- Ability to work in an enterprise team setting
- Top Secret clearance
- Bachelor's degree
- DoD IAT Level II Certification
Nice To Haves
- TS/SCI clearance
- DoD IAM Level III or IAT Level III Certification
Responsibilities
- Provide security monitoring and incident response services in alignment with the mission to protect network assets, including industrial control systems.
- Act as an internal expert on matters relating to intrusion detection and incident response.
- Support investigations into network intrusions and other cybersecurity breaches.
- Support a coordinated response to complex cyber attacks that threaten assets, intellectual property, and computer systems.
- Contribute to the development and improvement of security monitoring and incident response processes and solutions to support our cybersecurity program, as required.
- Operate security monitoring and incident response toolsets with a focus on continuous improvement.
- Research and recommend solutions for incident response and digital forensics.
Benefits
- health
- life
- disability
- financial
- retirement benefits
- paid leave
- professional development
- tuition assistance
- work-life programs
- dependent care
- recognition awards program
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
