Cyber Defense Solutions has an opportunity for a SOC Security Analyst to support one of our Federal Customer in Manassas, VA!
Clearance Level: Secret Clearance
Citizenship: US Citizenship
Location: Manassas, VA
As an SOC Security Analyst you will join our Security Operations Center team supporting our Federal Customer in the following:
Perform Intrusion Detection System or Incident Response Team monitoring (IDS or IRT).
Monitoring and analysis, analyze network traffic, log analysis, prioritize and differentiate between potential intrusion attempts and false alarms.
Assess network activity and system configuration for anomalous activity to determine system security status.
Use Fireye and Carbon Black to monitor networks.
Provide network security monitoring, reporting, and incident handling use tools such as Splunk or ArcSight SIEM and Wireshark to examine anomalous network Activity
Compose security alert notifications.
Advise incident responders on the steps to take to investigate and resolve computer security incidents. Assist with security related issues.
Make recommendations for preventive measures as necessary.
Comply with security systems according to industry best practices to safeguard information systems and databases.
Provide technical consultation on highly complex tasks; may assist and/or provide direction to lower level technical personnel
Create and track investigations to resolution.
To qualify for this role, you should have the following background, credentials, and knowledge:
Must have at least a DoD Secret clearance
Bachelor's Degree in Computer Science or related field.
At least two (2) years of related experience and/or training in the field of IT security monitoring and analysis, cyber threat analysis, and vulnerability analysis.
Strong understanding of basic computer science: algorithms, data structures, databases, operating systems, networks, and tool development (not production-quality software but tools that can help you do stuff)
Strong understanding of IT operations: help desk, end-point management, and server management
Strong ability to communicate: write clearly and speak authoritatively to different kinds of audiences (business leaders and techies)
Understanding of adversary motivations: cybercrime, cyber hactivism, cyberwar, cyber espionage, and the difference between cyber propaganda and cyber terrorism
Strong understanding of security operations concepts: perimeter defense, BYOD management, data loss protection, insider threat, kill chain analysis, risk assessment, and security metrics
Knowledge of firewalls and intrusion detection systems (specific knowledge of personal firewalls or host ids a plus).
Understanding of common network services (web, mail, FTP, etc), network vulnerabilities, and network attack patterns is a must.
CDS, LLC is an Equal Opportunity Employer.