Security Operations Center Analyst (w/ active TS/SCI)
Location: Bluemont, VA
Clearance: Active Top Secret/SCI
Full-time/ On-site
Shift: Night Shift, specific schedule will be determined during time of hire
JOB DESCRIPTION
Critical Solutions is seeking a a Tier 1 Security Operations Center (SOC) Analyst to support a federal program in Bluemont, VA. This position is currently a night shift position (2pm-10pm or 10pm-6am and is 24x7 support (shifts). Specific work schedule will be determined at the time of hire.
The ideal candidate will have a basic understanding of cyber threats, information security, security monitoring, threat detection, incident response, and incident handling (NIST SP 800-61). The candidate should be familiar with conducting security monitoring in a SIEM. The candidate must be familiar with TCP/IP ports and protocols, IDS/IPS systems, and basic incident handling and response concepts.
PRIMARY ROLES AND RESPONSIBILITIES:
- Network security monitoring and detection, proactively searching for threats, inspecting traffic for anomalies and new malware patterns, investigating and analyzing logs, providing analysis and response to alerts, and documenting activity in SOC investigations and Security Event Notifications (SENs)
- Manage and conduct hands-on technical detection, analysis, containment, eradication, and remediation as a member of the Incident Response team
- Guide and mentor peers and subordinates to provide cross training
- Ensure accountability and punctuality of security analysts assigned to your shift
- Capture cybersecurity metrics that support executive-level briefings (daily, weekly, monthly)
- Articulate daily challenges to the Government Watch Officer (GWO)
- Analyze web and host logs for indications of compromise
- Remediate and coordinate the remediation of infected or compromised devices
- Ensure shift continuity during call-outs and emergencies
- Compile incident reports, executive summaries, and analysis reports of intrusions and/or security events
- Document and update processes, workflows, and technical guides
- Perform simple firewall rule changes (after training)
BASIC QUALIFICATIONS:
- Bachelor's Degree and 2-4 years of SOC analyst experience. Additional experience may be considered in lieu of a degree
- Extensive knowledge of a SOC's purpose and role within an organization
- Detailed understanding of common network ports and protocols (e.g. TCP/UDP, HTTP, ICMP, DNS, SMTP, etc)
- Expertise with network topologies and network security device functions (e.g. Firewall, IDS/IPS, Proxy, DNS, etc).
- Expertise with packet analysis tools such as Wireshark
- Have basic understanding of cyber threats, information security, security monitoring, threat detection, incident response, and incident handling (NIST SP 800-61)
- Familiar with conducting security monitoring in a SIEM
- Familiar with TCP/IP ports and protocols, IDS/IPS systems, and basic incident handling and response concepts.
- Must be able to support any Night Shift schedules
Certification Requirement: Sec+, CEH, CySA+ or SANS certs
Clearance Required: Active Top Secret/SCI (TS/SCI) security clearance required. Must be U.S. Citizen. TS clearances candidates will be considered. Preference to candidates with current/active TS/SCI clearance.
WORK SCHEDULE:
- Shift Schedule: Night shift (2pm-10pm ET or 10pm-6am ET). Sunday-Thursday or Tuesday-Saturday. Specific work schedule will be determined at the time of hire.
LOCATION:
- Bluemont, VA
- Must be willing and able to commute to Bluemont, VA On site only
ADDITIONAL INFORMATION:
Clearance Requirement: Possess an active DoD Top Secret/SCI Clearance. In addition, selected candidate must undergo background investigation (BI) and finger printing by the federal agency and successfully pass the preceding to qualify for the position. US CITIZENSHIP IS REQUIRED.
CRITICAL SOLUTIONS PAY AND BENEFITS:
Salary range $- - $-. The salary range for this position represent the typical salary range for this job level and this does not guarantee a specific salary. Compensation is based upon multiple factors such as responsibilities of the job, education, experience, knowledge, skills, certifications, and other requirements.
BENEFIT SNAPSHOT: 100% premium coverage for Medical, Dental, Vision, and Life Insurance, Supplemental Insurance, 401K matching, Flexible Time Off (PTO/Holidays), Higher Education/Training Reimbursement, and more.