Agile Defense

Mid-level SOC Analyst

Agile Defense

full-time

Posted on:

Origin:  • 🇺🇸 United States • Virginia

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

Cyber SecurityDNSLinux.NETPerlPythonRubySMTPSplunkSQL

About the role

  • Provide Security Monitoring and Incident Response support through 24×7×365 monitoring and analysis of potential threat activity
  • Conduct event triage and security investigations for potential threat activity
  • Conduct deep-dive forensic investigations (host-based and network)
  • Identify and implement countermeasures, as well as track and report on incident activity to senior management
  • Develop advanced analytics and countermeasures to protect critical systems
  • Develop rules, filters, signatures, applications and scripts to support analysis and detection
  • Analyze information technology security events and perform incident response and mitigation
  • Support various shifts including nights, weekends, and holidays

Requirements

  • Active DoD - Public Trust clearance
  • One or more certifications for CND Analysts: GCIA, GCIH, GCFA, GCFE, GREM, GISF, GMON, GXPN, CHFI, GNFA, OSCP, OSEE, OSCE, OSWP, CISSP, CCFP, LPT, CHFI, CySA
  • 3+ year of experience working in network defense environments
  • Bachelor's Degree in Information Technology, Cyber Security, Computer Science, Computer Engineering, or Electrical Engineering
  • Ability to develop rules, filters, views, signatures, countermeasures and operationally relevant applications and scripts
  • Familiarity with coding, scripting languages (BASH, Powershell, Python, PERL, RUBY etc.) or software development frameworks (.NET)
  • Prior experience with Security Information and Event Monitoring (SIEM) platforms and/or log management systems (preferably IBM Qradar or Splunk)
  • Strong logical/critical thinking abilities
  • Strong proficiency Report writing
  • A working knowledge of Windows, OS X, Linux; conceptual understanding of Windows Active Directory
  • Working knowledge of network communications and routing protocols (TCP, UDP, ICMP, BGP, MPLS) and internet applications and standards (SMTP, DNS, DHCP, SQL, HTTP, HTTPS)
  • Ability to support coverage requirements for various shifts during holidays and weekends
  • Ability to work greater than 40 hours per week and/or 12-hour shifts
Boeing

Product Security Log Analytics Engineer – Mid-Level, Senior, Lead

Boeing
Seniorfull-time$120k–$238k / yearWashington · 🇺🇸 United States
Posted: 1 day agoSource: boeing.wd1.myworkdayjobs.com
Cyber SecurityLinuxPythonSQLUnix
Concurrent Technologies Corporation

Senior Information Systems Administrator

Concurrent Technologies Corporation
Seniorfull-timeAlabama · 🇺🇸 United States
Posted: 13 days agoSource: concurrent-technologies-corporation.breezy.hr
CloudCyber SecurityDNSFirewallsLinuxNode.jsPuppetPythonShell ScriptingVMware
Diabetes Youth Families

Cyber Security Analyst

Diabetes Youth Families
Junior · Midfull-time🇲🇽 Mexico
Posted: 18 days agoSource: insulet.wd5.myworkdayjobs.com
AWSAzureCloudCyber SecurityDNSGoogle Cloud PlatformPythonSplunkTCP/IP
NTT DATA Romania

Unix Manager

NTT DATA Romania
Senior · Leadfull-time🇷🇴 Romania
Posted: 12 days agoSource: careers.nttdata.ro
AnsibleCloudCyber SecurityDNSITSMJenkinsLinuxPerlPythonSMTPUnixVMware
Proofpoint

Inside Sales Engineer

Proofpoint
Junior · Midfull-time🇫🇷 France
Posted: 14 days agoSource: proofpoint.wd5.myworkdayjobs.com
AWSAzureCloudCyber SecurityDNSSMTP