Manage and conduct hands-on technical detection, analysis, containment, eradication, and remediation as a member of the Incident Response team.
Guide and mentor peers and subordinates to provide cross training.
Ensure accountability and punctuality of security analysts assigned to your shift.
Capture cybersecurity metrics that support executive-level briefings (daily, weekly, monthly).
Articulate daily challenges to the Government Watch Officer (GWO).
Analyze web and host logs for indications of compromise.
Remediate and coordinate the remediation of infected or compromised devices.
Ensure shift continuity during call-outs and emergencies.
Compile incident reports, executive summaries, and analysis reports of intrusions and/or security events.
Document and update processes, workflows, and technical guides.
Perform simple firewall rule changes (after training).

Requirements

Bachelor's Degree and 2-4 years of SOC analyst experience.
Extensive knowledge of a SOC’s/NOSC’s purpose and role within an organization.
Detailed understanding of common network ports and protocols (e.g. TCP/UDP, HTTP, ICMP, DNS, SMTP, etc).
Expertise with network topologies and network security device functions (e.g. Firewall, IDS/IPS, Proxy, DNS, etc).
Expertise with packet analysis tools such as Wireshark.
Certification Requirement: Sec+, CEH, CySA+ or SANS certs.
Must have TS/SCI clearance to start. TS clearance candidates will be considered.

Benefits

Health and Wellness programs
Income Protection
Paid Leave
Retirement

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills

incident responsecybersecurity metricslog analysisremediationfirewall rule changesnetwork securitypacket analysisnetwork protocolsnetwork topologiessecurity event analysis

Soft skills

mentoringaccountabilitypunctualitycommunicationteam collaborationproblem-solvingreport writingprocess documentationworkflow managementexecutive briefing

Certifications

Sec+CEHCySA+SANS certs