Security Operations Center Analyst, Senior/Lead with Security Clearance
Apply NowCompany: Precision Solutions
Location: Washington, DC 20002
Description:
Security Operations Center Analyst, Senior/Lead
Hybrid | Washington D.C. | 2 Days a Week Onsite
Active Public Trust Required Summary
Our client is an employee and Service-Disabled, Veteran-owned Small Business focused on providing niche technical services. They are a team of experienced cybersecurity professionals with a track record of success in the Federal, Commercial, and Academic workspaces. Additionally, our client designs, builds, operates, and secures scalable cloud and IT infrastructures to meet their customers near-term needs and fulfill their long-term requirements. Responsibilities
On our client's SOC team, youll oversee efforts to find the advanced threats that are escaping detection, by analyzing logs, forensic data, and threat intelligence. Using your deep understanding of your clients networks combined with your cyber security experience, youll analyze patterns to understand attackers goals and stop them from succeeding. Once your team finds the adversary in the SEIMs blind spot, youll advise Federal clients on ways to close the gaps and harden their network.
- Monitors real-time network activity for potentially suspicious activity.
- Investigates network anomalies and system events as part of an incident response team.
- Author and implement custom detection content and/or SIEM rules.
- Author and implement custom detection content for perimeter and endpoint security solutions (IDS/IPS).
- Assess the current capabilities of the SOC and identify deficiencies or areas for improvement based on industry and government best practices (such as the MITRE ATT&CK framework) that may address recommendations in strategy, hardware, software, resource support, etc.
- Remain up-to-date with current threats utilizing open source intelligence.
- Provide monitoring and analysis of all SOC data feeds, analytical systems, perimeter and endpoint security devices, as well as SIEM solution during normal business hours to identify and investigate potential security incidents. Requirements - 8+ years of experience with network security, intrusion detection/prevention systems (IDS/IPS), Security Information and Event Management (SIEM) tools, and endpoint protection
- Experience with incident response
- Ability to lead investigations and mitigate security incidents
- Experience in proactive threat hunting and identifying advanced persistent threats (APTs)
- Knowledge of Cyber Threat Intelligence (CTI) practices
- Ability to integrate intelligence into security operations
- Ability to monitor and analyze security alerts, logs, and network traffic for signs of malicious activity
- Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client - requirements Education/Certification Requirements
- Bachelors Degree Preferred Requirements
- Experience with cybersecurity supporting US government programs
- Ability to brief senior leadership and make recommendations
- Possession of excellent verbal and written communication skills to effectively collaborate with team members and other departments
- Possession of strong analytical and problem-solving skills to address complex security challenges Clearance Requirements
- Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; an active Public Trust is required. Other Duties
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice. -------------- About Us
Northern Virginia-based Precision Solutions is an expert in staffing solutions for companies of any size that open the door to new opportunities and seek outstanding talent. We pride ourselves on being versatile enough to tailor our relationships to the needs of each individual client, being agile in the fast-paced marketplace, and being precise in meeting the needs of any company. Equal Opportunity Employer Statement
Precision Solutions is an equal opportunity employer. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws.
Hybrid | Washington D.C. | 2 Days a Week Onsite
Active Public Trust Required Summary
Our client is an employee and Service-Disabled, Veteran-owned Small Business focused on providing niche technical services. They are a team of experienced cybersecurity professionals with a track record of success in the Federal, Commercial, and Academic workspaces. Additionally, our client designs, builds, operates, and secures scalable cloud and IT infrastructures to meet their customers near-term needs and fulfill their long-term requirements. Responsibilities
On our client's SOC team, youll oversee efforts to find the advanced threats that are escaping detection, by analyzing logs, forensic data, and threat intelligence. Using your deep understanding of your clients networks combined with your cyber security experience, youll analyze patterns to understand attackers goals and stop them from succeeding. Once your team finds the adversary in the SEIMs blind spot, youll advise Federal clients on ways to close the gaps and harden their network.
- Monitors real-time network activity for potentially suspicious activity.
- Investigates network anomalies and system events as part of an incident response team.
- Author and implement custom detection content and/or SIEM rules.
- Author and implement custom detection content for perimeter and endpoint security solutions (IDS/IPS).
- Assess the current capabilities of the SOC and identify deficiencies or areas for improvement based on industry and government best practices (such as the MITRE ATT&CK framework) that may address recommendations in strategy, hardware, software, resource support, etc.
- Remain up-to-date with current threats utilizing open source intelligence.
- Provide monitoring and analysis of all SOC data feeds, analytical systems, perimeter and endpoint security devices, as well as SIEM solution during normal business hours to identify and investigate potential security incidents. Requirements - 8+ years of experience with network security, intrusion detection/prevention systems (IDS/IPS), Security Information and Event Management (SIEM) tools, and endpoint protection
- Experience with incident response
- Ability to lead investigations and mitigate security incidents
- Experience in proactive threat hunting and identifying advanced persistent threats (APTs)
- Knowledge of Cyber Threat Intelligence (CTI) practices
- Ability to integrate intelligence into security operations
- Ability to monitor and analyze security alerts, logs, and network traffic for signs of malicious activity
- Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client - requirements Education/Certification Requirements
- Bachelors Degree Preferred Requirements
- Experience with cybersecurity supporting US government programs
- Ability to brief senior leadership and make recommendations
- Possession of excellent verbal and written communication skills to effectively collaborate with team members and other departments
- Possession of strong analytical and problem-solving skills to address complex security challenges Clearance Requirements
- Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; an active Public Trust is required. Other Duties
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice. -------------- About Us
Northern Virginia-based Precision Solutions is an expert in staffing solutions for companies of any size that open the door to new opportunities and seek outstanding talent. We pride ourselves on being versatile enough to tailor our relationships to the needs of each individual client, being agile in the fast-paced marketplace, and being precise in meeting the needs of any company. Equal Opportunity Employer Statement
Precision Solutions is an equal opportunity employer. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws.