Cybersecurity SOC Analyst Tier I

Cybersecurity SOC Analyst Tier I

Requirements

• Technical Training, Certification(s) or Degree, 0+ years of experience or equivalent years of experience
• A qualifying certification to meet DoD CSSP Analyst requirements. (CEH, CFR, CCNA Cyber Ops, CCNA-Security, CySA+, GCIA, GCIH, GICSP, Cloud+, SCYBER, PenTest+)
• Ability to obtain and maintain CompTIA CySA+, Splunk Core Certified User and Splunk Core Certified Power User certification (within 6 months of hire)

Responsibilities

• Provide technical support on event network security logs and trend analysis.
• Detect the full spectrum of known cyberattacks (e.g., DDoS, malware, phishing, others).
• Uncover and pinpoint security violations of compromised systems and devices
• Correlate security events from various capabilities to identify attacks and breaches.
• Analyze and act on intelligence information to secure customer networks and devices
• Observe, document and report actions taken by malicious actors in customer networks.
• Maintain a current understanding of the best practices and strategies used in cyber security.
• Motivate self and co-workers to expand knowledgebase and capabilities.

Preferred Qualifications

• 1+ years of relevant experience
• Certification(s) and/or experience with any SIEM or log aggregation system
• Strong analytical, organizational and project management skills
• Understanding of networking fundamentals, the OSI model, and TCP/IP protocols
• Knowledge of attack methods and techniques (DDoS, brute force, spoofing, etc.)
• Experience reviewing network, host, and application audit logs (system, security, etc.)
• Familiarity of security standards (NIST, FISMA, Fed RAMP, DCID, CNSS and DoD 8500)
• Knowledge of cloud IT solutions and security considerations of cloud solution deployment
• Other Relevant Cybersecurity certifications