Cyber Security Analyst with Security Clearance - San Francisco, United States - TEKsystems c/o Allegis Group

    TEKsystems c/o Allegis Group
    TEKsystems c/o Allegis Group San Francisco, United States

    1 week ago

    Default job background
    Permanent Technology / Internet
    Description
    Duration
    18 Duration Unit
    Month(s) Product
    Contract Description

    Job Description:
    TEKsystems is looking for a new Cyber Analyst to join our Security Operations Center (SOC) in Boulder, CO


    Primary Responsibilities:
    Perform against established operational rhythm, expectations and standards for Security Operations Center (SOC) analysts
    Part of the 24x7 operations of the SOC, supporting shift coverage
    Perform incident handling responsibilities with direct interface to customers and management team
    Perform analysis on anomalous behavior based on log data from firewalls, packet capture, web proxy services, network flow analysis, intrusion detection, and malware analysis tools
    Operate autonomously to further investigate and escalate in accordance with protocols and contractual SLAs
    Identify areas of improvement for SOC processes and tools to enhance the mission

    Provide teaching / mentoring junior analysts Required Qualifications:

    Requires BS degree and 4-8 years of prior relevant experience in order to operate within the scope contemplated by the level; experience in lieu of degree may be acceptable.

    Prior experience performing as a SOC analyst
    Working knowledge of SIEM solutions and incident management solutions
    Technical understanding of core cybersecurity technologies as well as emerging capabilities.
    Strong analytical and troubleshooting skills
    Excellent written and verbal communication skills
    Team player
    CEH, GCIH, or relevant IT technology certification

    Preferred Qualifications:
    Upbeat and positive attitude
    Hands-on cybersecurity experience.

    Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vector, and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).

    Familiarity or experience in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT&CK framework.
    Familiarity with Cloud concepts and experience performing monitoring and responding to threats in Cloud environments.
    Familiarity with the mission. Enterprise Req Skills
    Security,Soc,Cyber security,siem,incident management,Security operations,Splunk,Cloud,threat hunting,intrusion detection Job Title
    Intrusion Analyst Top Skills Details

    Clearance:
    TOP SECRET or Active Secret (we will upgrade to TS) 1.

    Requires BS degree and 4-8 years of prior relevant experience in order to operate within the scope contemplated by the level; experience in lieu of degree may be acceptable.


    • Familiarity or experience in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT&CK framework.
    • CEH, GCIH, or relevant IT technology certification Worksite Address
    325 Broadway,Boulder,Colorado,United States,80305 Experience Level
    Intermediate Level External Communities Job Description
    A current federal client of ours is looking for an Intrusion Analyst to support their SOC in Fairmont, WV. Fairmont, WV is 1hr 20min south of Pittsburgh, PA and 3 hours from Washington DC.

    We have placed multiple people in this area that are still working in the federal space and have been for 10+ years.

    Potential to have certs and training reimbursement while on contract. Work Environment
    24x7 environment, 40 hour weeks rotating shifts. On-call rotation for SOC escalation as needed for night/weekends (coordinated with manager each month for the on-call schedule). Additional Skills Tags
    Splunk,Cloud,threat hunting,intrusion detection Additional Skills & Qualifications


    Preferred Qualifications:
    Upbeat and positive attitude
    Hands-on cybersecurity experience.

    Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vector, and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).

    Familiarity or experience in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT&CK framework.
    Familiarity with Cloud concepts and experience performing monitoring and responding to threats in Cloud environments.
    Familiarity with the mission. Start Date
    Mar Business Challenge
    We are still learning the program and operating rhythm of the client. The client is demanding high level work with an understaffed team. Their main focus is to staff up within security and their SOC to handle the command and maintenance required