- Assisting Federal team leads with establishing and operating a Security Operations Center responsible for securing highly dynamic environment supporting Incident Response and Threat Hunting experts
- Configuring and monitoring Security Information and Event Management (SIEM) platform for security alerts.
- Scanning and monitoring system vulnerabilities on servers and infrastructure devices using a Threat and Vulnerability security solution; coordinating artifact collection operations.
- Assesses network topology and device configurations identifying critical security concerns and providing security best practice recommendations
- Collects network intrusion artifacts (e.g., PCAP, domains, URI's, certificates, etc.) and uses discovered data to enable mitigation of potential Computer Network Defense incidents
- Collects network device integrity data and analyze for signs of tampering or compromise
- Analyzes identified malicious network and system log activity to determine weaknesses exploited, exploitation methods, effects on system and information
- Characterize and analyze artifacts to identify anomalous activity and potential threats to resources
- Assist with the development of processes and procedures to improve incident response times, analysis of incidents, and overall SOC functions
- Research and test new security tools/products and make recommendations of tools to be implemented in the SOC environment
- Planning, coordinating and directing the inventory, examination and comprehensive technical analysis of computer related evidence
- Distilling analytic findings into executive summaries and indepth technical reports
- Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
- Must have an active Secret clearance, TS/SCI preferred
- Must be able to obtain DHS Suitability
- Must demonstrate being a selfstarter and give examples of leadership in customerfacing roles
- 8+ years of directly relevant experience in security operations using leading edge technologies and industry standard tools
- Experience with the analysis and characterization of cyber attacks
- Skilled in identifying different classes of attacks and attack stages
- Knowledge of system and application security threats and vulnerabilities
- In depth knowledge of CND policies, procedures and regulations
- In depth knowledge and experience of network topologies
- DMZ's, WAN's, etc. and use of Palo Alto products
- In depth knowledge and experience of Wifi networking
- In depth knowledge of TCP/IP protocols such as ICMP, HTTP/S, DNS, SSH, SMTP, SMB,
- Experience using Elastic SIEM
- Experience with vulnerability assessment and monitoring tools such as Security Center, Nessus, and Endgame
- Experience with reconstructing a malicious attack or activity based on network traffic
- Experience incorporating Threat Intelligence
- Experience with Crowdstike, Gray Noise and Shodan
- Understanding of MITRE Adversary Tactics, Techniques and Common Knowledge (ATT&CK)
- Must be able to work collaboratively across physical locations.
- Proficiency in Elastic SIEM engineering
- Proficiency with Snort
- Proficiency with other EDR Tools (Crowdstrike, Carbon Black, Etc)
- Proficiency with network analysis software (e.g. Wireshark)
- Proficiency with carving and extracting information from PCAP data
- Proficiency with nontraditional network traffic (e.g. Command and Control)
- Proficiency with preserving evidence integrity according to standard operating procedures or national standards
- Proficiency with designing cyber security systems and environments in a Linux
- Proficiency with virtualized environments
- Proficiency with conducting allsource research.
- GSOM, GSOC, GCFA, GCFE, EnCE, CCE, CFCE, CEH, CCNA, CCSP, CCIE, OSCP, GNFA
-
SOC Analyst
3 weeks ago
Serigor Inc Washington, United StatesJob Title: SOC Analyst - Tier 1 (Onsite) · Location: Washington, DC · Duration:12 Months+ · Job Description: · The client is the central technology organization of the client Government. It sets the standard for a number of information technology functions including the security ...
-
SOC Analyst
2 weeks ago
Serigor Inc. Washington, United StatesJob Description · Job DescriptionJob Title: SOC Analyst - Tier 1 (Onsite) · Location: Washington, DC · Duration: 12 Months+ · Job Description: · The client is the central technology organization of the client Government. It sets the standard for a number of information technology ...
-
Sr. SOC Analyst
3 weeks ago
Piper Companies Arlington, United StatesZachary Piper Solutions is seeking a · Sr. SOC Analyst for a position supporting a government contracting firm in Arlington, VA. · The Sr. SOC Analyst will provide expert cyber incident response and proactive threat hunting to protect critical cyber infrastructure. · This role ...
-
SOC Analyst, Mid
4 weeks ago
Peraton Washington, United States Full timeResponsibilities · Responsible for the overall collection of operational and logistical data for assigned UAS at assigned location. Verify all data for accuracy, make appropriate changes to improve the accuracy, and transmit the data via established timelines and procedures. Acts ...
-
SOC Analyst
4 days ago
Foxhole Technology San Francisco, United States PermanentOverview Organization: Federal Organization · Location: Washington, DC (Onsite) · Salary: Based on experience, education and certification · Clearance: Public Trust (6C) Foxhole Technology provides robust cybersecurity and IT support capabilities for federal civilian and defense ...
-
SOC Analyst
3 days ago
ASM Research Bethesda, United StatesJob Description · Security Operations Center Analyst · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities ...
-
Sr. SOC Analyst
4 weeks ago
Piper Companies Arlington, United StatesZachary Piper Solutions is seeking a Sr. SOC Analyst for a position supporting a government contracting firm in Arlington, VA. The Sr. SOC Analyst will provide expert cyber incident response and proactive threat hunting to protect critical cyber infrastructure. This role is full ...
-
SOC Analyst
2 weeks ago
CGI Fairfax, United States Full timePosition Description: · CGI is one of the top 5 largest global IT companies spread across 40 countries with endless opportunities to expand and grow. As a CGI Federal Member, you have the opportunity to be a shareholder at CGI and join a family of 90, members strong. · CGI Fede ...
-
Senior SOC Analyst
2 weeks ago
BCMC, LLC Arlington, United StatesThe DHS's Hunt and Incident Response Team (HIRT) secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front line response for cyber incidents and proactively hunting for malicious cyber activity. BCMC performs HIRT investigations to develop a prelimin ...
-
SOC Analyst
2 days ago
InquisIT LLC Washington, United States**Transforming the Business of Government** · InquisIT is a high-energy, forward-thinking, advanced technology company that provides the Federal Government and select private-sector organizations with an impressive array of services and solutions. Company expertise includes Syste ...
-
SOC Analyst Tier 3
3 weeks ago
ShorePoint Washington, United StatesJob Description · Job DescriptionSalary: · Who we are: · ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security mode ...
-
SOC Analyst
4 weeks ago
ASM Research, An Accenture Federal Services Company Bethesda, United StatesSecurity Operations Center Analyst · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities: · Monitor and analy ...
-
SOC Cyber Security Analyst
4 weeks ago
General Dynamics Information Technology Mosby, United StatesWe are GDIT. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that's importan ...
-
SOC Analyst
3 weeks ago
ASM Research Bethesda, United StatesJob Description · Security Operations Center Analyst · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities ...
-
SOC Analyst
2 days ago
DMI Mobile Enterprise Solutions Crownsville, United StatesDMI (Digital Management, LLC.) is looking for a Security Operations Center (SOC) Analyst with hands-on experience monitoring, detecting, and analyzing threats and cybersecurity events to identify and defend against validated intrusion events. Daily w Analyst, Night Shift, Securit ...
-
SOC Analyst(s)
3 weeks ago
Peraton Washington, United States Full timeResponsibilities · Peraton is seeking Security Operations Center (SOC) Analysts to join our team of qualified and diverse individuals to identify, analyze, and report events within a cloud environment, providing cybersecurity monitoring and alerts. · What you'll do: · The SOC Ana ...
-
SOC Analyst/Security Engineer
4 weeks ago
RAMPS International Inc. Washington, United StatesJob Description · Job DescriptionRole: SOC Analyst/Security Engineer · Duration: Long term · Location: Washington, D.C. · ESSENTIAL DUTIES · The position's essential duties include the following: · • +/- 5-year experience as a qualified security analyst · • Defines and implements ...
-
SOC Analyst
3 weeks ago
ASM Research, An Accenture Federal Services Company Bethesda, United States**Security Operations Center Analyst** · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities: · + Monitor ...
-
SOC Analyst
3 weeks ago
ASM Research Bethesda, United StatesJob Description · Security Operations Center Analyst · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities ...
-
Sr. SOC Analyst
3 weeks ago
Knowledge Management, Inc. Washington, United StatesJob Description · Job DescriptionKnowledge Management, Inc. (KMI) has the leadership and experience to deliver innovative technology, logistics and management solutions to meet real mission requirements. KMI is a Minority Business Enterprise (MBE) and Small Disadvantage Business ...
Senior SOC Analyst - Arlington, United States - BCMC
Description
Job Description
Job DescriptionThe DHS's Hunt and Incident Response Team (HIRT) secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front line response for cyber incidents and proactively hunting for malicious cyber activity. BCMC performs HIRT investigations to develop a preliminary diagnosis of the severity of breaches. BCMC provides HIRT remote and onsite advanced technical assistance, proactive hunting, rapid onsite incident response, and immediate investigation and resolution using host-based and network-based cybersecurity analysis capabilities. Contract personnel provide front line response for digital forensics/incident response (DFIR) and proactively hunting for malicious cyber activity. BCMC is seeking a Senior SOC Analyst to support this critical customer mission.Responsibilities:
Required Skills:
- U.S. Citizenship
Desired Skills:
Required Education:
BS Computer Science, Cybersecurity, Computer Engineering or related degree; or HS Diploma and 10+ years of host or digital forensics and network forensic experience
Desired Certifications:
Business Computers Management Consulting Group, LLC (BCMC) is a small business specializing in Information Technology (IT), Cybersecurity, Information Assurance (IA), SOA, Big Data Management, Program Management, and more for Federal, State, and Local agencies.
We are ISO 9001:2015, ISO 27001:2013, 20000:2018, and CMMI L3 certified and registered promising highest quality and services to all of our clients.
Benefits
Extremely competitive salary
95% employer paid for employee medical, dental, & vison coverages
100% employer paid for employee life, STD & LTD disability coverages
401k with company match and profit sharing
Flexible Spending Account (FSA) for dependent & health care
11 standard holidays & 3 weeks of annual leave
Our Company Overview:
Business Computers Management Consulting Group, LLC (BCMC) is a small business specializing in Information Technology (IT), Cybersecurity, Information Assurance (IA), SOA, Big Data Management, Program Management, and more for Federal, State, and Local agencies.
We are ISO 9001:2015, ISO 27001:2013, 20000:2018, and CMMI L3 certified and registered promising highest quality and services to all of our clients.
Benefits
Extremely competitive salary
95% employer paid for employee medical, dental, & vison coverages
100% employer paid for employee life, STD & LTD disability coverages
401k with company match and profit sharing
Flexible Spending Account (FSA) for dependent & health care
11 standard holidays & 3 weeks of annual leave
HBA04
ESS-3168
Powered by JazzHR
lb8OKHZHDs
Senior SOC Analyst professionals in Arlington
-
Basat Tayfun
Systems Architect, Trusted Advisor, Tech Sales