- We are looking for applicants with experience around Splunk, SIEM tools, Wireshark and hunting for malicious activity.
- This role also operates on a 4x10 schedule, working either Wednesday–Saturday or Sunday–Wednesday.
- Training will happen on swing shift (1:30pm CST–11:30pm CST) and after training they will work to get applicants on the shift they desire
- Review DoD and open source intelligence for threats.
- Identify Indicators of Compromise (IOCs) and integrate those into sensors and SIEMs.
- Triage and review system alerts to identify malicious actors on customer networks.
- Assist T1 analysts with triage and analysis.
- Complete moderate–level analysis of potential cybersecurity events that could threaten IT Systems.
- Report incidents to customers and USCYBERCOM.
- Motivated self–starter with strong written and verbal communication skills.
- Create complex technical reports on analytic findings.
- Bachelor's degree and 2+ years of prior relevant experience (related DISA customer experience and Cyber courses/certifications may be substituted in lieu of degree).
- Must possess an active DoD 8570, IAT Level II Certification and CSSP–Analyst1 certification at your start date.
- Demonstrated understanding of the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
- Demonstrated understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense–in–depth and common security elements.
- Experience and proficiency with any of the following: Anti–Virus, HIPS, ID/PS, Full Packet Capture, Host–Based Forensics, Network Forensics.
- Experience with malware analysis concepts and methods.
- Familiarity or experience in Intelligence Driven Defense.
- Willing to perform shift work.
- Must have an active DoD Top Secret clearance
- Advanced certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP and/or SIEM–specific training and certification. (Security+ CE, CISSP or equivalent).
- Demonstrated commitment to training, self–study and maintaining proficiency in the technical cyber security domain.
- CND experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization or Security Operations Center.
- In–depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. Nitro/McAfee Enterprise Security Manager, ArcSight, QRadar, LogLogic, Splunk).
-
Security Engineer with Security Clearance
1 week ago
TEKsystems c/o Allegis Group Chicago, United StatesYou will need to login · before you can apply for a job. · Security Engineer with Security Clearance · Top Skills' Details · 1. Secret clearance · 2. IAT level III cert · 3. 1–4 years for RMF, eMass Job Description · The Security Engineer III provides technical support in the a ...
-
Civil Engineer with Security Clearance
6 days ago
exp Federal, Inc. Chicago, United StatesCivil Engineer Chicago, IL Exp Federal is an established Chicago-based full service architectural and engineering firm that provides a full range of exceptional design solutions and construction support to the federal government. Our team of professionals operates in some of the ...
-
K9 Handler with Security Clearance
3 weeks ago
Constellis Chicago, IL, United StatesPOSITION SUMMARY The Handler is responsible with screening cargo in compliance with TSA rules and regulations · The Handler is required to complete a 4-8 weeks minimum team training course and certification prior to mobilization to the assigned location · RESPONSIBILITIES · • Par ...
-
exp Federal, Inc. Chicago, United StatesTelecommunications Specialist -RCDD Certified · Location – potential to work in a hybrid environment at one of our established studios. · Exp Federal is an established full-service architectural and engineering firm that provides a full range of exceptional design solutions and c ...
-
Fire Protection Engineer with Security Clearance
2 weeks ago
Leidos Chicago, United StatesR Description Leidos is seeking a Licensed Fire Protection Engineer (with expertise in Fire Life Safety) to join the National Airspace System Integration Support Contract (NISC) team. The position will support numerous facets of the Federal Aviation Administration's (FAA) Fire Li ...
-
SAIC Chicago, United StatesYou will need to login · before you can apply for a job. · Senior Information Assurance Engineer with Security Clearance · Description The National Security Customer Group of SAIC is seeking an Information Assurance Engineer for the Test and Integration Laboratory to support an ...
-
KPMG Chicago, United StatesBusiness Title: Manager, Federal Workday HCM Functional Lead Requisition Number: Function: Advisory Area of Interest: State: IL City: Chicago Description: The KPMG Advisory practice is currently our fastest growing practice. We are seeing tremendous client demand, and looking for ...
-
Security Coordinator 3 with Security Clearance
2 weeks ago
Northrop Grumman Rolling Meadows, United StatesAt Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advanc ...
-
Cable Technician
1 week ago
Fusion Technology-LLC Chicago, United States**Fusion Enterprise Solutions** is hiring for a **Cable Technician **for regular **Overseas** travel to perform telecommunication cable installation on embassies and other US buildings. · - **Location**:Regular Overseas Travel · - **Incentives**:Growth Opportunities, Job Security ...
-
Custodial Floor Supervisor
5 days ago
CW Resources, Inc. Chicago, United StatesThe Supervisor is responsible for performing custodial duties, supervision of custodial crew(s), scheduling of custodial crew(s), floor maintenance and other miscellaneous duties in order to ensure that the facilities are maintained in a healthy, safe and sanitary manner. The Sup ...
-
Contracts Negotiator
2 weeks ago
Lockheed Martin Corporation Chicago, United States Full time**JOB ID**: 666314BR · **Date posted**: May. 07, 2024 · **Program**: F-35 Training & Logistics · **Description**: · We are committed to work-life balance by promoting this remote telework option. These job requirements allow the employee to work their entire schedule somewhere ot ...
-
Service Tech/installer
2 weeks ago
Chicago Sound & Comm., Inc. Chicago, United StatesInstallation and Service Tech. with a background in Intercom/electronic entry, card access, CCTV and a working knowledge of LAN/WAN networks. Skill set to include conduit and open wire install installation techniques, wire control equipment also must be friendly, work well with o ...
-
Armed Diplomatic Security Officer
1 week ago
Inter-Con Security Systems Chicago, United States**Employment Opportunity** · Inter-Con is searching for motivated individuals to fill the exciting role of an Armed Diplomatic Security Officer. In this role, you'll work as a galvanized member of an elite team of security operators protecting some of our nation's most critical a ...
-
Architectural Sign Installer
1 week ago
Latitude Signage + Design Chicago, United StatesSee & read through web link: · **Responsibilities**: · - Install various products according to specifications and instructions · - Measure and cut materials to fit installation requirements · - Use hand and power tools to assemble and secure components · - Ensure proper alignment ...
-
Dns Administrator
2 weeks ago
Techspace Solutions North Chicago, United States**Job Title**:DNS Administrator** · **Location : Chicago, IL (Onsite)** · **Duration : 12 Months** · **Key skills**: · DNS with cloud · AWS migration · **We are looking for a DNS/DDI Engineer to join our team and help us...** · - Design, deploy, and maintain AWS Route 53 DNS infr ...
-
Database Administrator
1 week ago
Na Oiwi Kane Chicago, United States**JOB DESCRIPTION** · **Position Title**:Database Administrator · **Location**:80% Remote, 20% Chicago, IL · **Introduction**: · Rivet Operations Company ("Rivet") has an opening for a Database Administrator. This position will be in support of the U.S Railroad Retirement Board ( ...
-
Customer Service Agent
1 week ago
Air Canada Chicago, United States**Description** · **Location**: Chicago, IL, United States (Onsite) · **Starting Salary**: $19.92/hour · **Branch**:Cargo · **Category**: Unionized (IBT) · **Being part of Air Canada is to become part of an iconic Canadian symbol. Are you passionate about reaching new heights, te ...
-
Technical Support Spec Assoc
1 week ago
Northwestern University Chicago, United StatesCompletes general tasks to aid in the ongoing support of workplace endpoint technology. Carries out procedures to ensure that all products and services meet organization standards and user requirements. Assists in the installation, maintenance and testing of workplace endpoint te ...
-
Janitorial Supervisor
2 weeks ago
ABM Industries Chicago, United States**ABM **is hiring a **_Supervisor _**for **_Janitorial Operations _** · Supervisors are responsible for providing operational support by establishing a relationship with airport and airline staff, participate in employees' training and development and monitor data to enhance proc ...
-
Project Manager
3 days ago
City of Chicago Chicago, United States**Job Number**:396892** · **Description** · JOB ANNOUNCEMENT · - PROJECT MANAGER · Chicago Fire Department (CFD) · **Number of Positions: 1 **(Additional vacancies possible pending budget approval)** · **_ This position is funded through a grant, and this employment opportunity i ...
SOC Analyst with Security Clearance - Chicago, United States - TEKsystems c/o Allegis Group
Description
POSITION SUMMARY:
This position is a mid level and will perform cyber threat intelligence analysis, correlate actionable security events, perform network traffic analysis using raw packet data, net flow, IDS, IPS and custom sensor output as it pertains to the cyber security of communications networks, and participate in the coordination of resources during incident response efforts.
PRIMARY RESPONSIBILITIES:
BASIC QUALIFICATIONS:
PREFERRED QUALIFICATIONS: