- Conduct an analysis of current operations of the SOC, analyze how the work is being done, review alerts, and SOPs to make recommendations for proposed changes and improvements to SOC operations and response metrics.
- Develop and execute an Incident Response Plan and SOC Playbook.
- Utilize the authorized security tools to perform security analysis and triage security alerts and events to prevent, detect, contain, and remediate security and privacy incidents.
- Identify, analyze, triage, report, and coordinate with CSIRT and other stakeholders to remediate all information security incident types.
- Utilize the authorized Security Tool Set) to perform security analysis and triage security alerts and events to prevent, detect, contain, and remediate security and privacy incidents.
- Coordinate with the SIEM team to create and maintain security dashboards.
- Report all information security incidents through the proper authority.
- Investigate and positively identify anomalous events that are detected by security devices. or reported to the SOC from external entities, system administrators, and the user community, via security monitoring platform and tools, incoming phone calls, emails, and the Service Desk and Incident Tracking System.
- Conduct monitoring and analysis activities
- Utilize network-based intrusion detection systems and other Security Information tools such as Event Management solutions (SIEM/Splunk) and Network Security Management solutions (such as Skybox Security, CISCO IPS/IDS, and Nessus) for the assessment, identification, and remediation of the incidents.
- Support Incident Management and Response requirements across the security incident lifecycle phases.
- Perform ad-hoc searches for suspect activity and reverse engineering of malicious software.
- Provide investigation, review, and recommendation documentation as necessary.
- Support development of reports and documentation including SOC Improvement Plan, Security Incident Reports, Program Status Report with reporting against Objectives and SLAs, Shift Change Reports, Measurable Activities Report (WAR), SOC Playbook updates,Incident Escalation Reports, daily Monitoring Reports
- Cross-train with Network O&M/Telephony/Mobile Computing Management to assist the monitoring of all communications connectivity (e.g., VSAT, DTS-PO, VPN, SD-WAN, MPLS, and TICs), as well as the devices that terminate communications links, to ensure uninterrupted communications and in the event of a failure, provide rapid identification and resolution of problems per defined SLAs.
- Monitor the wireless network infrastructure; networks used by software development teams; bandwidth utilization and availability of communications links; and LAN device security logs, identifying and ascertaining the nature of potential security violations, and protocol configuration, route table maintenance, and alternate path mechanisms.
- Must have minimum of 8 years with BS/BA; Minimum of 6 years with MS/MA; Minimum of 3 years with PhD; or years of direct experience may be substituted in lieu of degree.
- Certified SOC Analyst (CSA) designation by the EC-Council
- Experience and knowledge of networking, TCP/IP protocols, network topology, network directory services.
- Experience with server operating systems, and understanding of operating system fundamentals, including Windows and Linux
- Understanding of security controls for common platforms (Windows, Linux, & network equipment)
- Experience implementing and monitoring security controls.
- Experience configuring and utilizing monitoring/logging and security analysis solutions
- Ability to support an operational environment that operates 24x7x365
- U.S. Citizen; Ability to obtain and maintain a U.S. Secret Security Clearance
- Active Secret Security Clearance.
- At least 3 years' experience working in a SOC environments or cybersecurity-related environment
- Experience leading incident response activities (Prepare, Identify, Contain, Eradicate, Recover)
- Experience using Security Operations (Sec Ops) tools, including any of the following: MTIPS, E3a, CASB, Qualys, Palo Alto Firewall, Palo Alto Panorama, Trellix, ForeScout CounterAct, HoneyPots, Google DLP, Entrust Identity Guard, Infoblox, KeePass, McAfee Antivirus, McAfee EPolicy Orchestrator, Microsoft Active Directory Certificate Services, Microsoft System Center Configuration Manager (SCCM), RSA token, RSA Archer, SailPoint, Skybox, Splunk, Syslog, Tenable Nessus, Thales, Valimail Enforce, VMWare AirWatch, Zimperium, EntryPoint, Tanium
- Knowledge of scripting languages (e.g., PowerShell, Python, Yara, SNORT, EQL)
- Amazon Web Services Cloud experience
- Experience working programs using ITIL v. 4 and/or Agile framework for Service Management
- Experience with the cloud-based workflow automation platform ServiceNow
-
SOC Analyst
1 week ago
Foxhole Technology Washington, United States· SOC Analyst - Tier III · Job Locations · US-DC · Job ID · Category · CyberSecurity · Type · Regular Full-Time · Clearance Required · Public Trust 6C · Overview · Organization: Federal Organization · Location: Washington, DC (Onsite) · Salary: Based on experience, education a ...
-
SOC Analyst
4 days ago
Foxhole Technology Washington, United StatesSOC Analyst - Tier III · Job Locations · US-DC · Job ID · Category · CyberSecurity · Type · Regular Full-Time · Clearance Required · Public Trust 6C · Overview · Organization: Federal Organization · Location: Washington, DC (Onsite) · Salary: Based on experience, educa ...
-
SOC Analyst
2 days ago
Foxhole Technology Washington, United StatesOverview Organization: Federal Organization · Location: Washington, DC (Onsite) · Salary: Based on experience, education and certification · Clearance: Public Trust (6C) Foxhole Technology provides robust cybersecurity and IT support capabilities for federal civilian and defense ...
-
SOC Analyst
1 week ago
Serigor Inc Washington, United StatesSOC Analyst - Tier 1 (Onsite) · Location: Washington, DC · Duration: 12 Months+ · Job Description: · The client is the central technology organization of the client Government. It sets the standard for a number of information technology functions including the security polici ...
-
SOC Analyst
6 days ago
Valiant Solutions Washington, United StatesPosition Description: · Valiant Solutions is seeking multiple SOC Analysts in the Washington DC area to join our rapidly growing and innovative cybersecurity team · As a SOC Analyst, you and your team will be responsible for manning a 24x7x365 coordination center on a rotating ...
-
SOC Analyst
2 weeks ago
InquisIT Washington, United StatesTransforming the Business of Government · InquisIT is a high-energy, forward-thinking, advanced technology company that provides the Federal Government and select private-sector organizations with an impressive array of services and solutions. Company expertise includes Systems ...
-
SOC Analyst III
2 weeks ago
Foxhole Technology Washington, United StatesTitle: SOC ANALYST III · Location: Washington, DC (Onsite) · Salary: Based on experience, education and certification · Clearance: Public Trust (6C) · Foxhole Technology provides robust cybersecurity and IT support capabilities for federal civilian and defense agencies. A recogn ...
-
SOC Analyst Lead
3 weeks ago
XOR Security Washington, United StatesJob Title: SOC Analyst Lead · Location: st St NW Washington, District of Columbia Onsite twice a week · Clearance Level: Public Trust · Required Certification(s): An industry technical certification such as GCIH, MS-SC200 or other MS cloud certifications · SUMMARYXOR Securit ...
-
SOC Sr Analyst
1 week ago
ASM Research, An Accenture Federal Services Company Washington, United StatesEvaluates application security in all phases of the software development life cycle. Works closely with team members to define application security best practices, performs software architecture and design reviews, and supports the identification, interpretation, and remediation ...
-
SOC Analyst(s)
2 weeks ago
Peraton Washington, United StatesResponsibilities: · Peraton is seeking Security Operations Center (SOC) Analysts to join our team of qualified and diverse individuals to identify, analyze, and report events within a cloud environment, providing cybersecurity monitoring and alerts. · What youll do: · The SOC ...
-
SOC Sr Analyst
2 weeks ago
ASM Research, An Accenture Federal Services Company Washington, United StatesEvaluates application security in all phases of the software development life cycle. Works closely with team members to define application security best practices, performs software architecture and design reviews, and supports the identification, interpretation, and remediation ...
-
SOC Analyst II
2 weeks ago
Agile Defense Washington, United StatesAgile Defense provides leading-edge Digital Transformation solutions to support and advance our customers' mission. We deliver innovative and high-quality services to our customers worldwide through an empowered and engaged workforce. · Job Title: · SOC Analyst II · Location: · ...
-
SOC Sr Analyst
1 week ago
ASM Research Washington, United StatesJob Description · Evaluates application security in all phases of the software development life cycle. Works closely with team members to define application security best practices, performs software architecture and design reviews, and supports the identification, interpretatio ...
-
SOC Analyst with Security Clearance
1 week ago
Zachary Piper Solutions Washington, United StatesZachary Piper Solutions is seeking a Security Operations Analyst join a Contract-to-Hire job opportunity in Washington DC. This is an onsite position with the Treasury Department that offers conversion to a hybrid schedule (3 days onsite) once comfortable in the role. The Securit ...
-
Cyber Security Analyst/SOC
2 weeks ago
Bering Straits Native Corporation Washington, United StatesIntrusion detection. Cyber incident response. Perform cyber investigations and analysis. Cross-train and mentor other staff members. Ability to proficiently utilize the client's wide variety of security tools including:Arc. Sight HP - Akamai Web Appl Security Analyst, Security, A ...
-
SOC Tier2 Analyst with Security Clearance
1 week ago
Base One Technologies Washington, United StatesOur DC metro based client is looking for Tier 2 SOC Analyst. Local candidates are preferred. In person meeting is required prior hiring. US CITIZENSHIP AND ACTIVE TS ARE required for these openings. rnrnrn Tier 2 Analystrn All Tier 2 Analyst candidates shall have a minimum of fiv ...
-
SOC Security Analyst Tier 2
2 weeks ago
Hill Associates Washington, United StatesAre you an accomplished Information Security expert and have experience in IT security and security controls? · Do you desire to be a valued member of a team delivering high-end IT services and consulting for a cabinet-level Federal Government agency? · Hill Associates is searc ...
-
SOC Security Analyst Tier 2
1 week ago
Hill Associates Washington, United StatesAre you an accomplished Information Security expert and have experience in IT security and security controls? · Do you desire to be a valued member of a team delivering high-end IT services and consulting for a cabinet-level Federal Government agency? · Hill Associates is searchi ...
-
SOC Security Analyst Tier 2
1 week ago
Hill Associates Washington, United StatesAre you an accomplished Information Security expert and have experience in IT security and security controls? · Do you desire to be a valued member of a team delivering high-end IT services and consulting for a cabinet-level Federal Government agency? · Hill Associates is searc ...
-
Remote Security Operations Center SOC Analyst
2 weeks ago
Evolver Washington, United StatesJob Description · Job Description · Evolver Federal is looking for a SOC - Security Operations Analyst, to join our team on a large Security Operations program with our Federal client located in Washington, DC. · Responsibilities · Red seal application experience · Serving as ...
SOC Analyst(s) - Washington, United States - Peraton
Description
Responsibilities
Peraton is seeking Security Operations Center (SOC) Analysts to join our team of qualified and diverse individuals to identify, analyze, and report events within a cloud environment, providing cybersecurity monitoring and alerts.
What you'll do:
The SOC Analyst's will also be responsible for the following but not limited to:
This role is contingent upon contract award.
Qualifications
Basic Qualifications:
Preferred Qualifications:
Benefits:
At Peraton, our benefits are designed to help keep you at your best, beyond the work you do with us daily. We are fully committed to the growth of our employees. From fully comprehensive medical plans to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way
Peraton Overview
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit to learn how we're keeping people around the world safe and secure.