- 6+ years of experience in modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
- Experience with writing detections within SIEM solutions, including Splunk, ArcSight, ElasticSearch, or Azure Sentinel
- Experience with Intrusion Detection System or Intrusion Prevention System (IDS/IPS) monitoring
- Knowledge of the basic functions and configurations of Bro or Zeek
- Knowledge of OS internals, including Windows, Linux, or Mac
- Knowledge of common security threats and vulnerabilities
- Ability to perform Nessus scans and review results, firewall configurations, and Linux hosts for indicators of compromise and hardening of Linux systems
- TS/SCI clearance with a polygraph
- Bachelor's degree
- IAT Level II Certifications
- Experience in creating and debugging Splunk Dashboards and creating Snort rules
- Experience with security subjects and trends, including digital forensics, reverse engineering, and penetration testing
- Experience with security principles in virtual and hosting software, including MISP, HIVE, CORTEX, WikiJS, VPN, and SecurityOnion
- Experience with leading teams in a technical capacity
- Experience with leveraging common scripting languages, including PowerShell or Python to parse logs and automate repeatable tasks
- Ability to use Splunk to hunt for indicators of compromise, create Splunk Dashboards, and review logs
- Ability to code or script using any language
- Ability to partner and collaborate with teams, both internal and external, including developers, vendors, analysts, tech leads, and project managers
- DOD 8570 CSSP Analyst Certification
- GCIA, GSLC, GCIH, CISM, CISSP, or- CEH Certifications
-
Contact Center Operator
2 days ago
CACI Washington, United StatesContact Center Operator (SCA) · Job Category: Service Contract Act · Time Type: Full time · Minimum Clearance Required to Start: None · Employee Type: Regular · Percentage of Travel Required: None · Type of Travel: None · - * · **What You'll Get to Do**: · Under general supervisi ...
-
Security Operations Center
19 hours ago
Big Impact Tech Washington, United StatesSOC Analyst Job Description: · Location: Onsite in Washington DC · Clearance level: Public Trust · Join our team at Big Impact Tech as a Tier 1 SOC Analyst. This role involves rotational shift work as part of our 24/7/365 Security Operations Center. As a SOC Analyst, you will mon ...
-
Operation Center Associate
1 week ago
Kastle Systems Falls Church, United StatesOverview: · **Join the leader in providing smarter solutions for a safer world.** · The property technology space is growing rapidly, and Kastle Systems is leading the way. Kastle Systems is the premier provider of property technology solutions, with a track record of introducing ...
-
Network Operations Center
2 days ago
Bay State Silver Spring, United StatesThe mission of this group is to provide 24x7x365 operational and administrative support for the client and to manage all incoming and outgoing support requests related to the network and business infrastructure while working with internal and external customers and teams to drive ...
-
Operations Center Watch Officer
2 days ago
C2C LLC Washington, United StatesIMMEDIATE FILL · Basic Qualifications: · - Bachelor's degree · - Eight (8) years of military experience · - Five (5) years of experience in operations centers, command center, or communications center operations · - Direct knowledge of, and experience with Navy Installation Emerg ...
-
Operations Center Watch Officer
1 week ago
C2C LLC Washington, United StatesIMMEDIATE FILL · Basic Qualifications: · - Bachelor's degree · - Eight (8) years of military experience · - Five (5) years of experience in operations centers, command center, or communications center operations · - Direct knowledge of and experience with Navy Installation Emerge ...
-
Network Operations Center Technician
2 days ago
MSR Technology Group DBA Infomatics Annapolis, United StatesPrimary Responsibilities: · - Monitors network management system and engages telecom providers to drive restoral efforts. · - Tracks incident details and keeps information updated in the incident management tool in a timely manner with accurate information. · - Solves systems and ...
-
Nebula Ventures Elk Ridge, United StatesThe digital transformation is also making its way to Elk Ridge. The Autobahn GmbH is taking a pioneering role with its cloud-first strategy. · Thanks to the development of a powerful multi-utility network, the Autobahn locations have been digitally connected. The goal is to fully ...
-
Jr. Operations Support Center
1 week ago
ManTech Annapolis Junction, United States Paid WorkSecure our Nation, Ignite your Future · Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International Corporation, you'll help protect our national security while working on innovative project ...
-
Employee Operations Control Center
1 week ago
Titan Industries Washington, United StatesEmployee Operations Control (m/f/d) Full-time | Location: Berlin Brandenburg Airport RESPONSIBILITIES: * Management of apron and passenger employees and ground service equipment * Review of employee scheduling for following days and communication of any necessary adjustments to s ...
-
Tier 1 Onsite Security Operations Center
6 days ago
Arcetyp LLC Washington, United StatesArcetyp LLC is a growing small business that provides a broad range of consulting services to US Federal Government, US Military, and Commercial clients. Services include Management & IT Consulting, Program & Project Management, and Professional & Admin Services. We are recruitin ...
-
Events Operator I- Fdic Training Center
1 week ago
Aramark Arlington, United StatesThe Events Operator I is responsible for managing set-up and maintaining, breaking down, and cleaning conference rooms and lounges in accordance with Aramark standards, safety rules, and sanitation policies.? You?ll set up, maintain, break down, and clean for food and beverage sp ...
-
Call Center Operator
1 week ago
Mercy Medical Center - Baltimore, MD Glen Burnie, United StatesSummary · * Must be fluent in both English and Korean* · The Bilingual Korean- Call Center Operator is primarily responsible for answering incoming calls to the practice in a polite, professional, and efficient manner. The operator will be the initial point of contact for all pat ...
-
Call Center Operator
1 week ago
Mercy Medical Center - Baltimore, MD Glen Burnie, United StatesSummary · The Call Center Operator is primarily responsible for answering incoming calls to the practice in a polite, professional, and efficient manner. The coordinator will be the initial point of contact for all patients and this interaction will function as a key component to ...
-
Call Center Operator
1 week ago
Mercy Health Glen Burnie, United StatesThe Call Center Operator is primarily responsible for answering incoming calls to the practice in a polite, professional, and efficient manner. The coordinator will be the initial point of contact for all patients and this interaction will function a Healthcare, Operator, Call Ce ...
-
Call Center Operator
4 days ago
Mercy Glen Burnie, United StatesJob Summary: · The Call Center Operator is primarily responsible for answering incoming calls to the practice in a polite, professional, and efficient manner. The coordinator will be the initial point of contact for all patients and this interaction will function as a key compon ...
-
Call Center Operator
1 week ago
Mercy Medical Center Glen Burnie, United StatesOverview: · The Call Center Operator is primarily responsible for answering incoming calls to the practice in a polite, professional, and efficient manner. The coordinator will be the initial point of contact for all patients and this interaction will function as a key component ...
-
Cyber Policy Support
4 days ago
HII Annapolis Junction, United StatesRequisition Number: 18615 · Required Travel: 0 - 10% · Employment Type: Full Time/Salaried/Exempt · Hours Per Week: 40.00 · Security Clearance: TS/SCI with Poly · Level of Experience: Mid · Mission Technologies a division of HII - Cyber Electronic Warfare and Space (CEWS) provide ...
-
Cloud Security Consultant
6 days ago
JASINT Annapolis Junction, United States**Job Title**:Cloud Security Consultant · **Location(s): Annapolis Junction**, MD** Hours**:Regular Full-Time · **Clearance Requirements**: · **What you will be doing**: · - This position requires interfacing with customers on site and providing them with information that will en ...
-
Program Integrator
4 days ago
BCT LLC Annapolis Junction, United StatesA career at BCT-LLC says you want to contribute and make a difference to something larger than yourself where success results from the dedication our team members have in building success for our customers and their mission. · If you are seeking a meaningful work experience along ...
Security Operations Center - Annapolis Junction, United States - EverWatch
Description
Overview
EverWatch is a government solutions company providing advanced defense, intelligence, and deployed support to our country's most critical missions. We are a full-service government solutions company. Harnessing the most advanced technology and solutions, we strengthen defenses and control environments to preserve continuity and ensure mission success.
EverWatch is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), gender identity, sexual orientation, national origin, age (40 or older), disability, genetic information, citizenship or immigration status, and veteran status or any other factor prohibited by applicable law.
EverWatch employees are focused on tackling the most difficult challenges of the US Government. We offer the best salaries and benefits packages in our industry - to identify and retain the top talent in support of our critical mission objectives.
Responsibilities
We are looking for an experienced Security Operations Center (SOC) Tier II Analyst to improve monitoring strategies and analyze threats to safeguard infrastructure supporting global missions focused on seeking out and eliminating cyberspace threats to defend the United States and its Allies. You will guide the team on best practices and security measures. You'll configure defense tools, create reports, and dashboards and build custom queries. You will make recommendations to leadership on best practices to harden infrastructure and improve alerting. You'll lead incident response and remedy potential incidents escalated from Tier 1 SOC Analysts. You'll work with the team to understand, mitigate, and respond to threats quickly, restoring operations and limiting the impact. You will guide efforts to assess how many systems are affected and assist recovery efforts. You'll combine threat intelligence, event data, and assessments from recent events to identify patterns and provide mitigation techniques and strategies. Finally, you will apply knowledge of attacker techniques to uncover threats by analyzing log data, and building and tuning detections.
Qualifications
Qualifications:
Nice If You Have:
Clearance Level
TS/SCI polygraphJob Locations
US-MD-Annapolis JunctionSkills
SIEM, Intrusion Detection