Intrusion Analyst with Security Clearance - Fairmont, WV, United States - TEKsystems c/o Allegis Group

    TEKsystems c/o Allegis Group
    TEKsystems c/o Allegis Group Fairmont, WV, United States

    2 weeks ago

    Default job background
    Technology / Internet
    Description
    Job Description

    Primary Responsibilities:
    Perform against established operational rhythm, expectations, and standards for Security Operations Center (SOC) analysts
    Part of the 24x7 operations of the SOC, supporting shift coverage
    Perform incident handling responsibilities with direct interface to customers and management team
    Perform analysis on anomalous behavior based on log data from firewalls, packet capture, web proxy services, network flow analysis, intrusion detection, and malware analysis tools
    Operate freely to further investigate and escalate in accordance with protocols and contractual SLAs
    Identify areas of improvement for SOC processes and tools to enhance the mission

    Provide teaching / mentoring junior levels Basic Qualifications:

    Requires BS education and 4+ years of prior relevant background to operate within the scope contemplated by the level; experience in lieu of degree may be acceptable.

    Prior background performing as a SOC analyst
    Working knowledge of SIEM solutions and incident management solutions
    Technical understanding of core cybersecurity technologies as well as emerging capabilities.
    Strong systematic and troubleshooting skills
    Excellent written and verbal communication skills
    Team player
    CEH, GCIH, or relevant IT technology certification Preferred Qualifications:
    Upbeat and positive attitude
    Hands-on cybersecurity exposure.

    Demonstrated comprehension of the life cycle of cybersecurity threats, attacks, attack vector, and methods of exploitation with a grasp of intrusion set tactics, techniques and procedures (TTPs).

    Familiarity or background in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT&CK framework.
    Familiarity with Cloud concepts and background performing monitoring and replying to threats in Cloud environments

    Clearance:
    Must be a U.S Citizen.
    Be able to maintain security clearance, specifically DoD/Top Secret Clearance (Interim Top Secret or adjudicated Secret acceptable).