- Monitor and analyze security events and alerts from multiple sources, including security information and event management (SIEM) software, network and host-based intrusion detection systems, firewall logs, and system logs (Windows and Unix), and databases
- Separate true threats from false positives using network and log analysis and escalate possible intrusions and attacks
- Initiate tickets, document, and escalate to higher-level security analysts
- Serve as the technical escalation point and mentor for lower-level analysts
- Regularly communicate with customer IT teams to inform them of issues, help them remediate, and ensure that they continue to operate business as usual
- Perform triage of incoming issues (assess the priority, determine risk).
- Work with customers to deploy hardware and software monitoring systems
- Maintain a strong awareness of the current threat landscape.
- Excellent teamwork skills
- Knowledge of and experience with intrusion detection/prevention systems and SIEM software
- Strong knowledge and understanding of network protocols and devices.
- Strong experience with Mac OS, Windows, and Unix systems.
- Ability to analyze event logs and recognize signs of cyber intrusions/attacks
- Ability to handle high pressure situations in a productive and professional manner.
- Ability to work directly with customers to understand requirements for and feedback on security services
- Strong written and verbal communication skills and the ability to present complex technical topics in clear and easy-to-understand language
- Strong teamwork and interpersonal skills, including the ability to work effectively with a globally distributed team
- Able and willing to work in a 24/7/365 environment, including nights and weekends, on a rotating shift schedule
- Ability to provide tuning recommendations for security tools to tool administrators.
- Familiarity with tools such as Wireshark, TCP Dump, Security Onion, and Splunk
- SIEM
- Packet Analysis
- SSL Decryption
- Malware Detection
- HIDS/NIDS
- Network Monitoring Tools
- Case Management System
- Knowledge Base
- Web Security Gateway
- Email Security
- Data Loss Prevention
- Anti-Virus
- Experience in network/host vulnerability analysis, intrusion analysis, digital forensics, penetration testing, or related areas
• 2-4 years of hands-on SOC/TOC/NOC experience - GCIA required. GCIH, GCFE, CISSP, Security +, Network +, CEH, RHCA, RHCE, MCSA, MCP, or MCSE preferred
- Familiarity with tools such as IDA Pro, PEiD, PEview, Procmon, Snort, Bro, Kali Linux, Metasploit, NMAP, and Nessus
• Familiarity with GPO, Landesk, or other IT Infrastructure tools - Understanding of programming/scripting languages and ability to run basic database queries
- Minimum bachelor's degree in Information Security, Computer Science, or other IT-related field. Exceptional candidates with proven experience in security/network operations will also be considered.
-
Information Security Analyst
3 weeks ago
SecuriGence LLC College Park, United States**Job Title**: Information Security Analyst · **Location**: College Park, MD · **Summary** · **Responsibilities** · Provide Information assurance support for NOAA Data Center operations work. Review system security posture and work with IBM system administration teams to either r ...
-
Cyber Security Analyst
1 week ago
Business Integra Inc Greenbelt, United StatesPosition**:Cyber Security Analyst** · **Location: Greenbelt, Maryland** · **Hybrid role 2 DAYS ONSITE** · **Work Authorization: Only US Citizens are eligible for this position** · **Summary**: · **Typical responsibilities and duties include, but are not limited to**: · - Assist t ...
-
Information Security Analyst System Admin
2 weeks ago
GAMA-1 Technologies College Park, United StatesProvide Information assurance support for NOAA Data Center operations work. Review system security posture and work with IBM system administration teams to either resolve or mitigate the findings. Create a weekly dashboard of Security posture of the NCEP environment · Task Descri ...
-
Information Security Analyst
1 week ago
SAIC Beltsville, United StatesJob ID: · **Location**:BELTSVILLE, MD, US · **Date Posted**: · **Category**:Cyber · **Subcategory**:Cybersecurity Spec · **Schedule**:Full-time · **Shift**:Day Job · **Travel**:Yes, 25 % of the Time · **Minimum Clearance Required**:Secret · **Clearance Level Must Be Able to Obt ...
-
Security Analyst
3 weeks ago
Synchron, LLC Washington, United States**Responsibilities**: · - Draft Security Classification Guides (SCGs) in accordance with DoD Manual Volume 1: DoD Information Security Program Overview and DoD Manual Instructions for Developing Security Classification Guides. · - Participate in program and project planning effor ...
-
IT Security Analyst
2 weeks ago
Go Intellects Inc Washington, United States1.Determines enterprise information assurance and security standards. · 2.Develops and implements information assurance/security standards and procedures. · 3.Coordinates, develops, and evaluates security programs for an organization. Recommends information assurance/security sol ...
-
Security Analyst
2 days ago
Peraton Washington, United States**About Peraton** · **Responsibilities** · Ensures that security policies, procedures, and directives of the National Industrial Security Program Operating Manual NISPOM DCID 6 3 and JAFAN 6 3 manuals are followed. Maintains the oversight and compliance of existing information sy ...
-
IT Security Analyst
1 week ago
RIVIDIUM Washington, United StatesRividium, Inc (dba TripleCyber) is seeking IT Security Speicalist to provide Secure Communications Support Services to the Under Secretary of Defense for Intelligence & Security (I&S)) is the principal staff assistant and advisor to the Secretary of Defense and the Deputy Secreta ...
-
Information Security Analyst
3 weeks ago
MUNICIPAL SECURITIES RULEMAKING BOARD Washington, United StatesThe Information Security Analyst is responsible for securing the MSRB by supporting existing controls and processes across multiple dimensions and domains, including MSRB Web Applications, Cloud environments, networks, SaaS platforms, and enterprise systems. The analyst will supp ...
-
Information Security Analyst
3 weeks ago
E-Logic, Inc. Washington, United StatesThe job position is for an experienced Information Security Analyst at the Department of Homeland Security (DHS), as a part of the agency's cybersecurity team. The Information Security Analyst will take the utmost explanation concerning DHS' systems, networks, and data by way of ...
-
Information Security Analyst
2 weeks ago
Computer World Services Washington, United StatesThe Threat Hunt (TH) Lead oversees a team responsible for proactively assessing data collected from various cyber defense tools to analyze events within organizational environments for identifying and mitigating threats. This role requires a deep understanding of cyber threats, a ...
-
Security Analyst
2 weeks ago
Amentum Chantilly, United StatesAmentum is seeking security-minded, critical thinkers with strong communication and analytical skills to join our team of security analysts providing adjudicative support a government customer in a dynamic and challenging environment. · All work will occur at a fixed customer loc ...
-
Security Analyst
3 weeks ago
Delmock Technologies Lanham, United States· About Our Company: · Join Delmock Technologies, Inc. (DTI), a leading HUBZone business in Baltimore, known for delivering sophisticated IT and Health solutions with a commitment to ethics, expertise, and superior service. Actively engaged in the local community, DTI creates o ...
-
Nuclear Security Analyst
3 weeks ago
ANSER Washington, United StatesOVERVIEW: · ANSER enhances national and homeland security by strengthening public institutions. We provide thought leadership for complex issues through independent analysis and we deliver practical, useful solutions. ANSER values collaboration, integrity, and initiative and we a ...
-
Information Security Analyst
2 weeks ago
Gointellects INC Washington, United StatesThe Security Specialist (Infrastructure Group) will be maintaining and monitoring day to day operation of the IT infrastructure Security. · IT Consultant will help and perform monitoring, maintenance, and security IT infrastructure (physical, virtual and cloud). · Consultant will ...
-
Cyber Security Analyst
1 week ago
PPT Solutions, Inc. Washington, United States**PPT Solutions, Inc**. is seeking a **Cyber Security Analyst** in the **National Capital Region.** The qualified applicant will provide objective expertise for cyber tabletop exercises and specialized skills to supporting projects related to cyber penetration testing, resilience ...
-
Cyber Security Analyst
1 week ago
Advanced Automation Consulting Washington, United States**Cyber Security Analyst Job Description** · AAC is seeking an experienced Cyber Security Analyst to support our federal contracting client with cyber related activities including stakeholder management, vulnerability research, coordination with the system engineers and ISSO's. · ...
-
Information Security Analyst
1 week ago
Computer World Services Washington, United StatesThe Threat Hunt (TH) Lead oversees a team responsible for proactively assessing data collected from various cyber defense tools to analyze events within organizational environments for identifying and mitigating threats. This role requires a deep understanding of cyber threats, a ...
-
Information Security Analyst
1 day ago
RightDirection Technology Solutions Washington, United States: · An Information Security Analyst is needed to support the Dept of State customer base and will work as a member of the Global Talent Management (GTM Help Desk) in Washington, DC. This role is full-time, standard work week and hours, and hybrid (one week a month onsite). · Basi ...
-
Cyber Security Analyst
2 weeks ago
Piper Companies New Carrollton, United StatesZachary Piper Solutions is seeking a · Incident Response Analyst - Threat Hunter · to join a long term project supporting the IRS in a · Hybrid · role (on site once a week) based in · New Carrollton, MD. · The Threat Hunter will work in the IRS Computer Security Response Ce ...
SOC Security Analyst - College Park, United States - BlueVoyant
Description
SOC Security Analyst (Level 2)
Read all the information about this opportunity carefully, then use the application button below to send your CV and application.
The preference is hybrid out of College Park, Maryland but remote US based candidates will be considered. Either way, the schedule will be a Panama schedule: (slow rotating shift pattern that uses 4 teams and two 12-hour shifts to provide 24/7 coverage. The working and non-working days follow this pattern: 2 days on, 2 days off, 3 days on, 2 days off, 2 days on, 3 days off)
Summary
BlueVoyant is looking for Security Operations Center (SOC) Analysts (Level 2) to help our global customers manage their IT security. You will be part of a fast-paced team that helps customers to reduce the impact of security incidents and ensures that critical business operations continue unhindered.
Key Responsibilities
Basic Qualifications
Strong knowledge of the following:
Preferred Qualifications
Education
About BlueVoyant
At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy Actionability Timeliness Scalability
Led by CEO, Jim Rosenthal, BlueVoyant's highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200 and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies.
Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest and Latin America.
All employees must be authorized to work in the United States. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.
Disclaimer: Please note that pursuant to contractual requirements and applicable law, in order for employees to perform work on some of the company's federal contracts, U.S. citizenship is required. Accordingly, an employee's ability to perform work on such contracts is contingent upon the company's verification of the employee's citizenship status. Furthermore, individuals may be subject to additional background checks and fingerprinting.