NOSC Tier 2 Specialist with Security Clearance - Washington, DC, United States - Sev1Tech

    Sev1Tech
    Sev1Tech Washington, DC, United States

    3 weeks ago

    Default job background
    Technology / Internet
    Description
    Overview/ Job Responsibilities Sev1Tech is looking for Network Operations and Security Center (NOSC) Tier 2 Specialist to play a role on a very large program involving network, cybersecurity, and cloud operations and engineering support services to a government customer with a significant mission for security and public safety
    The program will encompass a wide range of tasks including but not limited to: Program Management; Monitoring, Analysis and Incident Response; Tier 3 Engineering and O&M; Field Engineering technical support; and Cloud operations

    Responsibilities include but are not limited to:

    • Monitor network, security, system, and cloud environments for events and perform triage analysis to identify or prevent incidents; perform network, security, system, and cloud incident response as needed
    • Respond to incidents by collecting, analyzing, preserving digital evidence and ensure that incidents are recorded and tracked in accordance with NOSC requirements
    • Work closely with other teams to assess - and provide recommendations for reducing - operational risks.
    • Maintains records of monitoring and incident response activities, utilizing case management and ticketing technologies.
    • Perform monitoring and analysis using Splunk analytics tools.
    • Monitor dashboards for malicious events, phishing events, spoofing events, DDoS attacks, SQL Injection events, network connectivity events, system/device performance events and other potentially high-risk incidents
    • Recognizes intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information
    • Recommends changes to SOPs and related documentation.
    • Generates end-of-shift reports for documentation and knowledge transfer to subsequent analysts on duty
    • Log all incident details and prioritization codes
    • Provide Tier 2 support, including WAN and LAN connectivity, routers, firewalls, and security
    • Support remote access platforms such as VPN, Terminal Services
    • Assign unresolved incidents to higher Tier support or Internet service providers and product vendors to coordinate restoration of service and obtain the necessary information for recording/tracking the outage or degradation of service
    • Keep component NOCs and SOCs informed of their incident's status at agreed intervals and continuously update incidents as needed
    • Notify Government Leads and other stakeholders of high impact/priority failures using the appropriate escalation procedures Minimum Qualifications
    • Bachelor's degree in Computer Science, Information Technology, Cyber Security or equivalent educational or professional experience and/or qualifications
    • Minimum four (4) years of experience working in a NOC, SOC, or NOSC environment with Splunk and or other logging, monitoring, and dashboard systems
    • Strong interpersonal skills and prior professional services experience in 24x7 operations
    • Background in incident response, operations and threat intelligence
    • Willing to work in a 24x7x365 operations center environment; may be expected to work some holidays and allow for flexible scheduling
    • At least one security or network certification

    Clearance Requirement:
    Public Trust clearance or higher; Public Trust clearance with Dept of Homeland Security (DHS) or Customs & Border Protection (CBP) preferred


    • On-site presence is required for this role Desired Qualifications
    • Knowledge in incident response, vulnerability management, security intelligence, automation/ scripting and/or the operations of advanced networking and security tools
    • Ability to handle multiple competing priorities in a fast-paced and high-pressure environment
    • Ability to work effectively with technical and non-technical business users
    • Desirable certifications include, but not limited to: CompTIA Security+, CCNA, SANs GSEC, GCIH, GCIA
    EC Council C|EH About Sev1Tech LLC Founded in 2010, Sev1Tech provides IT, engineering, and program management solutions delivery
    Sev1Tech focuses on providing program and IT support services to critical missions across Federal and Commercial Clients
    Our Mission is to Build better companies
    Enable better government
    Protect our nation
    Build better humans across the country
    Join the Sev1Tech family where you can achieve great accomplishments while fostering a satisfying and rewarding career progression
    Please apply directly through the website at: #joinSev1tech For any additional questions or to submit any referrals, please contact: Sev1Tech is an Equal Opportunity and Affirmative Action Employer

    All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.