- Monitor and investigate alerts, threat hunting, and notify designated managers, cyber incident responders, and cybersecurity service provider team members of suspected cyber incidents and articulate the event's history, status, and potential impact in accordance with the organization's cyber incident response plan.
- Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources.
- Write advanced ad hoc SPL queries.
- Coordinate with internal and external teams to address threats and risks via investigation and forensic analysis.
- Analyze log files from a variety of sources (for example, individual host logs, network traffic logs, firewall logs, and intrusion detection system logs) to identify possible threats to network security.
- Utilize SIEM and EDR tools to monitor the environment.
- Develop and document configuration standards, policies, and procedures for operating, managing, and ensuring the security of system infrastructure.
- Advise management and team members of risks associated with technologies and implementation approaches and identify methods of risk mitigation.
- Interact with multiple levels of management, providing information and thought leadership in technical areas.
- Prepare reports on investigations, incidents, and other security-related matters.
- Identify different tactics and techniques of attacks.
- Recommend and implement system enhancements that improve the performance, security, and reliability of the system.
- Build out processes and procedures to include documenting work in SOPs.
- Train and assist junior members of the SOC team.
- Plan and implement projects and initiatives.
- Communicate clearly and concisely with managers and colleagues.
- Demonstrate flexibility and eagerness to take on challenges by performing tasks not listed above.
- U.S. citizenship and an active SECRET Government Security Clearance.
- 5+ years of related systems security engineering experience, primarily in the federal government environment, dealing with business critical, high-availability systems.
- 5+ years SOC or cybersecurity-related experience.
- 3+ years of experience with a SIEM tool, preferably Splunk
- Experience with Splunk dashboard and Microsoft Sentinel.
- 4+ years querying and manipulating data experience, including 2+ years' experience with SPL (required) with knowledge of data types, conditions, and regular expressions.
- Understanding of system, network, and application security threats and vulnerabilities with the ability to establish monitoring solutions.
- Understanding of Boolean logic and event correlation.
- Strong ability to identify logging and monitoring requirements/gaps.
- Solid knowledge of cybersecurity incidents, anomaly analysis, log analysis, digital forensics, common threat vectors.
- Understanding of TCP/IP and UDP protocols, network ports/protocols, and traffic flow.
- Security+ CE or other 8570 IAT level II certification.
- Knowledge and experience applying cybersecurity specifications, including familiarity with the Risk Management Framework (RMF) and compliance with NIST standards such as NIST SP
- Data normalization with Splunk using/creating field aliases, calculated fields, field extractions.
- Certified Splunk Power User or higher.
- Ability to track incidents using MITRE ATT&CK.
- Knowledge of cloud security.
- Knowledge of system administration, networking, and operating system hardening techniques.
- Mixed operating systems experience: (Linux, Windows).
- Experience troubleshooting issues related to storage.
- Scripting/coding experience.
- Knowledge of Web Application Firewalls (WAF) security protections.
-
SOC Analyst
3 weeks ago
Serigor Inc Washington, United StatesJob Title: SOC Analyst - Tier 1 (Onsite) · Location: Washington, DC · Duration:12 Months+ · Job Description: · The client is the central technology organization of the client Government. It sets the standard for a number of information technology functions including the security ...
-
SOC Analyst
2 weeks ago
Serigor Inc. Washington, United StatesJob Description · Job DescriptionJob Title: SOC Analyst - Tier 1 (Onsite) · Location: Washington, DC · Duration: 12 Months+ · Job Description: · The client is the central technology organization of the client Government. It sets the standard for a number of information technology ...
-
SOC Analyst, Mid
4 weeks ago
Peraton Washington, United States Full timeResponsibilities · Responsible for the overall collection of operational and logistical data for assigned UAS at assigned location. Verify all data for accuracy, make appropriate changes to improve the accuracy, and transmit the data via established timelines and procedures. Acts ...
-
SOC Analyst
4 days ago
Foxhole Technology San Francisco, United States PermanentOverview Organization: Federal Organization · Location: Washington, DC (Onsite) · Salary: Based on experience, education and certification · Clearance: Public Trust (6C) Foxhole Technology provides robust cybersecurity and IT support capabilities for federal civilian and defense ...
-
Sr. SOC Analyst
3 weeks ago
Piper Companies Arlington, United StatesZachary Piper Solutions is seeking a · Sr. SOC Analyst for a position supporting a government contracting firm in Arlington, VA. · The Sr. SOC Analyst will provide expert cyber incident response and proactive threat hunting to protect critical cyber infrastructure. · This role ...
-
SOC Analyst
2 days ago
InquisIT LLC Washington, United States**Transforming the Business of Government** · InquisIT is a high-energy, forward-thinking, advanced technology company that provides the Federal Government and select private-sector organizations with an impressive array of services and solutions. Company expertise includes Syste ...
-
SOC Analyst
2 days ago
ASM Research Bethesda, United StatesJob Description · Security Operations Center Analyst · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities ...
-
Senior SOC Analyst
2 weeks ago
BCMC Arlington, United StatesJob Description · Job DescriptionThe DHS's Hunt and Incident Response Team (HIRT) secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front line response for cyber incidents and proactively hunting for malicious cyber activity. BCMC performs HIRT inv ...
-
SOC Analyst Tier 3
3 weeks ago
ShorePoint Washington, United StatesJob Description · Job DescriptionSalary: · Who we are: · ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security mode ...
-
SOC Analyst(s)
3 weeks ago
Peraton Washington, United States Full timeResponsibilities · Peraton is seeking Security Operations Center (SOC) Analysts to join our team of qualified and diverse individuals to identify, analyze, and report events within a cloud environment, providing cybersecurity monitoring and alerts. · What you'll do: · The SOC Ana ...
-
SOC Analyst/Security Engineer
4 weeks ago
RAMPS International Inc. Washington, United StatesJob Description · Job DescriptionRole: SOC Analyst/Security Engineer · Duration: Long term · Location: Washington, D.C. · ESSENTIAL DUTIES · The position's essential duties include the following: · • +/- 5-year experience as a qualified security analyst · • Defines and implements ...
-
SOC Analyst
2 weeks ago
CGI Fairfax, United States Full timePosition Description: · CGI is one of the top 5 largest global IT companies spread across 40 countries with endless opportunities to expand and grow. As a CGI Federal Member, you have the opportunity to be a shareholder at CGI and join a family of 90, members strong. · CGI Fede ...
-
SOC Cybersecurity Analyst
3 days ago
Dhara Consulting Group Washington, United StatesToday · - Top Secret/SCI · - Unspecified · - Unspecified · - IT - Security · - Washington, DC** (ON-SITE/OFFICE)** · **Secure our Nation, Ignite your Future** · Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come f ...
-
SOC Cybersecurity Analyst
1 day ago
ManTech Washington, United States Paid WorkSecure our Nation, Ignite your Future · Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International Corporation, you'll help protect our national security while working on innovative project ...
-
SOC Cybersecurity Analyst
1 day ago
ManTech Washington, United States Paid WorkSecure our Nation, Ignite your Future · Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International Corporation, you'll help protect our national security while working on innovative project ...
-
SOC Analyst
3 weeks ago
ASM Research, An Accenture Federal Services Company Bethesda, United StatesSecurity Operations Center Analyst · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities: · Monitor and analy ...
-
SOC Analyst
3 weeks ago
ASM Research Bethesda, United StatesJob Description · Security Operations Center Analyst · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities ...
-
Sr. SOC Analyst
4 weeks ago
Piper Companies Arlington, United StatesZachary Piper Solutions is seeking a Sr. SOC Analyst for a position supporting a government contracting firm in Arlington, VA. The Sr. SOC Analyst will provide expert cyber incident response and proactive threat hunting to protect critical cyber infrastructure. This role is full ...
-
SOC Analyst
2 days ago
DMI Mobile Enterprise Solutions Crownsville, United StatesDMI (Digital Management, LLC.) is looking for a Security Operations Center (SOC) Analyst with hands-on experience monitoring, detecting, and analyzing threats and cybersecurity events to identify and defend against validated intrusion events. Daily w Analyst, Night Shift, Securit ...
-
SOC Analyst
3 weeks ago
ASM Research, An Accenture Federal Services Company Bethesda, United States**Security Operations Center Analyst** · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities: · + Monitor ...
Sr. SOC Analyst - Washington, United States - Knowledge Management, Inc.
Description
Job Description
Job DescriptionKnowledge Management, Inc. (KMI) has the leadership and experience to deliver innovative technology, logistics and management solutions to meet real mission requirements. KMI is a Minority Business Enterprise (MBE) and Small Disadvantage Business (SDB) that specializes in Logistics, Warehouse Services, Distance Learning/Training, Enterprise Solutions, Financial Management Support, Program Management, Intelligence Analysis & Threat Assessment, and Data Analytics/Operations Research. Since 1998, our solutions and services have helped our clients improve performance, drive cost and operational effectives, and map technology needs for tomorrow's requirements.
Title: Sr. SOC Analyst
Assignment Location(s): Hybrid: remote AND up to two days per week (Wed and one other day) in the office in Sterling, VA or Washington, DC.
Estimated Contract Duration: Multi-year contract
Start date: ASAP
Required clearance: Secret
Work Schedule: First shift, approximately 7:30am - 4pm, Monday-Friday. Exact hours to be established by site lead.
Salary: Please provide your salary requirement
Education and Experience Requirements: High school diploma or equivalent and at least 12 years of work experience; Bachelor's degree and 8 years of experience; Master's degree and 6 years of experience; PhD and 3 years of work experience.
Knowledge Management, Inc. is seeking a Senior SOC Analyst to join our team of qualified, diverse individuals. The Senior SOC Analyst will be part of the Department of State (DOS) Consular Affairs Enterprise Infrastructure Operations (CAEIO) Program for the Bureau of Consular Affairs (CA). The CAEIO Program provides IT Operations and Maintenance to modernize the legacy networks, applications, and databases supporting CA services globally.
Responsibilities:
Core Work Schedule: Saturday - Wednesday, 7:00AM - 3:30PM EST
Work Location: Hybrid: remote AND up to two days per week in the office in Sterling, VA or Washington, DC.
QUALIFICATIONS
Basic Qualifications
Preferred Qualifications
Education and Experience Requirements: High school diploma or equivalent and at least 12 years of work experience; Bachelor's degree and 8 years of experience; Master's degree and 6 years of experience; PhD and 3 years of work experience.
Equal Employment Opportunity Statement. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
E-Verify Statement. Knowledge Management, Inc. participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. If E-Verify cannot confirm that you are authorized to work, KMI is required to give you written instructions and an opportunity to contact Department of Homeland Security (DHS) or Social Security Administration (SSA) so you can begin to resolve the issue before the employer can take any action against you, including terminating your employment. Employers can only use E-Verify once you have accepted a job offer and completed the Form I-9.
Pay Transparency Non-Discrimination Provision. Knowledge Management, Inc. will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR c)
Disability Statement. Knowledge Management aims to be a supportive workplace in all aspects of diversity, including accommodating those with additional needs. If you have a disability and need reasonable accommodation or assistance at any point in the application or onboarding process, please email us at