- Conduct an analysis of current operations of the SOC, analyze how the work is being done, review alerts, and SOPs to make recommendations for proposed changes and improvements to SOC operations and response metrics.
- Develop and execute an Incident Response Plan and SOC Playbook.
- Utilize the authorized security tools to perform security analysis and triage security alerts and events to prevent, detect, contain, and remediate security and privacy incidents.
- Identify, analyze, triage, report, and coordinate with CSIRT and other stakeholders to remediate all information security incident types.
- Utilize the authorized Security Tool Set) to perform security analysis and triage security alerts and events to prevent, detect, contain, and remediate security and privacy incidents.
- Coordinate with the SIEM team to create and maintain security dashboards.
- Report all information security incidents through the proper authority.
- Investigate and positively identify anomalous events that are detected by security devices. or reported to the SOC from external entities, system administrators, and the user community, via security monitoring platform and tools, incoming phone calls, emails, and the Service Desk and Incident Tracking System.
- Conduct monitoring and analysis activities
- Utilize network-based intrusion detection systems and other Security Information tools such as Event Management solutions (SIEM/Splunk) and Network Security Management solutions (such as Skybox Security, CISCO IPS/IDS, and Nessus) for the assessment, identification, and remediation of the incidents.
- Support Incident Management and Response requirements across the security incident lifecycle phases.
- Perform ad-hoc searches for suspect activity and reverse engineering of malicious software.
- Provide investigation, review, and recommendation documentation as necessary.
- Support development of reports and documentation including SOC Improvement Plan, Security Incident Reports, Program Status Report with reporting against Objectives and SLAs, Shift Change Reports, Measurable Activities Report (WAR), SOC Playbook updates,Incident Escalation Reports, daily Monitoring Reports
- Cross-train with Network O&M/Telephony/Mobile Computing Management to assist the monitoring of all communications connectivity (e.g., VSAT, DTS-PO, VPN, SD-WAN, MPLS, and TICs), as well as the devices that terminate communications links, to ensure uninterrupted communications and in the event of a failure, provide rapid identification and resolution of problems per defined SLAs.
- Monitor the wireless network infrastructure; networks used by software development teams; bandwidth utilization and availability of communications links; and LAN device security logs, identifying and ascertaining the nature of potential security violations, and protocol configuration, route table maintenance, and alternate path mechanisms.
- Must have minimum of 8 years with BS/BA; Minimum of 6 years with MS/MA; Minimum of 3 years with PhD; or years of direct experience may be substituted in lieu of degree.
- Certified SOC Analyst (CSA) designation by the EC-Council
- Experience and knowledge of networking, TCP/IP protocols, network topology, network directory services.
- Experience with server operating systems, and understanding of operating system fundamentals, including Windows and Linux
- Understanding of security controls for common platforms (Windows, Linux, & network equipment)
- Experience implementing and monitoring security controls.
- Experience configuring and utilizing monitoring/logging and security analysis solutions
- Ability to support an operational environment that operates 24x7x365
- U.S. Citizen; Ability to obtain and maintain a U.S. Secret Security Clearance
- Active Secret Security Clearance.
- At least 3 years' experience working in a SOC environments or cybersecurity-related environment
- Experience leading incident response activities (Prepare, Identify, Contain, Eradicate, Recover)
- Experience using Security Operations (Sec Ops) tools, including any of the following: MTIPS, E3a, CASB, Qualys, Palo Alto Firewall, Palo Alto Panorama, Trellix, ForeScout CounterAct, HoneyPots, Google DLP, Entrust Identity Guard, Infoblox, KeePass, McAfee Antivirus, McAfee EPolicy Orchestrator, Microsoft Active Directory Certificate Services, Microsoft System Center Configuration Manager (SCCM), RSA token, RSA Archer, SailPoint, Skybox, Splunk, Syslog, Tenable Nessus, Thales, Valimail Enforce, VMWare AirWatch, Zimperium, EntryPoint, Tanium
- Knowledge of scripting languages (e.g., PowerShell, Python, Yara, SNORT, EQL)
- Amazon Web Services Cloud experience
- Experience working programs using ITIL v. 4 and/or Agile framework for Service Management
- Experience with the cloud-based workflow automation platform ServiceNow
-
SOC Analyst
3 weeks ago
Serigor Inc Washington, United StatesJob Title: SOC Analyst - Tier 1 (Onsite) · Location: Washington, DC · Duration:12 Months+ · Job Description: · The client is the central technology organization of the client Government. It sets the standard for a number of information technology functions including the security ...
-
SOC Analyst
2 weeks ago
Serigor Inc. Washington, United StatesJob Description · Job DescriptionJob Title: SOC Analyst - Tier 1 (Onsite) · Location: Washington, DC · Duration: 12 Months+ · Job Description: · The client is the central technology organization of the client Government. It sets the standard for a number of information technology ...
-
SOC Analyst, Mid
4 weeks ago
Peraton Washington, United States Full timeResponsibilities · Responsible for the overall collection of operational and logistical data for assigned UAS at assigned location. Verify all data for accuracy, make appropriate changes to improve the accuracy, and transmit the data via established timelines and procedures. Acts ...
-
SOC Analyst
3 days ago
Foxhole Technology San Francisco, United States PermanentOverview Organization: Federal Organization · Location: Washington, DC (Onsite) · Salary: Based on experience, education and certification · Clearance: Public Trust (6C) Foxhole Technology provides robust cybersecurity and IT support capabilities for federal civilian and defense ...
-
Sr. SOC Analyst
3 weeks ago
Piper Companies Arlington, United StatesZachary Piper Solutions is seeking a · Sr. SOC Analyst for a position supporting a government contracting firm in Arlington, VA. · The Sr. SOC Analyst will provide expert cyber incident response and proactive threat hunting to protect critical cyber infrastructure. · This role ...
-
SOC Analyst
1 day ago
InquisIT LLC Washington, United States**Transforming the Business of Government** · InquisIT is a high-energy, forward-thinking, advanced technology company that provides the Federal Government and select private-sector organizations with an impressive array of services and solutions. Company expertise includes Syste ...
-
SOC Analyst
2 days ago
ASM Research Bethesda, United StatesJob Description · Security Operations Center Analyst · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities ...
-
Senior SOC Analyst
2 weeks ago
BCMC Arlington, United StatesJob Description · Job DescriptionThe DHS's Hunt and Incident Response Team (HIRT) secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front line response for cyber incidents and proactively hunting for malicious cyber activity. BCMC performs HIRT inv ...
-
SOC Analyst Tier 3
3 weeks ago
ShorePoint Washington, United StatesJob Description · Job DescriptionSalary: · Who we are: · ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security mode ...
-
SOC Analyst/Security Engineer
3 weeks ago
RAMPS International Inc. Washington, United StatesJob Description · Job DescriptionRole: SOC Analyst/Security Engineer · Duration: Long term · Location: Washington, D.C. · ESSENTIAL DUTIES · The position's essential duties include the following: · • +/- 5-year experience as a qualified security analyst · • Defines and implements ...
-
SOC Analyst
2 weeks ago
CGI Fairfax, United States Full timePosition Description: · CGI is one of the top 5 largest global IT companies spread across 40 countries with endless opportunities to expand and grow. As a CGI Federal Member, you have the opportunity to be a shareholder at CGI and join a family of 90, members strong. · CGI Fede ...
-
Sr. SOC Analyst
3 weeks ago
Knowledge Management, Inc. Washington, United StatesJob Description · Job DescriptionKnowledge Management, Inc. (KMI) has the leadership and experience to deliver innovative technology, logistics and management solutions to meet real mission requirements. KMI is a Minority Business Enterprise (MBE) and Small Disadvantage Business ...
-
SOC Cybersecurity Analyst
3 days ago
Dhara Consulting Group Washington, United StatesToday · - Top Secret/SCI · - Unspecified · - Unspecified · - IT - Security · - Washington, DC** (ON-SITE/OFFICE)** · **Secure our Nation, Ignite your Future** · Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come f ...
-
SOC Cybersecurity Analyst
1 day ago
ManTech Washington, United States Paid WorkSecure our Nation, Ignite your Future · Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International Corporation, you'll help protect our national security while working on innovative project ...
-
SOC Cybersecurity Analyst
1 day ago
ManTech Washington, United States Paid WorkSecure our Nation, Ignite your Future · Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International Corporation, you'll help protect our national security while working on innovative project ...
-
SOC Analyst
3 weeks ago
ASM Research, An Accenture Federal Services Company Bethesda, United StatesSecurity Operations Center Analyst · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities: · Monitor and analy ...
-
SOC Analyst
3 weeks ago
ASM Research Bethesda, United StatesJob Description · Security Operations Center Analyst · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities ...
-
SOC Analyst
1 day ago
DMI Mobile Enterprise Solutions Crownsville, United StatesDMI (Digital Management, LLC.) is looking for a Security Operations Center (SOC) Analyst with hands-on experience monitoring, detecting, and analyzing threats and cybersecurity events to identify and defend against validated intrusion events. Daily w Analyst, Night Shift, Securit ...
-
Sr. SOC Analyst
3 weeks ago
Piper Companies Arlington, United StatesZachary Piper Solutions is seeking a Sr. SOC Analyst for a position supporting a government contracting firm in Arlington, VA. The Sr. SOC Analyst will provide expert cyber incident response and proactive threat hunting to protect critical cyber infrastructure. This role is full ...
-
SOC Analyst
3 weeks ago
ASM Research, An Accenture Federal Services Company Bethesda, United States**Security Operations Center Analyst** · The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets. · Key Responsibilities: · + Monitor ...
SOC Analyst(s) - Washington, United States - Peraton
Description
ResponsibilitiesPeraton is seeking Security Operations Center (SOC) Analysts to join our team of qualified and diverse individuals to identify, analyze, and report events within a cloud environment, providing cybersecurity monitoring and alerts.
What you'll do:
The SOC Analyst's will also be responsible for the following but not limited to:
Qualifications
Basic Qualifications:
At Peraton, our benefits are designed to help keep you at your best, beyond the work you do with us daily. We are fully committed to the growth of our employees. From fully comprehensive medical plans to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way
Peraton Overview
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit to learn how we're keeping people around the world safe and secure.
Target Salary Range
$86,000 - $138,000. This represents the typical salary range for this position based on experience and other factors.All