SOSi

Junior Cyber Security Analyst

Job Locations US-AZ | US-GA-Fort Gordon | US-VA-Reston
Job Post Information* : Posted Date 3 months ago(7/21/2021 9:48 AM)
ID
2021-4754
Category
Information Technology
Location : Location
US-AZ-
Clearance Requirement
Top Secret
Job Requires Relocation
Yes

Overview

SOS International LLC (SOSi) is seeking a Junior Cyber Security Analyst to support our customer in Ft. Gordon, GA, Sierra Vista, AZ, OR Reston, VA.

Responsibilities

The Tier-1 Security Analyst (Junior Cyber Security Analyst) represents the entry point into the Security Operations Center. SOC Security Analyst will perform basic security monitoring; handling of common issue types; and basic incident response activities.

 

Duties of the Tier-1 Security Analyst (Junior Cyber Security Analyst) include:

  • Provide “eyes on glass” real-time security monitoring in a 24x7 environment by monitoring security infrastructure and security alarm devices for Indicators of Compromise utilizing SIEM and cybersecurity tools.
  • Performing level 1 assessment of incoming alerts (assessing the priority of the alert, determining severity of alert in respect to customer environment, correlating additional details) and coordinate with Senior Analysts for high priority incidents, if necessary.
  • Provide basic security event detection and initial triage of security events, opening tickets in designated ticketing systems within SLO and/or SLA guidelines.
  • Performing administrative routines of SOC like evaluating reports and SIEM dashboards, reviewing ticket escalations.
  • Incoming call handling from and initiating trouble tickets, if applicable.
  • Follow documented escalation procedures.
  • Identify recurring incidents for problem management purposes.
  • Coordinate with Senior Analysts for high priority incidents.

Qualifications

  • Active US DoD TOP SECRET security clearance
  • At least 2 years Cybersecurity related experience
  • IAT-II certification, CSSP-IR certification within 6 months of hire
  • Strong documentation and communication skills
  • Exceptional problem-solving skills
  • Proactive in engaging with customers and managers
  • Basic knowledge in network technologies
  • Knowledge of Transmission Control Protocol/Internet Protocol (TCP/IP), RCF 1918 and common attacks against TCP/IP protocol
  • Very good knowledge of Microsoft Windows and Server Operating System
  • Basic understanding of threat landscape and indicators of compromise

Preferred Qualifications

  • Bachelors or higher degree in Computer Science, Information Security or similar discipline
  • Information Technology security related certifications like: Linux, Cisco CCNA, Microsoft Certified Azure Fundamentals, AWS Cloud Practitioner, CISSP, SANS GIAC or GCIH
  • Understanding of command line scripting and implementation (ie. Python, Powershell, Bash Shell)
  • Ability to write new content/searches/scripts (e.g., Splunk dashboards, Splunk ES alerts, QRadar, RSA Netwitness, SumoLogic, etc.)
  • Experience with tools such as Active Directory, Cisco IOS, MS Server, AMP, Splunk ES, SNORT, Yara, IronPort, Firepower, SIEM (Securonix, Splunk, etc), SOAR (XSOAR, Phantom, etc)
  • Strong understanding of networking (TCP Flags, TCP Handshake, IP addressing, Firewalls, Proxy, IDS, IPS)
  • Ability to perform NetFlow / packet capture (PCAP) analysis
  • Experience with basic cyber threat hunting
  • Experience investigating security incidents with SIEMs (e.g. Splunk, Qradar, ArcSight, Securonix, etc), use case development/tuning, and threat hunting strategies.
  • Fluency in a foreign language is desirable, but not required

Working Conditions

  • Remote Position located at one of the following (Ft. Gordon, GA OR Sierra Vista, AZ, OR Reston, VA)
  • Working conditions are normal for an office environment.
  • Fast paced, deadline-oriented environment.
  • May require periods of non-traditional working hours including consecutive nights or weekends (if applicable)

 

SOSi is an equal employment opportunity employer and affirmative action employer. All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. SOSi takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed