Job was saved successfully.
Job was removed from Saved Jobs.

Job Details


Security Operations Center Analyst

Operations

Security Operations

No

Blacksburg, Virginia, United States

Description

Job Description:

Looking for an exciting opportunity to make an impact as a Security Operations Center Analyst?

1901 Group (A Leidos Company) has an exciting SOC Analyst position located in Blacksburg, VA with opportunities to work a remote schedule for well qualified candidates.

POSITION SUMMARY:
Our new SOC Analyst will work with an elite team of IT professionals to maintain an optimal environment for critical systems. We are looking to hire a Cyber Security Analyst to provide a full range of cyber security services with a focus on deception practices for developing detection methods that deceive attackers into interacting with decoys and other deception mechanisms.
PRIMARY RESPONSIBILITIES:
• Research new and innovative deception practices, methods and techniques
• Plan and create deception mechanisms to be deployed within the organization’s architecture
• Perform detailed investigation and response activities for potential security incidents
• Develop innovative monitoring and detection solutions using client tools and other skillsets such as scripting and content development
• Author documentation containing current deployments details and configurations
• Participate in deception exercises with other teams/departments to assess the effectiveness of deception components deployed within the organization’s architecture
• Participate in root cause analysis or lessons learned sessions
• Provide actionable intelligence for proactive detection and monitoring of potential threats
• Conducts analysis using a variety of tools and data sets to identify indicators of malicious activity on the network
• Respond to computer security incidents associated with deception mechanisms and conduct threat analysis
• Create, manage, and dispatch incident tickets associated with deception detections and alerts
• Ensure all pertinent information is obtained to allow for the identification, containment, eradication, and recovery actions to occur in a time sensitive environment
• Document investigation results, ensuring relevant details are passed to SOC Leads, Incident Management team and stakeholders
• Resolve or coordinate the resolution of cyber security events related to deployed deception components
• Recommends implementation of counter-measures or mitigating controls
• Monitor external event sources for security intelligence and actionable incidents
• Develop processes and procedures for deploying deception components


CLEARANCE REQUIREMENT:

• Must be able to obtain and maintain a Public Trust security clearance prior to start

BASIC QUALIFICATIONS:

● Bachelor’s degree in Information Security or equivalent experience in a related field.

● 1+ years of relevant IT experience
● Experience in a Penetration Testing or SOC environment
● Understanding of tactics and techniques utilized by adversaries
● Proven understanding of the Cyber Kill Chain and Incident Response Phases
● In-depth understanding of various operating systems, network/system infrastructure, networking protocols/services and enterprise architectural design
● Ability to work individually or as a team
● Must be driven and motivated with excellent organization skills
● Excellent problem solving, critical thinking, and analytical skills with the ability to de-construct problems
● Excellent written and verbal communication skills
● Must be comfortable with public speaking, presenting proposals and findings to leadership
● Excellent analysis skills and ability to identify patterns and trends in data
● Familiar with cloud environments and services
● Communicate well with Executives, Managers, Peers and Customers.
● A US Citizen who can obtain a public trust clearance

PREFERRED QUALIFICATIONS:

● Experience performing analysis of log files from a variety of sources, to include individual host logs, network traffic logs, firewall logs, or intrusion prevention logs
● Ability to think creatively and implement innovative solutions
● Familiar with AWS cloud environments, architecture, and services
● Familiarity with the MITRE ATT&CK framework
● Experience with proprietary and open source deception technologies and platforms is preferred
● Experience with SIEM technologies such as Splunk is preferred
● At least one of the following certifications: PenTest+, CySA+, GCIH, GCIA, GPEN, eJPT, eCPPT, PNPT, OSCP, AWS Certified Solutions Architect Associate, AWS Certified Security – Specialty

Who Are We?

1901 Group (A Leidos Company) prides itself on looking ahead of our competitors for the next wave of IT trends. We provide our employees with training and development opportunities, preparing them for upcoming technical challenges.

With primary office locations in Blacksburg and Reston, VA, our teams support customers from across the United States. Our innovative IT as-a Service delivery model is supported by industry certifications that ensure quality and efficient IT solutions.

We are transforming the delivery of IT services through the use of enterprise managed services that leverage the cloud to securely monitor, manage, and optimize complex IT environments.
The history of automation is what inspired the name of our company. 1901 was the year that another disruptive technology changed the world: the assembly line. Leveraging skills and materials in an efficient manner within a repeatable process that quadrupled output applies to IT services today.

Pay Range:

Pay Range $50,700.00 - $78,000.00 - $105,300.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.