CSOC-Tier 3 Analyst (ONSITE)

Depends on Experience

Contract: W2, 7 Month(s)

  • No Travel Required


IT SecurityNetwork TrafficAnalysisThreat ManagementTCPIP

Job Description

Please note that this is a 7 month contract position.

CSOC-Tier 3 Analyst - Day Shift

Key Responsibilities:
• Identification of Cybersecurity problems which may require mitigating controls
• Analyze network traffic to identify exploit or intrusion related attempts
• Recommend detection mechanisms for exploit and or intrusion related attempts
• Provide subject matter expertise on network based attacks, network traffic analysis, and intrusion methodologies
• Analyze attachments and URLs for malicious code
• Conduct forensic analysis on systems which may have been compromised
• Work with law enforcement if needed for handoff of forensic evidence
• Execute operational processes in support of response efforts to identified security incidents

Qualifications Requests:
• 3+ years IT security experience
• 2+ years’ experience in network traffic analysis
• Strong working knowledge of:
• Boolean Logic
• TCP/IP Fundamentals
• Network Level Exploits
• Threat Management
• Regular Expressions
• Knowledge of Control Frameworks and Risk Management techniques
• Excellent oral and written communication skills
• Excellent interpersonal and organizational skills
• Strong understanding of IDS/IPS technologies, trends, vendors, processes and methodologies
• Strong understanding of common IDS/IPS architectures and implementations
• Strong understanding of IDS/IPS signatures, content creation and signature characteristics including both signature and anomaly-based analysis and detection

•3-5 years of related experience on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC).

Bachelors Degree in Computer Science, Information Technology or Information Security preferred or a technically related field OR equivalent related work experience

CERTIFICATIONS: (One or more desired)
CompTIA Security +
CPTE - Certified Penetration Testing Engineer or CEH - Certified Ethical Hacker
GCIH - (GIAC Certified Incident Handler) or ECIH - (EC-Council Certified Incident Handler)
CISA - Certified Information Systems Auditor

Applicants must provide their phone number. Reference job #A3229