Cyber Security Analyst/Intrusion Detection (Jr./Mid)

TCP/IP, Intrusion detection, Cyber incident response, cyber investigations and analysis
Full Time
open
Telecommuting not available Travel not required

Job Description

Business Operational Concepts (BOC) is a recognized leader in providing Technical and Program Management Services, Information Technology, and Logistics Services and Support.

BOC has enabled their Government and Commercial clients to achieve their organizational initiatives through the application of high quality, innovative, and cost effective professional services and solutions.  We provide a positive working environment, with opportunities for advancement in our growing Federal sector workforce. 

We offer an excellent compensation package which includes a generous salary, insurance (medical, dental, etc.), paid leave, 401k plan and more. We are committed to the diversity we bring to the marketplace by being an EEOC/AA employer (M/F/D/V) that believes customer satisfaction comes first.

JOB DESCRIPTION: 

BOC, is currently seeking a Jr. to Mid level Cyber Security Analyst for a project in Washington DC. The ideal candidate for this job will serve as a Cyber Security Analyst within the federal client’s Security Operations Center. A highly-motivated individual with strong technical, communication, and organizational skills will succeed on this program.

The goal of the Security Operations Center (SOC) team is to proactively monitor, identify, and remediate information technology security vulnerabilities and intrusions.  The team needs to ensure that all operational security controls are appropriately applied and managed and that systems within the control of the SOC have appropriate security controls in place in accordance with the Federal Information Security Management Act (FISMA). To accomplish this goal, the security team is responsible for a broad suite of security technologies that include vulnerability scanning, malware detection, log file analysis, and enterprise-wide incident response and security information and event management (SIEM) tools. The analyst will be responsible for continuous surveillance, analysis, mitigation, remediation and incident management using the client’s current SOC suite of tools.

 

RESPONSIBILITIES:

This position is not a policy position.  This position is for a candidate that has hands on intrustion detection experience.

Responsibilities include the following:

  • Intrusion detection
  • Cyber incident response
  • Perform cyber investigations and analysis
  • Cross-train and mentor other staff members
  • Ability to proficiently utilize the client’s wide variety of security tools including:
    • ArcSight HP
    • Akamai Web Application Firewall
    • HP TippingPoint
    • Bit9 Carbon Black
    • Websense Web, Email, and DLP
    • Cylance Protect
    • Palo Alto Firewalls
    • RSA Security Analytics/NetWitness
    • Xceedium
    • Tripwire IP360, CCM, and Enterprise
    • SolarWinds
    • LANDesk
    • ForeScout CounterACT
    • Symantec Endpoint Protection
    • Splunk Enterprise
    • EnCase Enterprise
    • Remedy

REQUIRED SKILLS:

  • Moderate-level understanding of basic computer and networking technologies
    • TCP/IP stack
    • Windows operating systems
    • Networking technologies (routing, switching, VLANs, subnets, firewalls)
    • Common networking protocols – SSH, SMB, SMTP, FTP/SFTP, HTTP/HTTPS, DNS, etc.
    • Common enterprise technologies – Active Directory, Group Policy, VMware vSphere
  • Basic-level understanding of IT security principles, technologies, best practices, and NIST guidance
    • Logical Access Control
    • PKI and other encryption methods
    • Network-based and host-based IDS/IPS
  • Excellent analytical and problem solving skills. Ability to work independently to identify errors, pinpoint root causes, and devise solutions with minimal oversight.
  • Outstanding communication skills. Ability to communicate with senior management and federal client staff – both technical and non-technical – in a clear and concise manner using proper spelling, punctuation and grammar.
  • Word, Excel, PowerPoint

 

DESIRED SKILLS:

  • Server Administration background – Windows or Linux/Unix
  • Interest in security/hacking culture. Ability to “think like an attacker”
  • Certifications:
    • Network+
    • Security+
    • Certified Ethical Hacker (CEH)
    • Systems Security Certified Practitioner (SSCP)
    • Certified Information System Security Professional (CISSP)

CLEARANCE REQUIREMENTS:  Public Trust (Applicants selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information.  Accordingly, U.S. Citizenship is required.)  

Dice Id : 90967452
Position Id : 911049
Have a Job? Post it

Similar Positions

ISSO
  • Blue Canopy Group LLC
  • Washington, DC
Vulnerability Assessment Analyst
  • Base One Technologies
  • Washington, DC
Vulnerability Assessment & CDM Analyst
  • Axxum Technologies LLC
  • Arlington, VA
Information Assurance Analyst (TSClearance
  • AETEA Information Technology Inc
  • Falls Church, VA
Cyber Security Engineer
  • Metro Systems Inc
  • Arlington, VA
Information Assurance SME
  • LongView International Technology Solutions, Inc.
  • Washington, DC
Cyber Security Engineer
  • CompuGain Corporation
  • Mclean, VA