Sevatec Inc.

SOC Analyst Level I

US-WV-Fairmont
1 month ago
Job ID
2017-1133
# of Openings
1
Category
Information Technology

Overview

The SOC Analyst will work collaboratively to detect and respond to information security incidents, maintain and follow procedures for security event alerting, and participate in security investigations. The Analyst will perform tasks including monitoring, research, classification and analysis of security events that occur on the network or endpoint. The Analyst should have familiarity with the principals of network and endpoint security, current threat and attack trends, and have a working knowledge of security principals such as defense in depth. The Analyst must be capable of working at a highly technical level and with proven experience identifying threats, categorizing events and threat vectors that cause security events.

Responsibilities

  • Able to document and present after-action reports to management,
  • Able to perform monitoring using Arc Sight, and other tools looking for security incidents.
  • Basic familiarity with FireEye Threat Intelligence and Appliances.
  • Will utilize network sniffer tools to perform packet analysis.
  • Research external trusted intelligence sources and leverage knowledge to detect events of interest.
  • Perform analysis of security logs to detect unauthorized access.
  • Use vulnerability assessment data to pinpoint potential points of attack.
  • Document and contain security incidents detected on the network.
  • Execute incident response process when a security incident has been declared.
  • Plan, coordinate, and implement network security measures to protect data, software, and hardware on government networks.
  • Maintain logs related to network functions, as well as maintenance and repair records.
  • Document and present findings to management suitable for customer consumption. 

Qualifications

  • 1-3 years threat management experience in a security operations environment.
  • Understanding of incident response, signature tuning, and network protocols; web server defense; how attackers were generating the traffic.
  • Background in analysis of security events and the ability to triage security events to determine which incidents are real incidents preferred but not required.
  • One of the following certifications are preferred: CompTIA Network+, CompTIA Security+, Certified Ethical Hacker (CEH) - EC Council, Certified Incident Handler - Global Information Assurance Certification (GIAC), Certified Intrusion Analyst - Global Information Assurance Certification (GIAC)
  • This position supports a 24/7 operation and candidates must be willing to work a variety of shifts. 

Security Clearance:  Applicants selected must be U.S. Citizens and will be subject to a government security investigation and must meet eligibility requirements for access to classified information. A Secret or Interim Secret clearance is required to start. Top Secret candidates preferred.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed