Incident Response and Cyber Security OPS

Secured Cyber is looking to fill several SOC analyst positions IMMEDIATELY to perform duties related to Incident Response at the Drug Enforcement Administration Security Operation Center in Merrifield, VA. These are direct-hire positions with our company and do require a current SECRET clearance, eligible for upgrade to TS.

DO NOT APPLY UNLESS YOU HAVE A CURRENT SECRET INVESTIGATION THAT IS ACTIVE OR CAN BE ACTIVATED IMMEDIATELY and eligible FOR TOP SECRET upgrade.

MUST HAVE RELATED EXPERIENCE TO APPLY

Position is Junior to Intermediate with minimum of 3 years' experience performing Cyber Security related tasks. Experience required in some of the following tools: Splunk, Splunk Enterprise Security, Crowdstrike, Stealthwatch, Vectra and Cloud Security (AWS and Azure). Please understand that these positions will allow for significant growth with the ability to gain training and experience in several Cyber Security tools.

Responsibilities

• Monitor, triage, and prioritize events, alerts and tips for further investigation

• Investigate events, alerts and tips to determine if an incident has occurred

• Investigate network traffic for potential security incidents using Splunk events

• Coordinate the response for confirmed security incidents, to include efforts to contain, remediate, recover, and prevent

• Maintain situational awareness and keep current with cyber security news and threat actor Tactics, Techniques, and Procedures (TTPs)

• Document investigations using tickets, incident reports, etc.

• Support the production of effective situational awareness products with relevant metrics and visualizations for key constituents and leadership

QUALIFICATIONS

Must have a bachelor's degree in an Information Technology discipline OR 4 additional years experience.

EXPERIENCE

Senior Positions require a minimum of 6 years' experience and Intermediate Positions require a minimum 4 years of experience, in Information System Security, Cyber Security, Computer Forensics, or Insider Threat. Work experience and knowledge in; network monitoring, and intrusion detection using host-based and network-based intrusion detection systems (IDS) and log management applications; testing, installing, patching, and upgrading computer hardware and operating systems (Windows, and UNIX)

Available Positions

Work days include Monday through Friday day shift. Currently working 5-days per week ONSITE. Security Operations facility is NOT 24x7. Therefore, all nights, weekends and federal holidays are OFF.

1.

Secured Cyber is a Service-Disabled Veteran-Owned Small Business (SDVOSB) that specializes in Cyber Security and Insider Threat. We offer very generous compensation packages to include 11 Federal Holidays paid + 15 paid holidays annually, 401k plan, $10,000 allowance for Medical/Dental benefits, and more.

We are looking to fill these positions IMMEDIATELY