SOC Intrusion Analyst
Location: Fairmont, WV or Boulder, CO
Clearance: Minimum fully adjudicated Secret and Interim Top Secret clearance
Pay Rate Range: $35.00-$43.72/hr depending on experience.
Benefits (Full-Time, W2 Employees - at least 30 hours per week):
- Medical, Dental, and Vision offerings
- Weekly Direct Deposit
- Paid Holidays and Personal Time Off
- 401(k) with match
- Voluntary Life and AD&D, Short / Long Term Disability, plus other voluntary coverages
- Pre-Paid Legal and Employee Assistance Programs
- Northwest Federal Credit Union Membership
- BB&T @ Work Program
The client is looking for a new Cyber Analyst to join our Security Operations Center (SOC) in Fairmont, WV.
Primary Responsibilities:
- Perform against established operational rhythm, expectations and standards for Security Operations Center (SOC) analysts
- Part of the 24x7 operations of the SOC, supporting shift coverage
- Perform incident handling responsibilities with direct interface to customers and management team
- Perform analysis on anomalous behavior based on log data from firewalls, packet capture, web proxy services, network flow analysis, intrusion detection, and malware analysis tools
- Operate autonomously to further investigate and escalate in accordance with protocols and contractual SLAs
- Identify areas of improvement for SOC processes and tools to enhance the mission
- Provide teaching / mentoring junior analysts
Required Qualifications:
- Requires BS degree and 4+ years of prior relevant experience in order to operate within the scope contemplated by the level; experience in lieu of degree may be acceptable.
- Prior experience performing as a SOC analyst
- Working knowledge of SIEM solutions and incident management solutions
- Technical understanding of core cybersecurity technologies as well as emerging capabilities.
- Strong analytical and troubleshooting skills
- CEH, GCIH, or relevant IT technology certification
- Examples of other certifications include:
- CERT Certified Computer Security Incident Handler,
- ECC CEH (Electronic Commerce Council Certified Ethical Hacker)
- GCIH (GIAC Certified Incident Handler)
- GISF (GIAC Information Security Fundamentals)
- CISSP (ISC2 Certified Information System Security Professional)
- Additional certifications at an equivalent may also be considered.
Preferred Qualifications:
- Hands-on cybersecurity experience.
- Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vector, and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
- Familiarity or experience in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT&CK framework.
- Familiarity with Cloud concepts and experience performing monitoring and responding to threats in Cloud environments.
- Familiarity with the client mission.
ABBTECH is an EOE/Minorities/Women/Disabled Individuals/Veterans