Technology Shared Services (TSS) is looking for a Tier I Security Operations Center (SOC) Analyst. As a member of the 24x7x365 TSS SOC team, the Tier I Security Operations Center (SOC) Analyst. will be responsible for performing initial triage and escalation of security alerts from hardware, software, intelligence sources, virtual systems, and virtual applications.
As a SOC Analyst, the aptitude and flexibility to quickly learn and utilize third party toolsets will be an essential part of securing our client environments. GDIT is committed to fostering economic growth and prosperity in Louisiana, with established operations in multiple locations throughout the state, including facilities in New Orleans, Natchitoches, and our Integrated Technology Center in Bossier City, LA. This position requires 2 days per month at one of the locations listed above.
RESPONSIBILITIES: Provide technical support on event network security logs and trend analysis Detect the full spectrum of known cyberattacks (e.g., DDoS, malware, phishing, others) Uncover and pinpoint security violations of compromised systems and devices Correlate security events from various capabilities to identify attacks and breachesAnalyze and act on intelligence information to secure customer networks and devicesObserve, document and report actions taken by malicious actors in customer networksMaintain a current understanding of the best practices and strategies used in Cyber Security · Motivate self and co-workers to expand knowledgebase and capabilities REQUIRED QUALIFICATIONS: You MUST have: Technical Training, Certification(s) or Degree, or equivalent years of experience 2+ years of experience for mid-level or 5+ years for senior level Ability to obtain and maintain an Interim or Active DoD Secret clearance ·US Citizenship is required due to clearance requirement Qualifying Certification to meet DoD CSSP Analyst requirements (within 6 months) CEH, CFR, CCNA Cyber Ops, CCNA-Security, CySA+, GCIA, GCIH, GICSP, Cloud+, SCYBER, PenTest+ Ability to obtain and maintain CompTIA CySA+, Splunk Core Certified User and Splunk Core Certified Power User certification within 6 months of hire PREFERRED QUALIFICATIONS:Certification(s) and/or experience with any SIEM or log aggregation system Strong analytical, organizational and project management skills Understanding of networking fundamentals, the OSI model, and TCP/IP protocols Knowledge of attack methods and techniques (DDoS, brute force, spoofing, etc.) Experience reviewing network, host, and application audit logs (system, security, etc.) Familiarity of security standards (NIST, FISMA, Fed RAMP, DCID, CNSS and DoD 85Knowledge of cloud IT solutions and security considerations of cloud solution deploymentOther Relevant Cybersecurity certifications WHAT GDIT CAN OFFER YOU:401K with company match Customizable health benefits packages Internal mobility team dedicated to helping you own your career Challenging work that makes a real impact on the world around you Not sure this job’s the one for you? Check out our other openings at gdit.com/careers.