• Snapboard
  • Activity
  • Reports
  • Campaign
Welcome ,

Chat with the recruiter

...Minimize

Hey I'm Online! Leave me a message.
Let me know if you have any questions.

Cyber Analyst II

In United States

Save this job

Cyber Analyst II   

Click on the below icons to share this job to Linkedin, Twitter!

JOB TITLE:

Cyber Analyst II

JOB TYPE:

JOB SKILLS:

JOB LOCATION:

Reston, VA United States

JOB DESCRIPTION:

Job Description:

Function as a junior to mid-level intrusion analyst on the day shift 8am-8pm for the Global Security Operations Center. Work with a large team of Security Analysts and Engineers to support a global security operations capability. Please note the work schedule for this position: Thur, Fri, Saturday 8am-8pm Wed, Thur, Fri, Saturday 8am-8pm

Skills
Basic Requirements -Technical-

  • Understand contemporary security architectures/devices such as firewalls, routers, switches, load balancers, remote access technologies, anti-malware, SIEM, and AV
  • Understand common attack vectors and exploitation
  • Familiarity with web-based attacks and the OWASP Top 10 at a minimum
  • Familiarity with SANS top 20 critical security controls
  • Ability to read and interpret pcap data
  • Understand common network protocols
  • Familiarity with web-based exploit kits and their exploitation vectors
  • Familiarity with concepts associated with Advanced Persistent Threats
  • Covert channels, egress, and data exfiltration techniques
  • Understand root causes of malware infections and methods of proactive mitigation
  • Understand propagation of malware in enterprise environments
  • Understand covert channels, egress, and data exfiltration techniques
  • Understand the foundations of enterprise Windows security including (Active Directory, Windows security architecture and terminology, Privilege escalation techniques, Common mitigation controls, and system hardening)
  • Knowledge of Anti-Virus (AV) and Host-Based Intrusion Prevention (HIPS) tools
  • Experience in monitoring at least one commercial AV solution such as McAfee -Other-
  • Ability to follow process documentation and use analytical skills to interpret varied events and situations
  • Ability to generate comprehensive written reports and recommendations
  • Ability to write professional emails
  • Ability to identify common false positives and make suggestions on tuning
  • Ability to write and tune Sourcefire/Snort rules.
  • Use of Burp suite/related tools to assist in writing IDS and WAF signatures
  • Experience with ticketing systems such as Remedy, JIRA
  • Industry Certifications such as A+, Network+, Security+, CEH, SANS (GCIA, GCIH, GREM, GPEN), OSCP
  • Experience working in a Security Operations Center (SOC), Managed Security Service (MSS), or enterprise network environment

Other Requirement:

  • Eligibility to obtain a security clearance
  • Shift flexibility, including the ability to provide on call support when needed
  • Ability to work greater than 40 hours per week as needed


Experience

  • Experience with ticketing systems such as Remedy, JIRA
  • Industry Certifications such as A+, Network+, Security+, CEH, SANS (GCIA, GCIH, GREM, GPEN), OSCP
  • Experience working in a Security Operations Center (SOC), Managed Security Service (MSS), or enterprise network environment


Education
Typically a Bachelor's Degree or equivalent experience

Required education: Associates Degree or higher

Position Details

POSTED:

Nov 07, 2022

EMPLOYMENT:

INDUSTRY:

SNAPRECRUIT ID:

S16541424439695223

LOCATION:

United States

CITY:

Reston, VA

Job Origin:

OORWIN_ORGANIC_FEED

A job sourcing event
In Dallas Fort Worth
Aug 19, 2017 9am-6pm
All job seekers welcome!

Cyber Analyst II    Apply

Click on the below icons to share this job to Linkedin, Twitter!

<p><strong>Job Description:</strong></p> <p>Function as a junior to mid-level intrusion analyst on the day shift 8am-8pm for the Global Security Operations Center. Work with a large team of Security Analysts and Engineers to support a global security operations capability. Please note the work schedule for this position: Thur, Fri, Saturday 8am-8pm Wed, Thur, Fri, Saturday 8am-8pm<br /> <br /> <b>Skills</b><br /> Basic Requirements -Technical-</p> <ul> <li>Understand contemporary security architectures/devices such as firewalls, routers, switches, load balancers, remote access technologies, anti-malware, SIEM, and AV</li> <li>Understand common attack vectors and exploitation</li> <li>Familiarity with web-based attacks and the OWASP Top 10 at a minimum</li> <li>Familiarity with SANS top 20 critical security controls</li> <li>Ability to read and interpret pcap data</li> <li>Understand common network protocols</li> <li>Familiarity with web-based exploit kits and their exploitation vectors</li> <li>Familiarity with concepts associated with Advanced Persistent Threats</li> <li>Covert channels, egress, and data exfiltration techniques</li> <li>Understand root causes of malware infections and methods of proactive mitigation</li> <li>Understand propagation of malware in enterprise environments</li> <li>Understand covert channels, egress, and data exfiltration techniques</li> <li>Understand the foundations of enterprise Windows security including (Active Directory, Windows security architecture and terminology, Privilege escalation techniques, Common mitigation controls, and system hardening)</li> <li>Knowledge of Anti-Virus (AV) and Host-Based Intrusion Prevention (HIPS) tools</li> <li>Experience in monitoring at least one commercial AV solution such as McAfee -Other-</li> <li>Ability to follow process documentation and use analytical skills to interpret varied events and situations</li> <li>Ability to generate comprehensive written reports and recommendations</li> <li>Ability to write professional emails</li> <li>Ability to identify common false positives and make suggestions on tuning</li> <li>Ability to write and tune Sourcefire/Snort rules.</li> <li>Use of Burp suite/related tools to assist in writing IDS and WAF signatures</li> <li>Experience with ticketing systems such as Remedy, JIRA</li> <li>Industry Certifications such as A+, Network+, Security+, CEH, SANS (GCIA, GCIH, GREM, GPEN), OSCP</li> <li>Experience working in a Security Operations Center (SOC), Managed Security Service (MSS), or enterprise network environment</li> </ul> <p><strong>Other Requirement:</strong></p> <ul> <li>Eligibility to obtain a security clearance</li> <li>Shift flexibility, including the ability to provide on call support when needed</li> <li>Ability to work greater than 40 hours per week as needed</li> </ul> <p><br /> <b>Experience</b></p> <ul> <li>Experience with ticketing systems such as Remedy, JIRA</li> <li>Industry Certifications such as A+, Network+, Security+, CEH, SANS (GCIA, GCIH, GREM, GPEN), OSCP</li> <li>Experience working in a Security Operations Center (SOC), Managed Security Service (MSS), or enterprise network environment</li> </ul> <p><br /> <b>Education</b><br /> Typically a Bachelor's Degree or equivalent experience</p> <p>Required education: <strong>Associates Degree or higher</strong><br /> </p>


Please wait..!!