Network Security Operations Center Analyst

ManTech seeks a motivated, career and customer-oriented Network Security Operations Center Analyst in the Stennis, MS area.

Responsibilities include, but are not limited to:

• Monitor, detect, scan, record, audit, analyze, report, remedy, coordinate, and track security related events for customer networks/endpoints.
• Perform in-depth analysis of security events and incidents independently, and in support of Tier 1 SOC Analysts
• Investigate and respond to security incidents escalated from Tier 1 SOC Analysts, conduct in-depth analysis, and identify the root cause of incidents
• Provide guidance and support to Tier 1 SOC Analysts, including coaching and knowledge sharing to enhance their technical skills
• Support senior-level SOC personnel with the creation and distribution of incident reports
• Participate in vulnerability assessments and penetration testing activities to identify and address potential security weaknesses
• Responsible for working in a 24x7 Security Operation Center (SOC) environment

Minimum Qualifications:

• Possess either a Certified Ethical Hacker (CEH) or a GIAC Certified Incident Handler (GCIH)
• Bachelor of Science degree in Information Security, Computer Science, or related field
• Minimum of (4) four years of related experience on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC).
• Minimum of (6) six months experience in one or more of the following areas: computer network penetration testing/techniques; computer evidence seizure, computer forensic analysis, data recovery; computer intrusion analysis/incident response, intrusion detection; computer network surveillance/monitoring; network protocols, network devices,
• Experience with common Cybersecurity tools such as Splunk, HBSS, Nessus
• Provide Tier 2 support by analyzing network traffic and various log data to determine the threat/impact against the network, recommending appropriate countermeasures, facilitating the tracking, handling, and reporting of all security events and computer incidents.

Preferred Qualifications:

• Possess one or more of the following certifications: DOD 8570 Industry Related Certification - CSSP Analyst, CSSP Infrastructure Support or CSSP Incident Responder, Penetration Testing, GIAC Certified Forensic Examiner (GCFE), GIAC Advanced Smartphone Forensics Certification (GASF)

Clearance Requirements:

• Must have a current/active TS/SCI clearance and be able to obtain and maintain a DHS EOD suitability
• Active EOD suitability is highly desired

Physical Requirements:

• Must be able to remain in a stationary position 50%
• Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer
• The person in this position needs to occasionally move about inside the office to access file cabinets, office machinery, etc.