Security Operations Center Analyst

Tyto Athene is searching for a Security Operations Center Analyst to support the customer Enterprise Cybersecurity Operations Support Team, responsible for protecting the information and assets within the customer's information technology infrastructure. The customer's information resources are sensitive assets and are critical in the performance of its mission; therefore, information security services help safeguard the information resources entrusted to the customer. The ideal candidate will have Security Operations Center experience and familiarity with managing systems in compliance with regulatory frameworks such as FISMA/NIST.

Responsibilities:

• Monitor the network and associated systems for security related incidents, evaluate current threats and provide recommendations for remediation and reporting for any identified incidents to the Information Systems Security Manager (ISSM).
• Use DOD provided tools to continually assess the security posture of the Network and all connected systems as well as evaluating new systems and changes to existing systems for configuration weaknesses prior to production deployment of the systems.
• Support and manage Cybersecurity tools that enable the delivery of cyber security services. These include: security filtering, network monitoring, host based monitoring, event logging and correlation, and scanning tools.
• Cybersecurity Vulnerability Management (IAVM) and DISA VDP Reviews
• Conducts cyber threat intelligence analysis, develops correlation techniques, correlates actionable cybersecurity events, participates in the coordination of resources during incident response efforts, and reports and tracks incident findings and resolutions to customers that include trends, responses, and mitigation actions.
• Assesses, plans, and enacts measures including refinements to cybersecurity architecture, tools configurations, and detection signatures to help protect customers from security breaches and attacks on its computer networks and systems

Required:

• One (1) years of relevant experience as a Systems Administrator.
• One (1) years of relevant experience in a Security Operations Center.
• Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, Zero Trust, defense-in-depth, and common security elements.
• Understanding of Anti-Virus, HIPS/HBSS, IDS/IPS, Full Packet Capture, Network Forensics, and complex technical reports on analytic findings . Experience using Assured Compliance Assessment (ACAS) suite of tools
• Knowledge of query language such as SPL (Splunk) or KQL (Sentinel).
• Understanding of malware analysis concepts and methods.

Education/Certifications:

• Bachelor's degree in Computer Science or related field
• DoD 8140 Compliant for IAT Level II or above: Possess a CASP CE, CCNA Security, CCNP Security, CCSP, CISA, CISSP (or Associate), CND, CySA , GCED, GCIH, GICSP, GSEC, Security CE, or SSCP certification.
• DoD 8140 Compliant for CSSP Analyst: Obtain a CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud , CySA , GCIA, GCIH, GICSP, PenTest , or SCYBER certification within 6 months of start date.
• Microsoft Security Operation Analyst Certification Preferred

Clearance: Active Secret Clearance OR the ability to obtain one.

• Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically $105K-$135K. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.

• Highlights of our benefits include Health/Dental/Vision, 401(k) match, Flexible Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and maternity/paternity leave