Cyber Security Operations Center Analyst

Employer
Capital One
Location
Riverdale, MD
Posted
Oct 16, 2020
Closes
Oct 19, 2020
Ref
1300495591
Hours
Full Time
McLean 1 (19050), United States of America, McLean, Virginia Cyber Security Operations Center Analyst Capital One is looking for talented Cyber Security Analysts with traditional network security and cloud infrastructure monitoring experience to join our Cyber Security Operations Center (CSOC) in McLean, VA. The Principal Associate level CSOC Analyst position will require a deep knowledge of network protocols and infrastructure, log investigation techniques, knowledge/understanding of cloud infrastructures, and incident handling experience. Not only will you need to know about the threats to networks, applications, cloud infrastructure, and theory regarding network protocols, but also the ability to proactively identify signs of misuse and abuse using various log sources. It is your responsibility to find the threat actors attempting to attack the Capital One infrastructure, and identify and stop any malicious actors who make it past our defenses. In addition to the technical skills, you will need to be a leader, someone who enjoys training and mentoring teammates, and a person who can encourage and elevate the team. Basic Qualifications High School Diploma, GED or Equivalent Certification At least 3 years of experience conducting Cyber Security investigations At least 3 years of experience with system, cloud, application and network logs At least 3 years of experience analyzing and identifying network traffic At least 3 years of experience with PCAP analysis Preferred Qualifications Bachelor s Degree in Information Technology, Cyber Security or Computer Science 5+ years of experience conducting Cyber Security investigations into network and application activity 3+ years of experience working in a Security Operations Center (SOC) 3+ years of experience working with SIEMs and evaluating SIEM alerts 3+ years of experience leveraging core security, cloud, and infrastructure technologies during investigations One or more of the following certifications (CISSP, CISM, CCSP, Security+, CEH SANS GIAC 503 or 504, AWS Security) At this time, Capital One will not sponsor a new applicant for employment authorization for this position.