Principal Cyber Security Operations Center Analyst

Employer
Capital One
Location
McLean, Virginia
Posted
Apr 15, 2021
Closes
May 14, 2021
Ref
R110394
Function
Finance
Hours
Full Time
Center 2 (19050), United States of America, McLean, Virginia

Principal Cyber Security Operations Center Analyst

Capital One is looking for Cyber Security Analysts with traditional network security and cloud infrastructure monitoring experience to join our Cyber Security Operations Center (CSOC) in McLean, VA. The Principal Associate level CSOC Analyst position will require a deep knowledge of network protocols and infrastructure, log investigation techniques, knowledge/understanding of cloud infrastructures, and incident handling experience. Not only will you need to know about the threats to networks, applications, cloud infrastructure, and theory regarding network protocols, but also the ability to proactively identify signs of misuse and abuse using various log sources.

It is your responsibility to find the threat actors attempting to attack the Capital One infrastructure, and identify and stop any malicious actors who make it past our defenses. In addition to the technical skills, you will need to be a leader, someone who enjoys training and mentoring teammates, and a person who can encourage and elevate the team.

Responsibilities:
  • Support 24/7/365 operations
  • Perform highly technical analysis to conduct investigations into security events to determine root cause
  • Perform basic malware analysis to identify Tactics, Techniques and Procedures as well as network and host based Indicators of Compromise
  • Utilize Endpoint Detection and Response tools to conduct in depth host based analysis
  • Coordinate incident handling and reporting with users, stakeholders, and CSOC leadership
  • Demonstrate organization and planning skills, including time management, project coordination, and project management
  • Monitor AWS based systems for security events, anomalies and threats.


Basic Qualifications:
  • High School Diploma, GED or Equivalent Certification
  • At least 3 years of experience conducting Cyber Security investigations
  • At least 3 years of experience with system, cloud, application and network logs
  • At least 3 years of experience analyzing and identifying network traffic
  • At least 3 years of experience with PCAP analysis


Preferred Qualifications:
  • Bachelor's Degree in Information Technology, Cyber Security or Computer Science
  • 5+ years of experience conducting Cyber Security investigations into network and application activity
  • 5+ years of experience working in a Security Operations Center (SOC)
  • 5+ years of experience working with SIEMs and evaluating SIEM alerts
  • 5+ years of experience leveraging core security, cloud, and infrastructure technologies during investigations
  • One or more of the following certifications (CISSP, CISM, CCSP, AWS Security, GCIH, GREM, GCFA)


At this time, Capital One will not sponsor a new applicant for employment authorization for this position.

Similar jobs