Lead SOC Analyst/Engineer

Alta It Services Llc
Baltimore, MD
Jan 17, 2022
Jan 19, 2022
Full Time
ALTA IT Services is a wholly owned subsidiary of System One, a leading provider of specialized workforce solutions and integrated services. ALTA is an established leader in IT Staffing and Services, for both government and commercial enterprises across the United States, specializing in Program & Project Management, Application Development, Cybersecurity, Data & Advanced Analytics, and Agile Transformation Services.This is currently a Remote (swing/night) position in our SOC. Once COVID restrictions are eased, it will return to a hybrid onsite role in Washington, DC. Experience in computer forensics is strongly preferred. Sr. Security Analyst (7+ years of experience required)Currently remote, will be partial onsite in Washington, DC post-COVIDW2 ContractSwing Shift Swing shift is 3p-11p Sun-Thurs or 3p-11p Tues-Sat. 7-10 Years Experience in Cyber Operations, Engineering, and Incident Response At least 6 years of experience as a security operations center (SOC) analyst Successful candidate must be a motivated self-starter with a highly inquisitive and analytic mindset. Relevant cybersecurity subject matter expertise especially in information security, network security, security event triage, intrusion analysis, malware, computer networking TCP/IP, and anomalous behavior. Experience and skills in: continuous monitoring, information security alerting, security event triage, intrusion analysis, threat trends, malware, and anomalous behavior. Demonstrated experience with security information and event management (SIEM Qradar is a Plus), security orchestration and automated response (SOAR Demisto/PaloAlto XSOAR is a plus), and other security technologies. Experience in, or willingness to quickly learn, at least one security tool type such as IDS(PaloAlto Threat Threat Protection/Wildfire is a plus/IPS (Cisco Source Fire is a plus), network access control (Forescount is a plus), firewall (PaloAlto PAN is a plus), anti-malware (CarbonBlack EDR and CrowdStrike Falcon is a plus), etcExperience with the Microsoft Cloud Security Apps, Office 365 EPO (Sentinel is a Plus). Preferred: Security Certifications.One or more of the following qualifications:GIAC Certified Forensic Analyst (GCFA)GIAC Advanced Smartphone Forensics (GASF)GIAC Certified Forensic Examiner (GCFE)GIAC Network Forensic Analyst (GNFA)GIAC Reverse Engineering Malware (GREM)One or more of the following training:FOR500: Windows Forensic AnalysisFOR508: Advanced Incident Response, Threat Hunting, and Digital ForensicsFOR509: Enterprise Cloud Forensics and Incident ResponseFOR572: Advanced Network Forensics: Threat Hunting, Analysis, and Incident ResponseALTA IT Services is an equal opportunity/affirmative action employer and considers qualified applicants for employment without regard to race, gender, age, color, religion, disability, veteran status, sexual orientation, or any other factor.#ALTAITServicesby Jobble

Similar jobs