TSS Cyber Security Analyst Associate- SOC Tier I (ITC#608)

Clearance Level
None
Category
Cyber Security
Location
Bossier City, Louisiana

REQ#: RQ71661

Travel Required: Less than 10%
Public Trust: NACLC (T3)
Requisition Type: Regular

Technology Shared Services (TSS) is looking for a Tier I Security Operations Center (SOC) Analyst. As a member of the 24x7x365 TSS SOC team, the Cyber Security Analyst Associate (Tier I) will be responsible for performing initial triage and escalation of security alerts from hardware, software, intelligence sources, virtual systems and virtual applications within the SOC’s diverse customer base. As a SOC Analyst, the aptitude and flexibility to quickly learn and utilize third party toolsets will be an essential part of securing our client environments.

RESPONSIBILITIES:

As a Tier II Security Operations Center Analyst you will:

  • Provide technical support on event network security logs and trend analysis.
  • Detect the full spectrum of known cyberattacks (e.g., DDoS, malware, phishing, others).
  • Uncover and pinpoint security violations of compromised systems and devices
  • Correlate security events from various capabilities to identify attacks and breaches.
  • Analyze and act on intelligence information to secure customer networks and devices
  • Observe, document and report actions taken by malicious actors in customer networks.
  • Maintain a current understanding of the best practices and strategies used in cyber security.
  • Motivate self and co-workers to expand knowledgebase and capabilities.

REQUIRED QUALIFICATIONS:

  • Must be a US Citizen
  • Associates Degree or equivalent work experience
  • Interim or Active DoD Secret clearance (Or Ability to obtain)
  • Must get DoD IAT Level II (8570) Certification within 6 months

PREFERRED QUALIFICATIONS

  • Strong analytical, organizational and project management skills
  • Understanding of networking fundamentals, the OSI model, and TCP/IP protocols
  • Knowledge of attack methods and techniques (DDoS, brute force, spoofing, etc.)
  • Experience reviewing network, host and application audit logs (system, security, etc.)
  • Relevant security certifications (Network+, CEH, CCNA, etc.)
  • Familiarity of security standards (NIST, FISMA, Fed RAMP, DCID, CNSS and DoD 8500)
  • Knowledge of cloud IT solutions and security considerations of cloud solution deployment
  • Experience with any SIEM or log aggregation system, Splunk preferred
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.