Randstad Cyber Security Operations Analyst in Bethesda, Maryland

Cyber Security Operations Analyst

easy apply

job details:

  • location:Bethesda, MD

  • salary:$65 - $80 per hour

  • date posted:Tuesday, August 22, 2017

  • job type:Temp to Perm

  • reference:569401

easy apply

description

looking for a Senior Cyber Security Operations Analyst to enhance its SOC capabilities on a contract for a federal government client with an important health-related mission.

Members of this team are highly motivated and are given great latitude to find new ways to enhance the security of our client. This is an advanced hybrid role combining intel, investigations, analysis, and hunting. Qualified candidates must demonstrate initiative, a positive and inquisitive attitude, and a drive to continuously mature SOC operations. This role affords the opportunity to work with a great team while serving a fulfilling mission. Apply today

Responsibilities:

  • Apply strategic, operational, and tactical cyber intelligence to improve security operations

  • Lead and/or support efforts to prepare for, monitor, detect, analyze/confirm, contain, remediate, and recover from security incidents

  • Conduct deep analysis and hunting operations using enterprise endpoint solutions

  • Investigate network traffic and hosts/endpoints for potential security incidents, to include

  • Sensor data and log analysis

  • Netflow data

  • Packet captures

  • Memory analysis

  • Disk forensics

  • Document results of investigations and provide technical input for reports and briefings to security and IT leadership

Qualifications / Requirements:

  • Credentials

  • BS/BA degree

  • Five or more years of work experience

  • Three or more years of cyber security work experience

  • One or more certifications in information security (such as GCIA, GCIH, CEH, CISSP, SSCP, Sec+, etc.)

  • Broad-based foundation of cyber security knowledge, to include understanding of

  • Adversary TTPs

  • Network technology and common protocols

  • Network security

  • Host security

  • Malware

  • Security tools and sensors

  • Experience, Skills and Abilities

  • Advanced technical ability/aptitude, demonstrated through prior technical experience and accomplishment

  • Experience performing network investigations, to include netflow and packet/protocol capture and analysis

  • Endpoint/host forensics experience (disk and memory)

  • SIEM experience

  • Superior analytic skill demonstrated by the quality of output products (analyses, reports, presentations, etc)

  • Strong critical thinking, problem solving, and organization skills

  • Strong teamwork and collaboration skills

  • Good written and verbal communication skills

  • Ability to pass a security clearance background investigation

Preferred Qualifications:

  • Security clearance

  • Experience and effective participation in hunt, computer network defense, real-time analysis and incident response activities, to include the ability to reconstruct events from network, endpoint, and log data

  • Experience and understanding of host-based/endpoint protection systems

  • Cyber intelligence experience

  • Intelligence community experience

  • Programming experience

  • Scripting experience

  • Server administration experience

  • Enterprise forensic tool(s) experience

  • Federal contract experience