This position is to support The National Institutes of Health (NIH)!
One day onsite a week required
Must be able to obtain public trust for the position.
The Security Operations Center Analyst will be responsible for monitoring and analyzing security threats and implementing appropriate countermeasures to protect the organization's information assets.
Key Responsibilities:
Monitor and analyze security threats and vulnerabilities and implement appropriate counter measures
Ensure compliance with regulatory compliance directives, including various NIST security controls and monitoring and reporting requirements
Manage incident response efforts and assist in investigations into security breaches
Communicate and report to stakeholders on security-related documents and status updates
Assist in the development, implementation and oversight of SOC standard operating procedures used to guide daily activities of the operations center
Utilize various security tools like Tenable Security Center, Splunk, MS Defender, SEIM, Symantec DLP, Netsparker, Penetration Testing, Service Now, Web Application Security, Data Loss Prevention, Incident Response, Forensics, Security Tool Evaluation, and Endpoint Protection (Cylance)
Qualifications:
2-5 years of experience within the Cyber Security industry, with experience in security event monitoring and incident response services within an enterprise network security environment
Bachelor’s or Master’s Degree in Information Technology or related disciplines; or have equivalent and direct experience with the management, operation, and direction of a network and/or security operations center
CISSP, CISM, CySA+, or GCIH certifications are desired
Strong understanding of log analysis and monitoring management systems, security event monitoring systems, network-based and host-based intrusion detection systems, firewall technologies, malware detection and enterprise-level antivirus solutions/systems, VPN technologies and encryption standards
Strong understanding of the various industry standard cyber security disciplines and generally accepted practices governing the present-day cyber security industry
Strong understanding of regulatory compliance directives to include various NIST security controls and monitoring and reporting requirements
Experience with managing and ensuring the timely response and investigations of security events and incidents within a security operations center