Register
Recruit Create CV
Unfortunately, this job posting is expired.
Don't worry, we can still help! Below, please find related information to help you with your job search.
Related keywords
Some similar recruitments
Cyber Intelligence Analyst Jobs
Recruited by General Motors 11 months ago Address , Detroit, Mi
Consultant I / Ii – Performance Data And Metrics
Recruited by Sustain 1 year ago Address , , Or $56,000 - $80,000 a year
Investigator Jobs
Recruited by Metropolitan Public Defender 1 year ago Address Hillsboro, OR, United States
Esy Cyber Teacher Jobs
Recruited by Central Dauphin School District 1 year ago Address , Harrisburg, 17109, Pa $36 an hour

Cyber Defense Analyst Jobs

Company

SAIC
Address , Oak Ridge, 37830, Tn
Employment type FULL_TIME
Salary
Expires 2023-10-06
Posted at 9 months ago
Job Description

Job ID: 2310707

Location: OAK RIDGE, TN, US

Date Posted: 2023-08-03

Category: Cyber

Subcategory: Cyber Ops Center Support

Schedule: Full-time

Shift: Evening Job

Travel: No

Minimum Clearance Required: None

Clearance Level Must Be Able to Obtain: None

Potential for Remote Work: Yes


Description

SAIC has an opening for a Cyber Defense Tier 1 Analyst. This position is located in Oak Ridge, Tennessee. SAIC is open to the position working remotely. This position will either work the evening or night shift.

The Cyber Defense Tier 1 Analyst role is responsible for monitoring and analysis of identified security events in support of the real-time 24/7/365 Enterprise Security Operations Center's Detection & Response team’s monitoring capability. The Cyber Defense Tier 1 Analyst will perform daily operations utilizing a SIEM and monitoring events from multiple sources including but not limited to firewall logs, system logs, network and host-based intrusion detection systems, applications, databases, cloud infrastructure, and other security information monitoring tools.

Job Duties:
  • Responds and reacts to events in the SAIC monitored environment and escalates for further analysis as needed.
  • Continuously monitor security event systems by utilizing the Enterprise Security Operation Center’s security information and event management (SIEM) tool.
  • Provide initial response and support to potential intrusion or security breach alerts.
  • PCAP Analysis and correlation of events.
  • Determining urgency and potential impact.
  • Assist with analysis of actions taken by malicious actors to determine initial infection vectors as well as establish a timeline of activity and any data loss associated with incidents.
  • Perform documentation review and improvement.
  • Communicate and escalate issues and alerts as required by process or management.
  • Additional responsibilities including the support of various Enterprise Security Operations Center activities.

Qualifications

Required Education and Experience Requirements:

  • AA Degree in related discipline and one year of related experience; or High School and two (2) years of related experience with relevant certification.
  • Must possess the following certification: Security+ certification or equivalent.
  • Availability to work flexible hours in a 24/7/365 environment.
  • Working knowledge of security architectures and devices.
  • Working knowledge of technology and security topics including operating systems, network security, protocols, application security, infrastructure hardening and security baselines.
  • Can-do attitude.
  • Self-motivated and quick learner.
  • Excellent communication skills both verbal and written.
  • Ability to multitask.

Desirables:
  • Possess one or more of the following certifications: CySA+, SSCP, or additional relevant certifications.


Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.