Security Operations Center (Soc) Tier Ii Analyst

Overview

NikSoft Systems Corporation is a recognized Information Technology solutions provider. Founded in 1998 and based in Reston, Virginia, NikSoft is a CMMI Level 3 Certified company with an established reputation for excellence and on-time delivery with a consistently high customer satisfaction rating from its Federal Government and private consulting contracts.

Team: Cybersecurity Operations

NikSoft is currently conducting a search for a professional and experienced SOC Tier II Analysts to add to its team in support of the United States Postal Service. The candidate will have expertise in managing cybersecurity risks and incidents in a large-scale enterprise environment.

Responsibilities

• Support the W1 shift Saturday & Sunday from 7am 7pm, plus 16 flex hours during weekdays (1 position)
• Perform deep-dive incident analysis by correlating data from various sources and determine if a critical system or data set is affected.
• Handle incidents as defined in Playbooks and SOPs, and advise on remediation actions.
• Respond to Cyber Security Incidents, provide cyber threat analysis and reporting to support SOC and Program's situational awareness.
• Support the Tour 2 shift Monday through Friday from 7am 4pm (2 positions)
• Support a 24/7/365 Security Operations Center and monitor security tools and provide tier II response to security incidents.
• Follow standard operating procedures for detecting, classifying, and reporting incidents under the supervision of Tier 3 staff.

Required Qualifications

• Extensive Windows, Linux, Database, Application, Web server, etc. log analysis
• Understanding of network protocols coupled with experience with web proxies, web application firewalls, and vulnerability assessment tools.
• Some Splunk query-development expertise
• Security documentation experience (DIACAP/RMF)
• Experience working in a team-oriented, collaborative environment with a high level of analytical and problem-solving abilities
• US Citizenship required; Must be able to obtain a sensitive clearance Position of Public Trust
• Positive attitude with strong oral and written communication skills
• Associate's Degree in Computer Science or related field
• Familiarity with common network vulnerability/penetration testing tools
• 3+ years of relevant work experience
• Some experience with system hardening guidance and tools
• Extensive experience troubleshooting security reports on Linux, Windows, routers, firewalls, applications, etc.
• Experience on an Incident Response team performing Tier I/II initial incident triage.
• Experience scripting with PowerShell, bash/ksh/sh, Cisco IOS.sh, JunOS sh/csh, Perl, Tcl, Lua
• Knowledge of IP networking and network security including Intrusion Detection

Desired Qualifications

• CISSP or other relevant security related industry certifications desired
• Background or some experience in application development (HTML/CSS, HTTPS, Python, Java/Javascript,) a plus.
• BA/BS degree preferred

Job Posted by ApplicantPro