SOC Analyst II
This job posting is no longer active.
Job ID: 206896
Location: COOKEVILLE, TN, United States
Date Posted: Aug 4, 2020
Category: Cyber
Subcategory: Cyber Ops Center Support
Schedule: Full-time
Shift: Day Job
Travel: No
Minimum Clearance Required: None
Clearance Level Must Be Able to Obtain: None
Potential for Remote Work:
Benefits: Click here
Job Description
Description
- Manage escalations for cybersecurity events and incidents received from Tier 1 staff
- Provide detailed analysis of security events and investigations
- Provide coaching, training, and support development of documentation for Tier 1 staff
- Provide 24x7 monitor and analysis of SIEM events to identify potential security risks and vulnerabilities
- Triage events and investigate to identify security incidents
- Log security incidents in the IT ticketing system
- Manage security incidents throughout their lifecycle to closure
- Coordinate with other, remote technical teams to investigate, document, and resolve issues
- Make recommendations for ongoing tuning and updates to the SIEM system
- Receive input from threat intelligence sources and analyze events to identify threats and risks
- Provide support for routine reporting
- Support ad-hoc data and investigation requests
- Conduct security and vulnerability scans as directed using established processes
Qualifications
- Candidate must meet at least one of the following education & experience levels:
- Bachelor's Degree in Cybersecurity or related discipline and two (2) years of experience as a SOC analyst including a SIEM tool; event triage and incident management
- AA Degree in related discipline and three (3) years related experience
- High School and five (5) years related experience
- Higher experience levels may also be considered
- Relevant cybersecurity experience including SIEM operations, event management and incident management
- Excellent oral and written communication skills
- Experience with Microsoft Office including Word and PowerPoint
Preferred Experience & Certifications
- Experience with ITIL, ITIL certification
- Cybersecurity certification (e.g. CompTIA Security+, CISSP, CEH, etc)
- Experience with SIEM tools (Splunk)
- Experience with reporting and reporting tools.
Overview
SAIC is a premier technology integrator solving our nation's most complex modernization and readiness challenges. Our robust portfolio of offerings across the defense, space, civilian, and intelligence markets includes high-end solutions in engineering, IT, and mission solutions. Using our expertise in existing and emerging technologies, we integrate the best components from our own portfolio and our partner ecosystem to deliver innovative, effective, and efficient solutions. We are 25,500 strong; driven by mission, united by purpose, and inspired by opportunities. Headquartered in Reston, Virginia, SAIC has pro forma annual revenues of nearly $7.1 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom. For SAIC benefits information, see Working at SAIC. EOE AA M/F/Vet/Disability
