SOC Lead Analyst

US-NC
Job ID
2017-2665
# of Openings
1
Category
Information Technology

Overview

VariQ has an exciting opportunity for a highly qualified SOC Lead Analyst to support the Symantec effort in Raleigh, North Carolina.

 

Additional Information:

  • Salary: Dependent upon experience
  • Security Clearance: None
  • Available: within 30 days

Responsibilities

  • Perform monitoring and analysis of various security solutions to include the SIEM solution to detect the presence of unknown or suspected cyber threats.
  • Work with other team members to plan for and develop a solution that will allow for the analysis of a 15% increase in the security events per day, annually.
  • Assist in the evaluation and implementation of additional security analysis tools in the SOC.
  • Work with personnel to develop and refine an operations "Run Book" that outlines the processes and procedures to be used for cybersecurity monitoring and event analysis.
  • Lead monitoring and event analysis activities to include: Identifying potential threat, anomalies, and infections; Documenting findings from analysis; Providing recommendations within the incident-management system; Performing triage of incoming security events; Performing preliminary and secondary analysis of events; Validating events; Escalating events as necessary, for appropriate action within the targeted response times listed in the Performance Requirements Summary (PRS) contained in the Quality Assurance Surveillance Plan (QASP).

Qualifications

  • Expert knowledge of policies, procedures, and protocols of a government Security Operations Center specifically related to performing event analysis and reporting.
  • Experience using and analyzing events from numerous security tools and technologies to include some of the following and/or closely comparable security technologies: McAfee Nitro SIEM, McAfee IDS/IPS, Imperva web application firewalls, McAfee Enterprise Antivirus, BlueCoat, Symantec DLP, Mandiant/Fireeye, Guardian MDB Protect, Cisco firewalls, QualysGuard, AppScan

 

Preferred Qualifications:

  • Previous lead security analyst experience at a federal agency similar in size, scope, and complexity.

 

Minimum Requirements:

Minimum of 6-10 years of experience in SOC analysis to include a minimum of 2-4 years’ experience as a Lead Analyst or SME.

 

Education:

Bachelors of Sciences (Masters preferred) in Information Technology, Computer Science, Systems Engineering, Information Assurance, or related area.

 

Preferred Certifications:

Any of following SANS certifications: GCIH, GCFE, GCFA,GREM, GPEN, GWAPT, GXPN

Certified Information Systems Security Professional (CISSP)

Certified Computer Examiner (CCE)

Certified Computer Forensic Examiner (CCFE)

 

 

VariQ is an equal opportunity employer.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed